last executing test programs:

2m46.983160511s ago: executing program 1 (id=2986):
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x70, 0x1, 0x14e, [0x0, 0x0, 0x0, 0x0, 0x200000000840, 0x200000000870], 0x0, 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="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"]}, 0x1c6)

2m46.876280683s ago: executing program 1 (id=2988):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000006"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
epoll_create1(0x80000)

2m46.758256295s ago: executing program 1 (id=2990):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000004080)={{r0}, &(0x7f0000004000), &(0x7f0000004040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r1}, 0x18)
r2 = socket$kcm(0x21, 0x2, 0x2)
recvmsg$kcm(r2, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)

2m46.580344598s ago: executing program 1 (id=2992):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./bus\x00', 0xe, &(0x7f0000000540)={[{@resuid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@nolazytime}, {@noblock_validity}]}, 0x3, 0x453, &(0x7f00000005c0)="$eJzs3MtvG8UfAPDvruP0119bEkp59AEECiLikTRtgR44AAKJQ5GQ4ADHKEmrUrdBTZBoVUGLUDkhhMQdceRf4AQXhDghcYU7qlShXNpyMlp7ndiO7SaOXUP8+UjbzOyjM9/Mjj07YyeAoTWR/ZNE7I6I3yNiLCLS5hMmqj9urVyeu71yeS6Jcvntv5Lssri5cnmudmqS/9yVZybTiPSzJA62KHfp4qWzs6XSwoU8P7187oPppYuXnjtzbvb0wumF80dPnDh+bObFF44+35M4szrdPPDx4qH9b7z31Zsnv2iIvymOHpnodPDJcrnHxQ3Wnrp0MjLAirAphYjImqtY6f9jUYi1xhuL1z8daOWAviqXy+Vd7Q9fKQPbWBKNeV0ehkXtjT57/q1tzYOAl/s3/Bi4G69UH4CyuG/lW/XIyOo8SLHp+baXJiLi3St/f5Nt0Z95CACABj9k459nW43/0nig7rx78rWh8Yi4NyL2RsR9EbEvIu6PqJz7YEQ8tMnymxdJ1o9/0utdBbZB2fjvpXxtq3H8t7oKNl7Ic3sq8ReTU2dKC0fy38lkFHdk+ZkOZfz42m9ftjtWP/7Ltqz82lgwr8f1kR2N18zPLs9uJeZ6N65GHBhpFX+yuhKQRMT+iDjQZRlnnv7uULtjd46/gx6sM5W/jXiq2v5Xoin+mqTz+uT0/6K0cGS6dles98uv195qV/6W4u+BrP3/3/L+X41/PKlfr13afBnX/vi87TNNt/f/aPJOJT2a7/todnn5wkzEaHKyWun6/UfXrq3la+dn8U8ebt3/98bab+JgRGQ38cMR8UhEPJrX/bGIeDwiDneI/+dXn3i/+/j7K4t/flPtv5YYjeY9rROFsz9931Do+Lr4b3du/+OV1GS+ZyOvfxupV3d3MwAAAPz3pBGxO5J0ajWdplNT1c/L74tIS4tLy8+cWvzw/Hz1OwLjUUxrM11jdfOhM/ljfTV/NSKqHy2oHT+Wzxt/XdhZyU/NLZbmBx08DLldbfp/5s/CoGsH9J3va8Hw0v9heOn/MLz0fxheLfr/zkHUA7j7Wr3/fzKAegB3X1P/t+wHQ2TEcB+GVtv5v+38l3+ACvP/MJSWdsadvyTfMVH7n7q8fNsmovivqMbWE+WkZeNGOuiKSfQzMdjXJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgF75JwAA//+QOeBZ")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0xe1, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x1304825, 0x0)

2m46.156185534s ago: executing program 1 (id=2998):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close(0xffffffffffffffff)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = gettid()
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r2, &(0x7f0000000200)=""/209, 0xd1)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000080)={0x335, @tick, 0x52})
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r2, 0xc05c5340, &(0x7f0000000440))
tkill(r1, 0x7)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001e80)={&(0x7f0000000180)=@abs={0x1, 0x5c, 0x1}, 0x6e, 0x0}, 0x20000)
ioctl$TUNGETVNETLE(0xffffffffffffffff, 0x40047451, &(0x7f0000000180))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000040)={0xb000001c})
epoll_pwait(r5, &(0x7f0000000180)=[{}], 0x1, 0xa2c, 0x0, 0x0)
close(r3)

2m45.919929668s ago: executing program 1 (id=3003):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
r1 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x1f0, 0x0)
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0)

2m45.622354453s ago: executing program 32 (id=3003):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
r1 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x1f0, 0x0)
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0)

2m41.665812776s ago: executing program 3 (id=3032):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x2d, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd)

2m41.500100419s ago: executing program 3 (id=3034):
socket$inet6(0xa, 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$can_raw(0x1d, 0x3, 0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file2\x00', 0x200000, &(0x7f0000000500)={[{@nobarrier}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9WajdN4o8KQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4h/g3WPxH/CvKGihSAl68BKZzWy7TbL5uXW3zucD0743M5s3b998335nZ5cNoLBGsn9KEa9GxDdJxOG2bYORbxxZ2W/p8Y3JbEliefmzP5NI8nWt/ZP8/4N55ZWI+PWriJOlte3WFxZnKtVqOpfXRxuzV0frC4unLs9WptPp9Mr4xMSZdybG33/v3a719c0Lf3//6f2Pznx9fOm7nx8euZvEuTiUb2vvxy7caq+MxEj+nAzFuVU7jnWhsX6S9PoA2JGBPM6HIpsDDsdAHvXA/9/NiFgGCioR/1BQrTygdW3fpevgF8ajD1cugNb2f3DlvZHY17w2OrCUPHNllF3vDneh/ayNX/64dzdbYpP3IW52oT2Allu3I+L04ODa+S/J57+dO91883hjq9so2usP9NL9LP95a738p/Qk/4l18p+D68TuTmwe/6WHXWimoyz/+2Dd/PfJ1DU8kNdeauZ8Q8mly9X0dES8HBEnYmhvVt/ofs6ZpQfLnba153/ZkrXfygXz43g4uPfZx0xVGpXd9Lndo9sRrz3Nf5NYM//va+a6q8c/ez4ubLGNY+m91ztt27z/7bqfAS//FPHGuuP/9I5WsvH9ydHm+TDaOivW+uvOsd86tb+9/ndfNv4HNu7/cNJ+v7a+/TZ+3PdP2mnbTs//PcnnzfKefN31SqMxNxaxJ/lk7frxp49t1Vv7Z/0/cXzj+W+9839/RHyxxf7fOXqn4679MP5T2xr/7RcefPzlD53a39r4v90sncjXbGX+2+oB7ua5AwAAAAAAgH5TiohDkZTKT8qlUrm88vmOo3GgVK3VGycv1eavTEXzu7LDMVRq3ek+3PZ5iLH887Ct+viq+kREHImIbwf2N+vlyVp1qtedBwAAAAAAAAAAAAAAAAAAgD5xsMP3/zO/D/T66IDnzk9+Q3FtGv/d+KUnoC95/YfiEv9QXOIfikv8Q3GJfygu8Q/FJf6huMQ/AAAAAAAAAAAAAAAAAAAAAAAAAAAAdNWF8+ezZXnp8Y3JrD51bWF+pnbt1FRanynPzk+WJ2tzV8vTtdp0NS1P1mY3+3vVWu3q2HjMXx9tpPXGaH1h8eJsbf5K4+Ll2cp0ejEd+k96BQAAAAAAAAAAAAAAAAAAAC+W+sLiTKVaTecUOhbORl8cxo4LyWajfDY/GXbUxGDvO6jwHAo9npgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoM2/AQAA///fKTPH")
open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
syz_open_procfs(0x0, &(0x7f00000193c0)='net/igmp6\x00')
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYRES64=r1], 0x5c}, 0x1, 0x0, 0x0, 0xc410}, 0x4000)

2m38.405173279s ago: executing program 3 (id=3041):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x121880, 0x0)
r1 = syz_io_uring_setup(0x3bbd, &(0x7f0000000780)={0x0, 0x942e, 0x10100, 0x6, 0x289}, &(0x7f0000000540)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r5}, 0x10)
syz_pidfd_open(0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd=r0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x1})
io_uring_enter(r1, 0x567, 0x72, 0x0, 0x0, 0x0)

2m38.045072674s ago: executing program 3 (id=3047):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./bus\x00', 0xe, &(0x7f0000000540)={[{@resuid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@nolazytime}, {@noblock_validity}]}, 0x3, 0x453, &(0x7f00000005c0)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x1304825, 0x0)

2m37.705129269s ago: executing program 3 (id=3050):
socket$inet6(0xa, 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$can_raw(0x1d, 0x3, 0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file2\x00', 0x200000, &(0x7f0000000500)={[{@nobarrier}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
syz_open_procfs(0x0, &(0x7f00000193c0)='net/igmp6\x00')
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYRES64=r1], 0x5c}, 0x1, 0x0, 0x0, 0xc410}, 0x4000)

2m37.307757436s ago: executing program 3 (id=3054):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x38, 0x1403, 0x1, 0x70bd26, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'vcan0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40891}, 0x20000000)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000240)={[{@dioread_lock}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@journal_dev={'journal_dev', 0x3d, 0x5}}, {@user_xattr}, {@abort}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
mknodat(0xffffffffffffffff, 0x0, 0x1000, 0x81)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r4}, 0x18)
r5 = epoll_create1(0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
setsockopt$sock_int(r6, 0x1, 0x2e, &(0x7f0000000040)=0x80, 0x4)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f0000000080)={0xa0028000})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x14810)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_netdev_private(r7, 0x8946, &(0x7f0000000140)="a6cc04e2d8f1c38afbf14b29b86e3a")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000000)='kfree\x00', r3}, 0x18)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x56, &(0x7f0000000080)={0x0, 0x2710}, 0x10)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup(r8, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)

2m36.849449363s ago: executing program 33 (id=3054):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x38, 0x1403, 0x1, 0x70bd26, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'vcan0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40891}, 0x20000000)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000240)={[{@dioread_lock}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@journal_dev={'journal_dev', 0x3d, 0x5}}, {@user_xattr}, {@abort}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
mknodat(0xffffffffffffffff, 0x0, 0x1000, 0x81)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r4}, 0x18)
r5 = epoll_create1(0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
setsockopt$sock_int(r6, 0x1, 0x2e, &(0x7f0000000040)=0x80, 0x4)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f0000000080)={0xa0028000})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x14810)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_netdev_private(r7, 0x8946, &(0x7f0000000140)="a6cc04e2d8f1c38afbf14b29b86e3a")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000000)='kfree\x00', r3}, 0x18)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x56, &(0x7f0000000080)={0x0, 0x2710}, 0x10)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup(r8, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)

7.955189192s ago: executing program 0 (id=4376):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x70, 0x101301)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)

5.774589507s ago: executing program 0 (id=4399):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000100)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0xa}}, {@grpquota}, {@auto_da_alloc}, {@grpquota}]}, 0xfe, 0x572, &(0x7f0000000240)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r0 = openat(0xffffffffffffff9c, 0x0, 0x16a042, 0x0)
pwritev2(r0, &(0x7f00000000c0)=[{&(0x7f0000000280)='M', 0x1}], 0x1, 0x0, 0x0, 0xc)

5.520846851s ago: executing program 0 (id=4402):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0xfffffffc, 0x10}, 0xc)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$sock(r0, &(0x7f0000000900)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000080)=' ', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000280)="a6", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000b40)=[{0x0}], 0x1}}], 0x3, 0x40080)
shutdown(r0, 0x1)

5.297873775s ago: executing program 0 (id=4407):
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x14, 0x2, &(0x7f0000000100)=@raw=[@btf_id={0x18, 0x8, 0x3, 0x0, 0x1}], &(0x7f0000000180)='syzkaller\x00', 0xa, 0x87, &(0x7f0000000280)=""/135, 0x41000, 0x40, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000380)={0x0, 0xb, 0xcfdb, 0xb}, 0x10, 0x0, 0xffffffffffffffff, 0x3, &(0x7f0000000700)=[0xffffffffffffffff, 0x1], &(0x7f0000000740)=[{0x5, 0x1, 0x4, 0x6}, {0x5, 0x5, 0x5, 0x7}, {0x1, 0x1, 0x9, 0x6}], 0x10, 0x6d, @void, @value}, 0x94)
r0 = socket$inet(0x2, 0x4000000805, 0x0)
sendmmsg(r0, &(0x7f0000000e40)=[{{&(0x7f0000000000)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f0000000300)=[{&(0x7f00000000c0)="ae", 0x1}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000008400000005"], 0x18}}], 0x2, 0x844)

5.104541248s ago: executing program 0 (id=4412):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d6163767461700000000800014000000005"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000090, &(0x7f0000000540), 0x81, 0x7a5, &(0x7f0000000f80)="$eJzs3c9rXNUeAPDvnfxq0r6XPHjwXl0FBA2UTkyNrYKLigsRLBR0bRsm01AzyZTMpDQh0BYR3AgqLgTddO2PunPrj63+Fy6kpWparLiQkTuZSSbNTJq0mZlgPh+4uefcc2/O+c65P87MvcwEcGCNpn8yEUcj4v0kYri2PImIvmqqN+L02nr3V1dy6ZREpfL6r0l1nXurK7lo2CZ1uJb5f0R8907EsczWektLy7NThUJ+oZYfL89dGi8tLR+/ODc1k5/Jz5+cmJw8ceq5Uyf3Ltbff1w+cvuDV57+8vSfb//v5nvfJ3E6jtTKGuPYK6MxWntN+tKXcJOX97qyLku63QAeSXpo9qwd5XE0hqOnmmphsJMtAwDa5WpEVACAAyZx/QeAA6b+OcC91ZVcferuJxKddeeliDi0Fn/9/uZaSW/tnt2h6n3QoXvJpjsjSUSM7EH9oxHx6ddvfp5O0ab7kADNXLseEedHRree/5Mtzyzs1jPbFVYGqrPRBxY7/0HnfJOOf55vNv7LrI9/osn4Z6DJsfsoHn78Z27tQTUtpeO/FxuebbvfEH/NSE8t96/qmK8vuXCxkE/Pbf+OiLHoG0jzE9VVmz8FNXb3r7ut6m8c//324VufpfWn8401Mrd6BzZvMz1VnnrcuOvuXI94ordZ/Ml6/yctxr9nd1jHqy+8+0mrsjT+NN76tDX+9qrciHiqaf9v9GWy7fOJ49XdYby+UzTx1U8fD7Wqf6P/B6rztP76e4FOSPt/aPv4R5LG5zVLu6/jhxvD37Yqa9z/m8fffP/vT96opvtry65MlcsLExH9yWtbl5/Y2Laer6+fxj/2ZPPjv9X+n6k9G3t+Pbe93tu/fFH7V03jr7rWKv72SuOf3lX/b5Oo1LZ5oOjm/dmeVvXvrP8nq6mx2pKdnP8e0tLH2JsBAAAAAAAAAAAAAAAAAAAAAAAAYPcyEXEkkkx2PZ3JZLNrv+H93xjKFIql8rELxcX56aj+VvZI9GXqX3U53PB9qBO178Ov5088kH82Iv4TER8NDFbz2VyxMN3t4AEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg5vDm3/+/ms6y2bWynwe63ToAoG0OdbsBAEDHuf4DwMGzu+v/YNvaAQB0zq7f/1eS9jQEAOiYHV//z7e3HQBA57j/DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQJudPXMmnSp/rK7k0vz05aXF2eLl49P50mx2bjGXzRUXLmVnisWZQj6bK861/EfX1maFYvHSZMwvXhkv50vl8dLS8rm54uJ8+dzFuamZ/Ll8X8ciAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICdKy0tz04VCvkFiW0Tg/ujGfsm0Rv7ohn/+ER/12pvPEsMdu8EBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALDP/R0AAP//aHclQg==")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000006, 0x28011, r2, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x7, 0x80, 0x7ff, 0x540e0, r2, 0x1ff, '\x00', 0x0, r2, 0x3, 0x5, 0x0, 0x4, @void, @value, @value=r2}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000020fe753dfd0de8531789a79ba200000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x2}]})
close_range(r5, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
name_to_handle_at(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)

3.802608639s ago: executing program 0 (id=4427):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

3.628134141s ago: executing program 4 (id=4430):
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xe, 0x3}, {0x5}, {0x5, 0xfff1}}}, 0x24}}, 0x40004)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @empty, 0xfffffffc}, 0x1c)
listen(r0, 0x20000005)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c)
r2 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$inet6(r2, &(0x7f00000001c0)=[{{0x0, 0x7fee, 0x0}}], 0x500, 0x0)
close(r1)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f00000001c0)=@gcm_128={{0x303}, "d428d493b54539b9", "62714b65e42465c5518ccb9d7c403972", "2cbdb9e9"}, 0x28)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000340)={'batadv_slave_0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000007000000000000070000040900010073797a300000000088000000090a010400000000000000000700000208000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d44001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c000280080001400000e41f08000340000001"], 0xd0}}, 0x20050800)
bind$bt_hci(r7, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@dioread_nolock}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xa}}, {@data_err_ignore}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, &(0x7f0000000180)={0x3fffffffc00, 0x3ff, 0x4, 0x2})
write$binfmt_misc(r7, &(0x7f0000001280), 0x6)

3.627307921s ago: executing program 2 (id=4431):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_clone(0x80000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000bc0))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockname$packet(r1, &(0x7f0000000340)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@gettclass={0x24, 0x2a, 0x129, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r3, {0xe, 0x3}, {}, {0x7, 0xfff3}}}, 0x24}}, 0x4000000)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
syz_mount_image$ext4(&(0x7f0000000580)='ext2\x00', &(0x7f0000000040)='./file0\x00', 0x1008082, &(0x7f00000001c0)={[{@nodioread_nolock}, {@nolazytime}, {@abort}, {@errors_continue}, {@data_ordered}, {@jqfmt_vfsv0}, {@nomblk_io_submit}, {@nobarrier}]}, 0x0, 0x5e0, &(0x7f00000011c0)="$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")
r5 = syz_open_dev$hidraw(&(0x7f00000004c0), 0xfffffffffefffffc, 0x10a002)
preadv(r5, &(0x7f0000000380)=[{&(0x7f0000000280)=""/240, 0xf0}], 0x1, 0x33, 0x2)
connect$inet(r1, &(0x7f00000003c0)={0x2, 0x4e22, @broadcast}, 0x10)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
close_range(r6, 0xffffffffffffffff, 0x0)

3.10886017s ago: executing program 4 (id=4435):
r0 = socket(0x10, 0x3, 0x6)
r1 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x90, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4]}}}}, @TCA_RATE={0x6}]}, 0x90}}, 0x20000000)

3.08632425s ago: executing program 2 (id=4436):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x8, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000680)=@newtfilter={0x60, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0xf, 0x4}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_flow={{0x9}, {0x30, 0x2, [@TCA_FLOW_EMATCHES={0x2c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_LIST={0x20, 0x2, 0x0, 0x1, [@TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x3, 0x3, 0x2}, {0x7, 0x7fff, 0x8, 0x7}}}]}]}]}}]}, 0x60}}, 0x400c084)

2.831165834s ago: executing program 4 (id=4438):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d6163767461700000000800014000000005"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000090, &(0x7f0000000540), 0x81, 0x7a5, &(0x7f0000000f80)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000006, 0x28011, r2, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x7, 0x80, 0x7ff, 0x540e0, r2, 0x1ff, '\x00', 0x0, r2, 0x3, 0x5, 0x0, 0x4, @void, @value, @value=r2}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000020fe753dfd0de8531789a79ba200000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x2}]})
close_range(r5, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
name_to_handle_at(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)

2.588150558s ago: executing program 6 (id=4439):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r0}, 0x9)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600"], 0x58}}, 0x0)

2.095877156s ago: executing program 2 (id=4440):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
socketpair$unix(0x1, 0x61c215ba17dc31e3, 0x0, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x169a82, 0x109)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0)
sendfile(r0, r0, 0x0, 0xb)

1.913862409s ago: executing program 6 (id=4441):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000020b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$inet6(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0, r2}, 0x18)
sendto$inet6(r1, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

1.517403515s ago: executing program 6 (id=4443):
bind$inet(0xffffffffffffffff, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000ccb000)={0x2, 0x4e20, @local}, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f00000039c0)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000180)={0xffffffffffffffff, r0})
sendmsg$rds(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000002800)=[{&(0x7f0000002980)=""/4112, 0x1010}], 0x1}, 0x0)
write(r1, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000003c0)=[{{0x0, 0x0, 0x0}, 0x7ff}, {{0x0, 0x0, 0x0}}], 0x2, 0x40012120, 0x0)

1.477139376s ago: executing program 5 (id=4444):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c00000014000100fffffffbffdbdf250a00a100", @ANYRES32=r2], 0x2c}}, 0x24005040)

1.2282103s ago: executing program 5 (id=4445):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r2 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'team0\x00', <r3=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r2, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r3}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffff9}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004000}, 0x24040840)

1.117139121s ago: executing program 4 (id=4446):
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xe, 0x3}, {0x5}, {0x5, 0xfff1}}}, 0x24}}, 0x40004)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @empty, 0xfffffffc}, 0x1c)
listen(r0, 0x20000005)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c)
r2 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$inet6(r2, &(0x7f00000001c0)=[{{0x0, 0x7fee, 0x0}}], 0x500, 0x0)
close(r1)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f00000001c0)=@gcm_128={{0x303}, "d428d493b54539b9", "62714b65e42465c5518ccb9d7c403972", "2cbdb9e9"}, 0x28)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000340)={'batadv_slave_0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000007000000000000070000040900010073797a300000000088000000090a010400000000000000000700000208000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d44001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c000280080001400000e41f08000340000001"], 0xd0}}, 0x20050800)
bind$bt_hci(r7, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@dioread_nolock}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xa}}, {@data_err_ignore}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, &(0x7f0000000180)={0x3fffffffc00, 0x3ff, 0x4, 0x2})
write$binfmt_misc(r7, &(0x7f0000001280), 0x6)

1.016549823s ago: executing program 5 (id=4447):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e00000000000000000000020000e60000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xd, &(0x7f0000000540)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x9}, [@ringbuf_query, @btf_id={0x18, 0x8, 0x3, 0x0, 0x5}, @cb_func={0x18, 0xa, 0x4, 0x0, 0xfffffffffffffffe}, @generic={0x4e, 0x0, 0x7, 0x7, 0x5}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], 0x0, 0xa, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x18)
clock_getres(0x1, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10)
close_range(r2, 0xffffffffffffffff, 0x0)
setuid(0xee00)
setpriority(0x1, 0x0, 0x100000000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='mm_page_alloc\x00', r5}, 0x10)
syz_clone(0x42a00180, 0x0, 0x0, 0x0, 0x0, 0x0)

796.157827ms ago: executing program 2 (id=4448):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_clone(0x80000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000bc0))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockname$packet(r1, &(0x7f0000000340)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00(\x00'], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@gettclass={0x24, 0x2a, 0x129, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r3, {0xe, 0x3}, {}, {0x7, 0xfff3}}}, 0x24}}, 0x4000000)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
syz_mount_image$ext4(&(0x7f0000000580)='ext2\x00', &(0x7f0000000040)='./file0\x00', 0x1008082, &(0x7f00000001c0)={[{@nodioread_nolock}, {@nolazytime}, {@abort}, {@errors_continue}, {@data_ordered}, {@jqfmt_vfsv0}, {@nomblk_io_submit}, {@nobarrier}]}, 0x0, 0x5e0, &(0x7f00000011c0)="$eJzs3c1vVFUbAPDnTj9oKe/bQt68igtpYgwkSksLGGJcwNaQBj/ixo2VFkQKNLRGiyaUBDcmxo0xJq5ciP+FEtmy0pULN64MCVHD0sQxd3pv6bR3+kU7t3J/v2TouefM5Zzb6dNz5vScOwFU1mD6Ty1if0RMJxH9yfxiWWdkhYMLz3vw50dn00cS9fprvyeRZHn585Psa192ck9E/PhDEvs6VtY7M3ft4vjU1OTV7Hh49tL08MzctcMXLo2fnzw/eXn0hdETx48dPzFyZFPXdb0g7/TNd9/v/2TszW+++isZ+faXsSROxsvZE5dex1YZjMHG9yRZWdR3YqsrK0lH9nOy9CVOOoue2dW+RrFu+euXvjpPRH90xMMXrz8+fqXUxgHbqp5E1IGKSsQ/VFQ+Dsjf2y9/H1wrZVQCtMP9UwsTACvjv3NhbjB6GnMDux8ksXRaJ4mIzc3MNdsTEXfvjN08d2fsZmzTPBxQbP5GRDxZFP9JI/4HoicGGvFfa4r/dFxwJvua5r+6yfqXTxWLf2ifhfjvWTX+o0X8v7Uk/t/eZP2DD5Pv9DbFf+9mLwkAAAAAAAAq6/apiHi+6O//tcX1P1Gw/qcvIk5uQf2Dy45X/v2/dm8LqgEK3D8V8VLh+t9avvp3oCNL/aexHqArOXdhavJIRPw3Ig5F1670eGSVOg5/uu/LVmWD2fq//JHWfzdbC5i1417nruZzJsZnxx/1uoGI+zcinipc/5ss9v9JQf+f/j6YXmcd+569daZV2drxD2yX+tcRBwv7/4d3rUhWvz/HcGM8MJyPClZ6+sPPvmtV/2bjv/AWE8CGpP3/7tXjfyBZer+emY3XcXSus96qbLPj/+7k9cYtZ7qzvA/GZ2evjkR0J6c70tym/NGNtxkeR3k85PGSxv+hZ1af/ysa//dGxPyy/zv5o3lPce7/f/f92qo9xv9QnjT+JzbU/288MXpr4PtW9a+v/z/W6OsPZTnm/2DBF3mYdjfnF4RjZ1FRu9sLAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAI+DWkTsiaQ2tJiu1YaGIvoi4n+xuzZ1ZWb2uXNX3rs8kZY1Pv+/ln/Sb//CcZJ//v/AkuPRZcdHI2JvRHze0ds4Hjp7ZWqi7IsHAAAAAAAAAAAAAAAAAACAHaKvxf7/1G8dZbcO2HadZTcAKE1B/P9URjuA9tP/Q3WJf6gu8Q/VJf6husQ/VJf4h+oS/1Bd4h8AAAAAAB4rew/c/jmJiPkXexuPVHdW1lVqy4DtViu7AUBp3OIHqsvSH6gu7/GBZI3ynpYnrXXmaqbPPsLJAAAAAAAAAAAAAFA5B/fb/w9VZf8/VJf9/1Bd+f7/AyW3A2g/7/GBWGMnf+H+/zXPAgAAAAAAAAAAAAC20szctYvjU1OTVyXe2BnNaGeiXq9fT38Kdkp7/uWJfCn8TmnPskS+1299Z5X3OwkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGj2TwAAAP//+Ekkyg==")
r5 = syz_open_dev$hidraw(&(0x7f00000004c0), 0xfffffffffefffffc, 0x10a002)
preadv(r5, &(0x7f0000000380)=[{&(0x7f0000000280)=""/240, 0xf0}], 0x1, 0x33, 0x2)
connect$inet(r1, &(0x7f00000003c0)={0x2, 0x4e22, @broadcast}, 0x10)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
close_range(r6, 0xffffffffffffffff, 0x0)

700.695098ms ago: executing program 4 (id=4449):
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x14, 0x4, &(0x7f0000000100)=@raw=[@cb_func={0x18, 0xa, 0x4, 0x0, 0x2}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x1}], 0x0, 0xa, 0x87, &(0x7f0000000280)=""/135, 0x41000, 0x40, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000380)={0x0, 0xb, 0xcfdb, 0xb}, 0x10, 0x0, 0xffffffffffffffff, 0x3, &(0x7f0000000700)=[0xffffffffffffffff, 0x1], &(0x7f0000000740)=[{0x5, 0x1, 0x4, 0x6}, {0x5, 0x5, 0x5, 0x7}, {0x1, 0x1, 0x9, 0x6}], 0x10, 0x6d, @void, @value}, 0x94)
r0 = socket$inet(0x2, 0x4000000805, 0x0)
sendmmsg(r0, &(0x7f0000000e40)=[{{&(0x7f0000000000)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f0000000300)=[{&(0x7f00000000c0)="ae", 0x1}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000008400000005"], 0x18}}], 0x2, 0x844)

668.430769ms ago: executing program 5 (id=4450):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@jqfmt_vfsv0}, {@grpjquota}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, 0x0, 0x1205000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x800, 0x49)
preadv2(r0, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x1, 0x0, 0x0, 0x1a)

521.005961ms ago: executing program 6 (id=4451):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r0}, 0x9)
syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)

506.955971ms ago: executing program 4 (id=4452):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f0000000280), 0x10, 0x4dc, &(0x7f0000000d80)="$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")
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, &(0x7f0000000240))
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
getpid()
accept$inet6(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={0xffffffffffffffff, 0x58, &(0x7f00000003c0)}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002eb0e00000000000000000105000600200000000a00000040010000000500e50000070000001f00001a000000030000a95a6e870200010000e9ff070040000200000000050005000000cc580a"], 0x80}}, 0x0)
sendmmsg(r3, &(0x7f0000000180), 0x400008a, 0x0)

440.050422ms ago: executing program 2 (id=4453):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000020b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$inet6(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0, r2}, 0x18)
sendto$inet6(r1, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

358.204044ms ago: executing program 5 (id=4454):
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, &(0x7f0000001b40)=@framed, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000640)='percpu_alloc_percpu\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_rdma(0x10, 0x3, 0x14)
socket$unix(0x1, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet_icmp(0x2, 0x2, 0x1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nbd(0x0, 0xffffffffffffffff)
socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))
socket$inet(0x2, 0x1, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r1, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r3}, 0x80, &(0x7f00000004c0)}}], 0x1, 0x0)

338.794984ms ago: executing program 6 (id=4455):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c00000014000100fffffffbffdbdf250a00a100", @ANYRES32=r2], 0x2c}}, 0x24005040)

153.271597ms ago: executing program 2 (id=4456):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'macvtap0\x00', <r1=>0x0})
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000030500000000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="02880100373004002800128008000100687372001c00028008000100", @ANYRES32=r1, @ANYBLOB="080002", @ANYRES32=r3], 0x48}}, 0x4)

32.754299ms ago: executing program 6 (id=4457):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d6163767461700000000800014000000005"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000090, &(0x7f0000000540), 0x81, 0x7a5, &(0x7f0000000f80)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000006, 0x28011, r3, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x7, 0x80, 0x7ff, 0x540e0, r3, 0x1ff, '\x00', 0x0, r3, 0x3, 0x5, 0x0, 0x4, @void, @value, @value=r3}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000020fe753dfd0de8531789a79ba200000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x2}]})
close_range(r6, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
name_to_handle_at(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 5 (id=4458):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r2 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'team0\x00', <r3=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r2, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r3}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffff9}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004000}, 0x24040840)

kernel console output (not intermixed with test programs):

unconfined pid=13627 comm="syz.0.3367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  412.915447][T13628] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  412.941725][T13654] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3376'.
[  412.953556][T13628] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  412.966685][T13628] EXT4-fs (loop0): This should not happen!! Data will be lost
[  412.966685][T13628] 
[  412.996440][T13628] EXT4-fs (loop0): Total free blocks count 0
[  412.999835][   T27] audit: type=1326 audit(1744378593.815:3585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13627 comm="syz.0.3367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  413.016330][T13628] EXT4-fs (loop0): Free/Dirty block details
[  413.050355][T13628] EXT4-fs (loop0): free_blocks=2415919104
[  413.073130][T13628] EXT4-fs (loop0): dirty_blocks=2528
[  413.082492][   T27] audit: type=1326 audit(1744378593.815:3586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13627 comm="syz.0.3367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  413.085278][T13628] EXT4-fs (loop0): Block reservation details
[  413.125399][   T27] audit: type=1326 audit(1744378593.815:3587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13627 comm="syz.0.3367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  413.171586][T13628] EXT4-fs (loop0): i_reserved_data_blocks=158
[  413.403023][ T4299] hid-generic 0705:0000:0000.001B: unknown main item tag 0x0
[  413.429945][T13663] loop6: detected capacity change from 0 to 1024
[  413.443407][ T4299] hid-generic 0705:0000:0000.001B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  413.458390][T13663] EXT4-fs: Ignoring removed nomblk_io_submit option
[  413.486673][T13663] EXT4-fs: Mount option(s) incompatible with ext2
[  413.499668][T11507] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 476 with error 28
[  413.632806][T13674] netlink: 96 bytes leftover after parsing attributes in process `syz.2.3386'.
[  413.777032][T13676] netlink: 185 bytes leftover after parsing attributes in process `syz.5.3387'.
[  413.805962][T13680] loop6: detected capacity change from 0 to 512
[  413.823741][T13679] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  413.823741][T13679]    program syz.0.3384 not setting count and/or reply_len properly
[  413.890587][T13680] Quota error (device loop6): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  413.932088][T13680] EXT4-fs error (device loop6): ext4_acquire_dquot:6802: comm syz.6.3389: Failed to acquire dquot type 0
[  413.943717][T13688] loop4: detected capacity change from 0 to 1024
[  413.950976][T13688] EXT4-fs: Ignoring removed nomblk_io_submit option
[  413.971481][T13688] EXT4-fs: Mount option(s) incompatible with ext2
[  414.008293][T13680] EXT4-fs error (device loop6): ext4_acquire_dquot:6802: comm syz.6.3389: Failed to acquire dquot type 0
[  414.030775][T13680] EXT4-fs error (device loop6): ext4_acquire_dquot:6802: comm syz.6.3389: Failed to acquire dquot type 0
[  414.048392][T13680] EXT4-fs (loop6): 1 orphan inode deleted
[  414.062278][T13680] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  414.081533][T13680] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  414.097833][T13694] loop5: detected capacity change from 0 to 512
[  414.108804][T13694] EXT4-fs: Ignoring removed nobh option
[  414.151599][T13694] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.3394: invalid indirect mapped block 256 (level 2)
[  414.186491][ T4782] usb 3-1: new full-speed USB device number 25 using dummy_hcd
[  414.196630][T13694] EXT4-fs (loop5): 2 truncates cleaned up
[  414.202810][T13694] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  414.326606][T13699] loop4: detected capacity change from 0 to 2048
[  414.380183][T13699] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  414.395890][ T4782] usb 3-1: New USB device found, idVendor=07c9, idProduct=8e12, bcdDevice=c2.05
[  414.412305][ T4782] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0
[  414.426998][ T4782] usb 3-1: Product: syz
[  414.441499][ T4782] usb 3-1: Manufacturer: syz
[  414.451308][ T4782] usb 3-1: config 0 descriptor??
[  414.540260][T13705] random: crng reseeded on system resumption
[  414.665398][ T4782] usb 3-1: USB disconnect, device number 25
[  414.726351][T13709] loop0: detected capacity change from 0 to 512
[  414.753589][T13709] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  414.812127][T13709] EXT4-fs (loop0): 1 truncate cleaned up
[  414.852665][T13709] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  415.208181][T13699] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  415.622443][T13699] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  415.702367][T13699] EXT4-fs (loop4): This should not happen!! Data will be lost
[  415.702367][T13699] 
[  415.753640][T13699] EXT4-fs (loop4): Total free blocks count 0
[  415.759705][T13699] EXT4-fs (loop4): Free/Dirty block details
[  415.844056][T13699] EXT4-fs (loop4): free_blocks=2415919104
[  415.871385][T13356] EXT4-fs (loop0): unmounting filesystem.
[  415.883895][T13699] EXT4-fs (loop4): dirty_blocks=2064
[  415.889354][T13699] EXT4-fs (loop4): Block reservation details
[  415.895678][T13699] EXT4-fs (loop4): i_reserved_data_blocks=129
[  415.934745][T12549] EXT4-fs (loop5): unmounting filesystem.
[  416.079350][T11518] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2 with error 28
[  416.268956][    T7] hid-generic 0705:0000:0000.001C: unknown main item tag 0x0
[  416.312959][T13722] loop5: detected capacity change from 0 to 1024
[  416.319772][    T7] hid-generic 0705:0000:0000.001C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  416.350570][T13722] EXT4-fs: Ignoring removed nomblk_io_submit option
[  416.371458][T13722] EXT4-fs: Mount option(s) incompatible with ext2
[  416.519414][T13736] loop4: detected capacity change from 0 to 512
[  416.539826][T13736] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  416.604264][T13736] EXT4-fs (loop4): 1 truncate cleaned up
[  416.609983][T13736] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  416.715183][T12700] EXT4-fs (loop6): unmounting filesystem.
[  416.792586][T12260] EXT4-fs (loop4): unmounting filesystem.
[  416.845647][T13747] 9pnet_fd: Insufficient options for proto=fd
[  416.992361][    T7] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[  417.190375][    T7] usb 6-1: New USB device found, idVendor=07c9, idProduct=8e12, bcdDevice=c2.05
[  417.204842][   T26] hid-generic 0705:0000:0000.001D: unknown main item tag 0x0
[  417.222500][    T7] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0
[  417.230563][    T7] usb 6-1: Product: syz
[  417.243750][   T26] hid-generic 0705:0000:0000.001D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  417.260614][T13765] loop2: detected capacity change from 0 to 1024
[  417.275206][T13765] EXT4-fs: Ignoring removed nomblk_io_submit option
[  417.288066][    T7] usb 6-1: Manufacturer: syz
[  417.320604][T13765] EXT4-fs: Mount option(s) incompatible with ext2
[  417.330874][    T7] usb 6-1: config 0 descriptor??
[  417.557880][ T4782] usb 6-1: USB disconnect, device number 3
[  417.669486][T13781] netlink: 80 bytes leftover after parsing attributes in process `syz.4.3425'.
[  418.031067][T13796] netlink: 'syz.6.3433': attribute type 3 has an invalid length.
[  418.215558][T13800] loop4: detected capacity change from 0 to 1024
[  418.227059][T13800] EXT4-fs: Ignoring removed nomblk_io_submit option
[  418.276335][T13800] EXT4-fs: Mount option(s) incompatible with ext2
[  418.576936][T13811] loop5: detected capacity change from 0 to 512
[  418.611888][T13811] EXT4-fs warning (device loop5): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  418.626030][T13813] netlink: 128 bytes leftover after parsing attributes in process `syz.4.3440'.
[  418.632308][T13811] EXT4-fs warning (device loop5): dx_probe:881: Enable large directory feature to access it
[  418.645893][T13811] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.3439: Corrupt directory, running e2fsck is recommended
[  418.662285][T13811] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  418.677048][T13811] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2186: inode #15: comm syz.5.3439: corrupted in-inode xattr
[  418.752546][T13811] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.3439: couldn't read orphan inode 15 (err -117)
[  418.779303][T13811] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  418.864420][T12549] EXT4-fs (loop5): unmounting filesystem.
[  418.951358][   T27] kauditd_printk_skb: 16 callbacks suppressed
[  418.951375][   T27] audit: type=1326 audit(1744378600.175:3599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13819 comm="syz.6.3444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  419.100701][   T27] audit: type=1326 audit(1744378600.185:3600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13819 comm="syz.6.3444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  419.200157][   T27] audit: type=1326 audit(1744378600.185:3601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13819 comm="syz.6.3444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  419.222656][    C0] vkms_vblank_simulate: vblank timer overrun
[  419.235843][   T27] audit: type=1326 audit(1744378600.185:3602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13819 comm="syz.6.3444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  419.258298][    C0] vkms_vblank_simulate: vblank timer overrun
[  419.265604][   T27] audit: type=1326 audit(1744378600.185:3603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13819 comm="syz.6.3444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  419.284664][T13830] loop5: detected capacity change from 0 to 256
[  419.288046][    C0] vkms_vblank_simulate: vblank timer overrun
[  419.351373][   T27] audit: type=1326 audit(1744378600.185:3604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13819 comm="syz.6.3444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  419.373684][T13830] FAT-fs (loop5): Directory bread(block 64) failed
[  419.373863][    C0] vkms_vblank_simulate: vblank timer overrun
[  419.380342][T13830] FAT-fs (loop5): Directory bread(block 65) failed
[  419.426691][   T27] audit: type=1326 audit(1744378600.185:3605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13819 comm="syz.6.3444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  419.442370][T13830] FAT-fs (loop5): Directory bread(block 66) failed
[  419.465575][   T27] audit: type=1326 audit(1744378600.185:3606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13819 comm="syz.6.3444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  419.482247][T13830] FAT-fs (loop5): Directory bread(block 67) failed
[  419.488178][    C0] vkms_vblank_simulate: vblank timer overrun
[  419.501186][ T4782] usb 3-1: new full-speed USB device number 26 using dummy_hcd
[  419.516195][T13830] FAT-fs (loop5): Directory bread(block 68) failed
[  419.526357][T13830] FAT-fs (loop5): Directory bread(block 69) failed
[  419.540097][T13830] FAT-fs (loop5): Directory bread(block 70) failed
[  419.579514][T13830] FAT-fs (loop5): Directory bread(block 71) failed
[  419.614179][   T27] audit: type=1326 audit(1744378600.185:3607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13819 comm="syz.6.3444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  419.617130][T13830] FAT-fs (loop5): Directory bread(block 72) failed
[  419.638148][   T27] audit: type=1326 audit(1744378600.395:3608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13824 comm="syz.6.3446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  419.670191][T13835] loop6: detected capacity change from 0 to 1024
[  419.695786][ T4782] usb 3-1: New USB device found, idVendor=07c9, idProduct=8e12, bcdDevice=c2.05
[  419.704580][T13835] EXT4-fs: Ignoring removed nomblk_io_submit option
[  419.712225][ T4782] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0
[  419.722096][ T4782] usb 3-1: Product: syz
[  419.724313][T13835] EXT4-fs: Mount option(s) incompatible with ext2
[  419.727200][ T4782] usb 3-1: Manufacturer: syz
[  419.749026][T13830] FAT-fs (loop5): Directory bread(block 73) failed
[  419.761148][ T4788] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  419.773276][ T4782] usb 3-1: config 0 descriptor??
[  419.784140][ T4788] hid-generic 0000:0000:0000.001E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  419.794610][T13823] loop4: detected capacity change from 0 to 1024
[  419.887675][T13840] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3452'.
[  419.897822][T13840] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  419.908315][T13840] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  419.986698][ T4788] usb 3-1: USB disconnect, device number 26
[  420.171882][T13853] netlink: 84 bytes leftover after parsing attributes in process `syz.0.3456'.
[  421.300964][T13867] random: crng reseeded on system resumption
[  423.436583][T13866] loop5: detected capacity change from 0 to 512
[  423.499585][T13866] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  423.508798][T13866] ext4 filesystem being mounted at /74/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  424.204802][   T27] kauditd_printk_skb: 9 callbacks suppressed
[  424.204820][   T27] audit: type=1326 audit(1744378605.435:3618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13885 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  424.217250][T13883] loop2: detected capacity change from 0 to 1024
[  424.274468][   T27] audit: type=1326 audit(1744378605.435:3619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13885 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  424.410220][T13883] EXT4-fs: Ignoring removed nomblk_io_submit option
[  424.427685][   T27] audit: type=1326 audit(1744378605.525:3620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13885 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  424.477143][T13883] EXT4-fs: Mount option(s) incompatible with ext2
[  424.578980][   T27] audit: type=1326 audit(1744378605.525:3621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13885 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  424.715609][   T27] audit: type=1326 audit(1744378605.525:3622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13885 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  424.790045][T13892] netlink: 84 bytes leftover after parsing attributes in process `syz.0.3468'.
[  424.858249][   T27] audit: type=1326 audit(1744378605.525:3623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13885 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  424.924321][T12549] EXT4-fs (loop5): unmounting filesystem.
[  425.012263][   T27] audit: type=1326 audit(1744378605.525:3624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13885 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  425.042223][   T27] audit: type=1326 audit(1744378605.525:3625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13885 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  425.102320][   T27] audit: type=1326 audit(1744378605.525:3626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13885 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  425.145813][T13897] netlink: 'syz.4.3472': attribute type 10 has an invalid length.
[  425.171053][   T27] audit: type=1326 audit(1744378605.525:3627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13885 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  425.235247][T13897] 8021q: adding VLAN 0 to HW filter on device batadv0
[  425.265164][T13897] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  425.432664][ T4788] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[  425.439141][T13913] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3478'.
[  425.449752][T13907] loop2: detected capacity change from 0 to 2048
[  425.501351][T13907] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  425.635477][ T4788] usb 6-1: New USB device found, idVendor=07c9, idProduct=8e12, bcdDevice=c2.05
[  425.639240][T13923] random: crng reseeded on system resumption
[  425.652218][ T4788] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0
[  425.670600][ T4788] usb 6-1: Product: syz
[  425.674899][ T4788] usb 6-1: Manufacturer: syz
[  425.692119][ T4788] usb 6-1: config 0 descriptor??
[  425.839465][T13926] netlink: 84 bytes leftover after parsing attributes in process `syz.6.3482'.
[  425.905681][ T4788] usb 6-1: USB disconnect, device number 4
[  426.138395][T13934] loop6: detected capacity change from 0 to 1024
[  426.153602][T13934] EXT4-fs: Ignoring removed nomblk_io_submit option
[  426.181233][T13934] EXT4-fs: Mount option(s) incompatible with ext2
[  426.243649][T13907] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  426.287041][T13907] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  426.315810][T13907] EXT4-fs (loop2): This should not happen!! Data will be lost
[  426.315810][T13907] 
[  426.335913][T13907] EXT4-fs (loop2): Total free blocks count 0
[  426.348650][T13907] EXT4-fs (loop2): Free/Dirty block details
[  426.361597][T13907] EXT4-fs (loop2): free_blocks=2415919104
[  426.375359][T13907] EXT4-fs (loop2): dirty_blocks=3696
[  426.387613][T13907] EXT4-fs (loop2): Block reservation details
[  426.400960][T13907] EXT4-fs (loop2): i_reserved_data_blocks=231
[  426.610553][T13944] netlink: 'syz.6.3490': attribute type 4 has an invalid length.
[  426.690254][T11518] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 1642 with error 28
[  426.838342][T13950] netlink: 96 bytes leftover after parsing attributes in process `syz.4.3494'.
[  427.105851][T13964] loop5: detected capacity change from 0 to 1024
[  427.113521][T13964] EXT4-fs: Ignoring removed nomblk_io_submit option
[  427.130441][T13964] EXT4-fs: Mount option(s) incompatible with ext2
[  427.342589][    T7] usb 5-1: new full-speed USB device number 19 using dummy_hcd
[  427.538964][    T7] usb 5-1: New USB device found, idVendor=07c9, idProduct=8e12, bcdDevice=c2.05
[  427.557296][    T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0
[  427.575726][    T7] usb 5-1: Product: syz
[  427.580305][    T7] usb 5-1: Manufacturer: syz
[  427.607007][    T7] usb 5-1: config 0 descriptor??
[  427.652547][T13986] netlink: 96 bytes leftover after parsing attributes in process `syz.6.3511'.
[  427.846285][ T4299] usb 5-1: USB disconnect, device number 19
[  427.926561][T14000] tipc: Started in network mode
[  427.931753][T14000] tipc: Node identity 2, cluster identity 4711
[  427.970576][T14000] tipc: Node number set to 2
[  427.986918][T14006] loop5: detected capacity change from 0 to 128
[  428.111711][T14004] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  428.161540][T14010] device bond_slave_1 entered promiscuous mode
[  428.173508][T14010] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3523'.
[  428.284322][T14010] bond0: (slave bond_slave_1): Releasing backup interface
[  428.294426][T14010] device bond_slave_1 left promiscuous mode
[  428.452505][T14004] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  428.610018][T14004] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  428.828465][T14004] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  429.190805][T14004] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  429.323557][T14050] netlink: 100 bytes leftover after parsing attributes in process `syz.4.3534'.
[  429.709113][T14004] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  430.176363][T14004] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  430.196957][   T27] kauditd_printk_skb: 59 callbacks suppressed
[  430.196976][   T27] audit: type=1107 audit(1744378611.425:3687): pid=14049 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  430.265393][T14004] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  430.302424][ T4782] usb 3-1: new full-speed USB device number 27 using dummy_hcd
[  430.383943][T14061] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3541'.
[  430.430027][T14057] loop6: detected capacity change from 0 to 1024
[  430.442659][T14057] EXT4-fs: Ignoring removed bh option
[  430.486672][ T4782] usb 3-1: New USB device found, idVendor=07c9, idProduct=8e12, bcdDevice=c2.05
[  430.501173][ T4782] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0
[  430.510033][T14057] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  430.532395][ T4782] usb 3-1: Product: syz
[  430.554123][ T4782] usb 3-1: Manufacturer: syz
[  430.567355][ T4782] usb 3-1: config 0 descriptor??
[  430.609576][T12700] EXT4-fs (loop6): unmounting filesystem.
[  430.789290][   T26] usb 3-1: USB disconnect, device number 27
[  430.956221][T14089] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  430.969862][T14088] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3550'.
[  431.019150][T14092] loop5: detected capacity change from 0 to 512
[  431.034607][T14092] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  431.050813][T14092] EXT4-fs (loop5): 1 truncate cleaned up
[  431.060099][T14092] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  432.104990][T12549] EXT4-fs (loop5): unmounting filesystem.
[  432.147121][T14089] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.231203][T14089] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.294102][T14103] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3556'.
[  432.317228][T14089] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.407533][T14107] loop5: detected capacity change from 0 to 1024
[  432.425217][T14107] EXT4-fs: Ignoring removed bh option
[  432.490525][T14107] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  432.607787][T14118] block device autoloading is deprecated and will be removed.
[  432.618838][T14118] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  432.635083][T14121] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3562'.
[  432.644730][T14121] IPVS: Error joining to the multicast group
[  432.686585][T12549] EXT4-fs (loop5): unmounting filesystem.
[  432.781853][T14126] netlink: 'syz.4.3563': attribute type 5 has an invalid length.
[  432.783659][T14128] netlink: 'syz.5.3564': attribute type 10 has an invalid length.
[  432.820198][T14128] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  432.829004][   T27] audit: type=1326 audit(1744378614.045:3688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.4.3563" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x0
[  432.831168][T14130] loop6: detected capacity change from 0 to 512
[  432.875779][T14131] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  432.883374][T14130] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  432.896417][T14131] bond0: (slave dummy0): Releasing backup interface
[  432.908766][T14130] EXT4-fs (loop6): 1 truncate cleaned up
[  432.939214][T14134] dccp_invalid_packet: P.CsCov 4 exceeds packet length 28
[  432.944031][T14130] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  432.956225][   T27] audit: type=1326 audit(1744378614.175:3689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.4.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  432.999207][T14131] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  432.999927][T14131] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  433.002522][T14131] device bridge_slave_0 left promiscuous mode
[  433.002690][T14131] bridge0: port 1(bridge_slave_0) entered disabled state
[  433.010581][   T27] audit: type=1326 audit(1744378614.175:3690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.4.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  433.059931][T14131] device bridge_slave_1 left promiscuous mode
[  433.066882][T14131] bridge0: port 2(bridge_slave_1) entered disabled state
[  433.091538][T14131] bond0: (slave bond_slave_0): Releasing backup interface
[  433.127663][T14131] bond0: (slave bond_slave_1): Releasing backup interface
[  433.258880][T14131] team0: Port device team_slave_0 removed
[  433.267164][   T27] audit: type=1326 audit(1744378614.175:3691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.4.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  433.289959][   T27] audit: type=1326 audit(1744378614.175:3692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.4.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fae2b18bc1f code=0x7ffc0000
[  433.313356][   T27] audit: type=1326 audit(1744378614.175:3693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.4.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  433.336855][   T27] audit: type=1326 audit(1744378614.175:3694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.4.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  433.407250][   T27] audit: type=1326 audit(1744378614.175:3695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.4.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  433.743343][T14139] sd 0:0:1:0: device reset
[  433.752435][   T27] audit: type=1326 audit(1744378614.175:3696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.4.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  433.985227][T12700] EXT4-fs (loop6): unmounting filesystem.
[  434.030765][T14131] team0: Port device team_slave_1 removed
[  434.074679][T14131] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  434.092584][T14131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  434.111496][T14131] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  434.127904][T14131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  434.520394][T14163] syz.2.3578[14163] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  434.520506][T14163] syz.2.3578[14163] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  434.655146][T14165] hub 2-0:1.0: USB hub found
[  434.673760][T14165] hub 2-0:1.0: 1 port detected
[  435.494695][T14169] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3580'.
[  435.568511][T14169] device hsr0 entered promiscuous mode
[  435.602515][T14169] device macvlan2 entered promiscuous mode
[  435.649649][   T27] kauditd_printk_skb: 20 callbacks suppressed
[  435.649666][   T27] audit: type=1326 audit(1744378616.875:3717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14173 comm="syz.6.3583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  435.721675][   T27] audit: type=1326 audit(1744378616.905:3718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14173 comm="syz.6.3583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  435.770047][   T27] audit: type=1326 audit(1744378616.905:3719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14173 comm="syz.6.3583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  435.822532][   T27] audit: type=1326 audit(1744378616.915:3720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14173 comm="syz.6.3583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  435.902367][   T27] audit: type=1326 audit(1744378616.915:3721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14173 comm="syz.6.3583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  435.970090][   T27] audit: type=1326 audit(1744378616.915:3722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14173 comm="syz.6.3583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  436.022381][   T27] audit: type=1326 audit(1744378616.915:3723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14173 comm="syz.6.3583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  436.095190][T14185] loop4: detected capacity change from 0 to 1024
[  436.147351][T14185] EXT4-fs: Ignoring removed nomblk_io_submit option
[  436.164436][   T27] audit: type=1326 audit(1744378616.915:3724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14173 comm="syz.6.3583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  436.194755][T14185] EXT4-fs: Mount option(s) incompatible with ext2
[  436.240587][   T27] audit: type=1326 audit(1744378616.915:3725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14173 comm="syz.6.3583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  436.390685][   T27] audit: type=1326 audit(1744378616.915:3726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14173 comm="syz.6.3583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  437.305611][T14202] hid-generic 0705:0000:0000.001F: unknown main item tag 0x0
[  437.345796][T14202] hid-generic 0705:0000:0000.001F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  437.362908][T14207] loop6: detected capacity change from 0 to 1024
[  437.379026][T14207] EXT4-fs: Ignoring removed nomblk_io_submit option
[  437.398869][T14207] EXT4-fs: Mount option(s) incompatible with ext2
[  437.624171][T14222] blktrace: Concurrent blktraces are not allowed on loop9
[  437.641488][ T4302] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  437.669155][T14221] loop2: detected capacity change from 0 to 1024
[  437.687266][ T4302] hid-generic 0000:0000:0000.0020: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  437.726271][T14221] EXT4-fs: Ignoring removed nomblk_io_submit option
[  437.744941][T14221] EXT4-fs: Mount option(s) incompatible with ext2
[  437.841465][T14228] netlink: 'syz.5.3604': attribute type 1 has an invalid length.
[  437.852033][T14228] netlink: 224 bytes leftover after parsing attributes in process `syz.5.3604'.
[  437.905283][T14231] loop4: detected capacity change from 0 to 512
[  437.952415][T14231] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  438.036886][T14231] EXT4-fs (loop4): 1 truncate cleaned up
[  438.052325][T14231] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  438.107592][T14238] loop6: detected capacity change from 0 to 512
[  438.175163][T14238] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.3607: casefold flag without casefold feature
[  438.209317][T14238] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.3607: couldn't read orphan inode 15 (err -117)
[  438.222474][T14218] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.3600: bg 0: block 254: padding at end of block bitmap is not set
[  438.269667][T14238] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  438.557058][T14246] loop5: detected capacity change from 0 to 512
[  438.561035][T12700] EXT4-fs (loop6): unmounting filesystem.
[  438.651062][T14246] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  438.666126][T14246] ext4 filesystem being mounted at /112/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  438.723332][T14250] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3611'.
[  438.813831][T14089] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  438.843745][T14089] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  438.862967][T14251] rdma_op ffff888079c571f0 conn xmit_rdma 0000000000000000
[  438.888220][T14089] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  438.947267][T14089] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  439.003497][T12549] EXT4-fs (loop5): unmounting filesystem.
[  439.200869][ T4782] hid-generic 0705:0000:0000.0021: unknown main item tag 0x0
[  439.226318][ T4782] hid-generic 0705:0000:0000.0021: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  439.251051][T14256] loop5: detected capacity change from 0 to 1024
[  439.268601][T14260] loop0: detected capacity change from 0 to 512
[  439.299490][T14256] EXT4-fs: Ignoring removed nomblk_io_submit option
[  439.324929][T14260] EXT4-fs warning (device loop0): ext4_enable_quotas:7037: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  439.342511][T14264] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3614'.
[  439.373203][T14256] EXT4-fs: Mount option(s) incompatible with ext2
[  439.393322][T14260] EXT4-fs (loop0): mount failed
[  439.441110][T14267] loop6: detected capacity change from 0 to 1024
[  439.458817][T14267] EXT4-fs: Ignoring removed nobh option
[  439.472586][T14267] EXT4-fs: Ignoring removed bh option
[  439.505039][T14267] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  439.587856][T14267] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  439.650733][T14267] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:3841: comm syz.6.3617: Allocating blocks 385-513 which overlap fs metadata
[  439.676979][T14277] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3620'.
[  439.759544][T14267] EXT4-fs (loop6): pa ffff88804e8e72a0: logic 16, phys. 129, len 24
[  439.767693][T14267] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 8
[  439.930503][T14277] bond0: (slave bond_slave_1): Releasing backup interface
[  439.950835][T12700] EXT4-fs (loop6): unmounting filesystem.
[  440.032682][T12260] EXT4-fs (loop4): unmounting filesystem.
[  440.407260][T14308] netlink: 128 bytes leftover after parsing attributes in process `syz.4.3630'.
[  440.715220][T14322] loop6: detected capacity change from 0 to 512
[  440.733210][   T27] kauditd_printk_skb: 71 callbacks suppressed
[  440.733227][   T27] audit: type=1326 audit(1744378621.955:3797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14323 comm="syz.4.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  440.783918][T14322] EXT4-fs (loop6): too many log groups per flexible block group
[  440.795467][T14322] EXT4-fs (loop6): failed to initialize mballoc (-12)
[  440.803071][   T27] audit: type=1326 audit(1744378621.985:3798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14323 comm="syz.4.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  440.810832][T14322] EXT4-fs (loop6): mount failed
[  440.902526][   T27] audit: type=1326 audit(1744378621.985:3799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14323 comm="syz.4.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  440.952650][   T27] audit: type=1326 audit(1744378622.115:3800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14328 comm="syz.2.3640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  441.012303][   T27] audit: type=1326 audit(1744378622.115:3801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14328 comm="syz.2.3640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  441.076163][   T27] audit: type=1326 audit(1744378622.115:3802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14328 comm="syz.2.3640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  441.136194][T14333] loop2: detected capacity change from 0 to 128
[  441.154153][   T27] audit: type=1326 audit(1744378622.115:3803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14328 comm="syz.2.3640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  441.230365][   T27] audit: type=1326 audit(1744378622.115:3804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14328 comm="syz.2.3640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  441.308522][   T27] audit: type=1326 audit(1744378622.115:3805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14328 comm="syz.2.3640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  441.374496][   T27] audit: type=1326 audit(1744378622.125:3806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14328 comm="syz.2.3640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  441.564030][T11528] kworker/u4:54: attempt to access beyond end of device
[  441.564030][T11528] loop2: rw=1, sector=145, nr_sectors = 464 limit=128
[  441.819856][T11528] kworker/u4:54: attempt to access beyond end of device
[  441.819856][T11528] loop2: rw=1, sector=617, nr_sectors = 424 limit=128
[  442.024130][T11528] kworker/u4:54: attempt to access beyond end of device
[  442.024130][T11528] loop2: rw=1, sector=609, nr_sectors = 8 limit=128
[  442.493433][T14353] loop2: detected capacity change from 0 to 1024
[  442.500617][T14353] EXT4-fs: Ignoring removed nobh option
[  442.506871][T14353] EXT4-fs: Ignoring removed bh option
[  442.513950][T14353] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  442.950168][T14353] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  442.990546][T14358] loop4: detected capacity change from 0 to 512
[  443.241967][T14358] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  443.332584][T14358] ext4 filesystem being mounted at /141/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  443.389676][T14353] EXT4-fs (loop2): Online defrag not supported with bigalloc
[  443.419330][T14353] netlink: '+}[@': attribute type 13 has an invalid length.
[  443.495376][T12260] EXT4-fs (loop4): unmounting filesystem.
[  443.595036][T14353] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  443.621132][T14353] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  443.729011][T13010] EXT4-fs (loop2): unmounting filesystem.
[  443.788708][T14379] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3658'.
[  443.943664][T14384] loop2: detected capacity change from 0 to 2048
[  444.020053][T14384] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  444.151931][T14384] random: crng reseeded on system resumption
[  444.465269][T14411] netlink: 'syz.6.3667': attribute type 298 has an invalid length.
[  444.737338][T14415] loop6: detected capacity change from 0 to 512
[  444.776593][T13010] EXT4-fs (loop2): unmounting filesystem.
[  444.810470][T14415] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  444.856329][T14415] ext4 filesystem being mounted at /138/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  445.032034][T12700] EXT4-fs (loop6): unmounting filesystem.
[  445.625755][T14443] loop6: detected capacity change from 0 to 512
[  445.635404][T14443] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  445.666971][T14443] EXT4-fs (loop6): 1 truncate cleaned up
[  445.676337][T14443] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  446.572907][   T27] kauditd_printk_skb: 77 callbacks suppressed
[  446.572925][   T27] audit: type=1326 audit(1744378627.805:3884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14459 comm="syz.2.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  446.723588][   T27] audit: type=1326 audit(1744378627.835:3885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14459 comm="syz.2.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  446.728560][T12700] EXT4-fs (loop6): unmounting filesystem.
[  446.746689][   T27] audit: type=1326 audit(1744378627.845:3886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14459 comm="syz.2.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  446.824572][   T27] audit: type=1326 audit(1744378627.845:3887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14459 comm="syz.2.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  446.889869][   T27] audit: type=1326 audit(1744378627.845:3888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14459 comm="syz.2.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  447.483089][T14489] loop4: detected capacity change from 0 to 512
[  447.516113][T14489] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  447.525315][T14489] ext4 filesystem being mounted at /155/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  447.540500][T14493] loop5: detected capacity change from 0 to 512
[  447.558207][T14493] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  447.596850][T14493] EXT4-fs (loop5): 1 truncate cleaned up
[  447.615180][T14493] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  447.896661][T12260] EXT4-fs (loop4): unmounting filesystem.
[  448.528502][T14508] loop6: detected capacity change from 0 to 512
[  448.588313][T14508] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  448.616854][T14508] ext4 filesystem being mounted at /144/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  448.661839][T12549] EXT4-fs (loop5): unmounting filesystem.
[  448.771743][T14508] loop6: detected capacity change from 512 to 64
[  448.778845][T14512] Quota error (device loop6): find_tree_dqentry: Can't read quota tree block 1
[  448.838174][T14512] Quota error (device loop6): qtree_read_dquot: Can't read quota structure for id 0
[  448.868732][T14512] EXT4-fs error (device loop6): ext4_acquire_dquot:6802: comm syz.6.3705: Failed to acquire dquot type 1
[  449.012856][T12700] EXT4-fs (loop6): unmounting filesystem.
[  449.016131][T14516] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.245561][T14516] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.282032][T14531] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3714'.
[  449.295792][T14534] random: crng reseeded on system resumption
[  449.373686][   T27] audit: type=1326 audit(1744378630.605:3889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14524 comm="syz.0.3711" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x0
[  449.452586][T14516] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.507686][   T27] audit: type=1326 audit(1744378630.735:3890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14524 comm="syz.0.3711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  449.508704][T14539] loop6: detected capacity change from 0 to 1024
[  449.556335][T14539] EXT4-fs: Ignoring removed nomblk_io_submit option
[  449.568039][T14539] EXT4-fs: Mount option(s) incompatible with ext2
[  449.587105][   T27] audit: type=1326 audit(1744378630.735:3891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14524 comm="syz.0.3711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  449.664511][T14516] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.770759][T14544] loop2: detected capacity change from 0 to 512
[  449.797886][T14544] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  449.819702][T14544] EXT4-fs (loop2): 1 truncate cleaned up
[  449.829302][T14544] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  449.939901][T14516] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  450.017197][T14516] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  450.081246][T14516] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  450.706202][T14516] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  450.923486][T13010] EXT4-fs (loop2): unmounting filesystem.
[  451.071914][T14557] loop6: detected capacity change from 0 to 2048
[  451.128796][T14561] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3721'.
[  451.165080][T14557]  loop6: p1 < > p4
[  451.170064][T14557] loop6: p4 size 8388608 extends beyond EOD, truncated
[  451.254154][T14564] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3724'.
[  451.721551][T14580] loop6: detected capacity change from 0 to 1024
[  451.747664][T14580] EXT4-fs: Ignoring removed bh option
[  451.790189][T14571] device wg2 entered promiscuous mode
[  451.858762][T14580] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  451.967950][   T22] hid-generic 0705:0000:0000.0022: unknown main item tag 0x0
[  451.983556][   T22] hid-generic 0705:0000:0000.0022: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  452.014145][T14587] loop5: detected capacity change from 0 to 1024
[  452.021148][T14587] EXT4-fs: Ignoring removed nomblk_io_submit option
[  452.042823][T14587] EXT4-fs: Mount option(s) incompatible with ext2
[  452.120471][T14593] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3733'.
[  452.131609][T14592] loop2: detected capacity change from 0 to 512
[  452.157443][T14592] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  452.209020][T14592] EXT4-fs (loop2): 1 truncate cleaned up
[  452.215412][T14592] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  452.274177][T14599] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3735'.
[  452.448421][T12700] EXT4-fs (loop6): unmounting filesystem.
[  453.241243][T13010] EXT4-fs (loop2): unmounting filesystem.
[  453.310866][T14615] device syzkaller0 entered promiscuous mode
[  454.481049][T14630] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3745'.
[  454.773824][T14635] loop6: detected capacity change from 0 to 1024
[  454.792976][T14635] EXT4-fs: Ignoring removed nomblk_io_submit option
[  454.801191][T14635] EXT4-fs: Mount option(s) incompatible with ext2
[  454.809559][   T22] hid-generic 0705:0000:0000.0023: unknown main item tag 0x0
[  454.822008][   T22] hid-generic 0705:0000:0000.0023: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  456.188830][T14620] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3743'.
[  456.203335][T14620] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3743'.
[  456.221814][T14620] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3743'.
[  456.242282][T14620] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3743'.
[  456.251251][T14620] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3743'.
[  456.277440][T14638] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3747'.
[  456.287128][T14620] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3743'.
[  456.312885][T14620] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3743'.
[  456.323485][T14620] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3743'.
[  456.847720][T14664] IPVS: Error joining to the multicast group
[  457.024152][T14669] loop5: detected capacity change from 0 to 1024
[  457.038701][T14669] EXT4-fs: Ignoring removed i_version option
[  457.192415][T14678] loop4: detected capacity change from 0 to 1024
[  457.199541][T14678] EXT4-fs: Ignoring removed orlov option
[  457.233305][T14678] EXT4-fs: Ignoring removed nomblk_io_submit option
[  457.280578][T14669] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  457.297361][T14678] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  457.366767][T14688] xt_CT: You must specify a L4 protocol and not use inversions on it
[  457.746313][   T27] kauditd_printk_skb: 7 callbacks suppressed
[  457.746354][   T27] audit: type=1800 audit(1744378638.975:3899): pid=14689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3761" name="bus" dev="loop5" ino=18 res=0 errno=0
[  457.982823][T14680] netlink: 'syz.0.3766': attribute type 4 has an invalid length.
[  458.068669][   T27] audit: type=1800 audit(1744378639.265:3900): pid=14669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3761" name="bus" dev="loop5" ino=18 res=0 errno=0
[  458.176520][T14695] device syzkaller1 entered promiscuous mode
[  458.276625][T12549] EXT4-fs (loop5): unmounting filesystem.
[  458.277361][T12260] EXT4-fs (loop4): unmounting filesystem.
[  458.470597][T14705] loop4: detected capacity change from 0 to 512
[  458.485321][T14706] blktrace: Concurrent blktraces are not allowed on loop11
[  458.487632][T14707] IPVS: Error joining to the multicast group
[  458.513979][T14705] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.3773: casefold flag without casefold feature
[  458.562980][T14705] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.3773: couldn't read orphan inode 15 (err -117)
[  458.582101][T14705] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  458.676888][T12260] EXT4-fs (loop4): unmounting filesystem.
[  458.850589][   T27] audit: type=1326 audit(1744378640.075:3901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14721 comm="syz.5.3781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8ef8d169 code=0x7ffc0000
[  458.918644][   T27] audit: type=1326 audit(1744378640.105:3902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14721 comm="syz.5.3781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8ef8d169 code=0x7ffc0000
[  459.015743][   T27] audit: type=1326 audit(1744378640.105:3903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14721 comm="syz.5.3781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fed8ef8d169 code=0x7ffc0000
[  459.051630][   T27] audit: type=1326 audit(1744378640.105:3904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14721 comm="syz.5.3781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8ef8d169 code=0x7ffc0000
[  459.080331][   T27] audit: type=1326 audit(1744378640.105:3905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14721 comm="syz.5.3781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8ef8d169 code=0x7ffc0000
[  460.090868][T14760] loop5: detected capacity change from 0 to 256
[  460.303090][T14768] __nla_validate_parse: 52 callbacks suppressed
[  460.303111][T14768] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3801'.
[  460.672307][   T22] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  460.676048][T14780] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  460.865589][   T22] usb 3-1: Using ep0 maxpacket: 16
[  460.880523][   T22] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  460.927253][   T22] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  460.944953][   T22] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  460.988563][   T22] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  460.998362][T14794] trusted_key: encrypted_key: insufficient parameters specified
[  461.035730][   T22] usb 3-1: config 0 descriptor??
[  461.047940][T14792] netlink: 1036 bytes leftover after parsing attributes in process `syz.5.3811'.
[  461.070821][T14796] device bond0 entered promiscuous mode
[  461.088018][T14796] device bond_slave_0 entered promiscuous mode
[  461.099851][T14798] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3813'.
[  461.103309][T14796] device bond_slave_1 entered promiscuous mode
[  461.122061][T14796] device batadv0 entered promiscuous mode
[  461.138893][T14796] device bond0 left promiscuous mode
[  461.147535][T14796] device bond_slave_0 left promiscuous mode
[  461.154384][T14796] device bond_slave_1 left promiscuous mode
[  461.160426][T14796] device batadv0 left promiscuous mode
[  461.253463][ T4302] usb 3-1: USB disconnect, device number 28
[  461.391958][T14806] loop6: detected capacity change from 0 to 1024
[  461.421270][T14806] EXT4-fs: Ignoring removed bh option
[  461.441871][T14813] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3818'.
[  461.553127][T14806] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  461.622932][T14818] tmpfs: Unknown parameter ''
[  462.093260][T12700] EXT4-fs (loop6): unmounting filesystem.
[  462.125716][ T4302] hid-generic 0705:0000:0000.0024: unknown main item tag 0x0
[  462.158609][T14827] loop2: detected capacity change from 0 to 1024
[  462.193015][ T4302] hid-generic 0705:0000:0000.0024: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  462.241474][T14827] EXT4-fs: Ignoring removed nomblk_io_submit option
[  462.256996][T14831] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3824'.
[  462.269069][T14827] EXT4-fs: Mount option(s) incompatible with ext2
[  462.306875][T14831] device macvtap0 entered promiscuous mode
[  462.331022][T14831] device macvtap0 left promiscuous mode
[  462.586197][T14838] loop6: detected capacity change from 0 to 128
[  462.626344][T14841] netlink: 'syz.2.3829': attribute type 4 has an invalid length.
[  462.663798][T14843] loop4: detected capacity change from 0 to 256
[  462.688396][T14838] syz.6.3828: attempt to access beyond end of device
[  462.688396][T14838] loop6: rw=2049, sector=145, nr_sectors = 88 limit=128
[  462.723883][   T27] audit: type=1800 audit(1744378643.955:3906): pid=14843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3830" name="file1" dev="loop4" ino=1048623 res=0 errno=0
[  462.968982][T14845] loop2: detected capacity change from 0 to 2048
[  463.035456][T14845] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  463.211193][T14857] random: crng reseeded on system resumption
[  463.282953][   T27] audit: type=1326 audit(1744378644.505:3907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14844 comm="syz.2.3831" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x0
[  463.342424][ T4782] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  463.421914][   T27] audit: type=1326 audit(1744378644.645:3908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14844 comm="syz.2.3831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  463.444439][    C1] vkms_vblank_simulate: vblank timer overrun
[  463.501416][   T27] audit: type=1326 audit(1744378644.645:3909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14844 comm="syz.2.3831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  463.562679][ T4782] usb 5-1: Using ep0 maxpacket: 16
[  463.573894][ T4782] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  463.617834][ T4782] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  463.638147][   T27] audit: type=1326 audit(1744378644.655:3910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14844 comm="syz.2.3831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  463.664142][T14865] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3836'.
[  463.667556][ T4782] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  463.712268][ T4782] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  463.728242][   T27] audit: type=1326 audit(1744378644.655:3911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14844 comm="syz.2.3831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  463.744686][T14845] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  463.756192][ T4782] usb 5-1: config 0 descriptor??
[  463.805896][   T27] audit: type=1326 audit(1744378644.655:3912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14844 comm="syz.2.3831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  463.857827][T14845] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  463.859625][   T27] audit: type=1326 audit(1744378644.655:3913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14844 comm="syz.2.3831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  463.912183][T14845] EXT4-fs (loop2): This should not happen!! Data will be lost
[  463.912183][T14845] 
[  463.921891][T14845] EXT4-fs (loop2): Total free blocks count 0
[  463.950829][T14845] EXT4-fs (loop2): Free/Dirty block details
[  463.959247][T14845] EXT4-fs (loop2): free_blocks=2415919104
[  463.970091][T14845] EXT4-fs (loop2): dirty_blocks=4320
[  463.977744][T14845] EXT4-fs (loop2): Block reservation details
[  463.987195][T14845] EXT4-fs (loop2): i_reserved_data_blocks=270
[  464.101300][ T7765] usb 5-1: USB disconnect, device number 20
[  464.123896][T14870] loop6: detected capacity change from 0 to 1024
[  464.151449][T14872] 9pnet_fd: p9_fd_create_unix (14872): problem connecting socket: ./file0: -111
[  464.177059][ T4782] hid-generic 0705:0000:0000.0025: unknown main item tag 0x0
[  464.188309][T14870] EXT4-fs (loop6): orphan cleanup on readonly fs
[  464.203161][T14870] EXT4-fs error (device loop6): ext4_orphan_get:1426: comm syz.6.3838: bad orphan inode 8
[  464.219738][T14870] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  464.223520][ T4782] hid-generic 0705:0000:0000.0025: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  464.263808][T14873] loop5: detected capacity change from 0 to 1024
[  464.271803][T14873] EXT4-fs: Ignoring removed nomblk_io_submit option
[  464.293704][T12700] EXT4-fs (loop6): unmounting filesystem.
[  464.299462][T11501] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  464.310064][T14873] EXT4-fs: Mount option(s) incompatible with ext2
[  464.410180][T14879] tipc: Started in network mode
[  464.421380][T14879] tipc: Node identity 2, cluster identity 4711
[  464.428288][T14879] tipc: Node number set to 2
[  464.533293][T14882] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3844'.
[  464.569783][T14886] netlink: 96 bytes leftover after parsing attributes in process `syz.2.3841'.
[  464.856621][T14897] netlink: 'syz.6.3850': attribute type 3 has an invalid length.
[  464.900765][   T27] audit: type=1326 audit(1744378646.125:3914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14898 comm="syz.5.3851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8ef8d169 code=0x7ffc0000
[  464.923259][    C1] vkms_vblank_simulate: vblank timer overrun
[  464.992307][   T27] audit: type=1326 audit(1744378646.125:3915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14898 comm="syz.5.3851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8ef8d169 code=0x7ffc0000
[  465.056297][   T27] audit: type=1326 audit(1744378646.125:3916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14898 comm="syz.5.3851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed8ef8d169 code=0x7ffc0000
[  465.153025][T14902] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3852'.
[  465.290109][T14915] netlink: 96 bytes leftover after parsing attributes in process `syz.6.3858'.
[  465.315367][T14916] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3859'.
[  465.337356][ T4302] hid-generic 0705:0000:0000.0026: unknown main item tag 0x0
[  465.362957][ T4302] hid-generic 0705:0000:0000.0026: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  465.370219][T14912] loop4: detected capacity change from 0 to 1024
[  465.389311][T14920] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3860'.
[  465.405656][T14906] infiniband syz0: set active
[  465.413308][T14906] infiniband syz0: added bond0
[  465.423307][T14920] blktrace: Concurrent blktraces are not allowed on loop1
[  465.432755][T14912] EXT4-fs: Ignoring removed nomblk_io_submit option
[  465.471052][T14912] EXT4-fs: Mount option(s) incompatible with ext2
[  465.515238][T14906] RDS/IB: syz0: added
[  465.531216][T14906] smc: adding ib device syz0 with port count 1
[  465.538216][T14906] smc:    ib device syz0 port 1 has pnetid 
[  466.367002][T14946] netlink: 96 bytes leftover after parsing attributes in process `syz.0.3872'.
[  468.402441][T14962] xt_CT: You must specify a L4 protocol and not use inversions on it
[  469.001632][ T4265] Bluetooth: hci2: command 0x0406 tx timeout
[  469.009205][ T4302] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[  469.195657][ T4302] usb 7-1: New USB device found, idVendor=07c9, idProduct=8e12, bcdDevice=c2.05
[  469.209968][ T4302] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0
[  469.224214][ T4302] usb 7-1: Product: syz
[  469.231242][ T4302] usb 7-1: Manufacturer: syz
[  469.241340][T14974] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3884'.
[  469.251463][ T4302] usb 7-1: config 0 descriptor??
[  469.256700][T14974] IPVS: Unknown mcast interface: vcan0
[  469.379617][T14980] loop2: detected capacity change from 0 to 1024
[  469.399328][T14980] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  469.473488][ T4302] usb 7-1: USB disconnect, device number 4
[  469.523389][T14980] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  469.537722][T14980] ext4 filesystem being mounted at /132/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  469.572549][T14991] loop4: detected capacity change from 0 to 512
[  469.613618][T14991] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  469.662840][T14991] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  469.682286][T13010] EXT4-fs (loop2): unmounting filesystem.
[  469.718422][T14991] EXT4-fs (loop4): unmounting filesystem.
[  469.759894][T15000] loop5: detected capacity change from 0 to 1024
[  469.767518][T15000] EXT4-fs: Ignoring removed bh option
[  469.767675][T15001] random: crng reseeded on system resumption
[  469.775318][T15000] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  469.830659][T15000] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  469.861578][   T27] kauditd_printk_skb: 139 callbacks suppressed
[  469.861596][   T27] audit: type=1326 audit(1744378651.085:4056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14992 comm="syz.0.3893" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x0
[  469.986034][T12549] EXT4-fs (loop5): unmounting filesystem.
[  469.993616][   T27] audit: type=1326 audit(1744378651.225:4057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14992 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  470.125028][   T27] audit: type=1326 audit(1744378651.225:4058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14992 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  470.267606][   T27] audit: type=1326 audit(1744378651.225:4059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14992 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  470.290957][   T27] audit: type=1326 audit(1744378651.235:4060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14992 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  470.353662][   T27] audit: type=1326 audit(1744378651.235:4061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14992 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  471.316641][   T27] audit: type=1326 audit(1744378651.235:4062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14992 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  471.341025][   T27] audit: type=1326 audit(1744378651.235:4063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14992 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  471.439022][   T27] audit: type=1326 audit(1744378651.235:4064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14992 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b44b8d169 code=0x7ffc0000
[  471.488676][   T27] audit: type=1326 audit(1744378652.715:4065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15024 comm="syz.6.3900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  471.882328][ T7765] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  472.053285][ T7765] usb 5-1: device descriptor read/64, error -71
[  472.118813][T15043] loop5: detected capacity change from 0 to 512
[  472.200505][T15043] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  472.210048][T15043] ext4 filesystem being mounted at /177/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  472.248945][T15043] netlink: 104 bytes leftover after parsing attributes in process `syz.5.3909'.
[  472.292747][T12549] EXT4-fs (loop5): unmounting filesystem.
[  472.327446][ T7765] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  472.348477][T15057] Set syz1 is full, maxelem 65536 reached
[  472.512205][ T7765] usb 5-1: device descriptor read/64, error -71
[  472.558616][T15062] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.648629][ T7765] usb usb5-port1: attempt power cycle
[  472.765858][T15062] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.808290][T15078] loop2: detected capacity change from 0 to 1024
[  472.815822][T15078] EXT4-fs: Ignoring removed bh option
[  472.821828][T15078] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  472.860850][T15078] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  472.874482][T15062] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.940544][T13010] EXT4-fs (loop2): unmounting filesystem.
[  472.992736][T15062] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.072318][ T7765] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  473.114704][ T7765] usb 5-1: device descriptor read/8, error -71
[  473.149386][T15062] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  473.215886][T15062] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  473.246804][T15062] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  473.277519][T15062] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  473.469967][T15100] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3930'.
[  474.528204][T15106] blktrace: Concurrent blktraces are not allowed on loop5
[  474.868373][T15116] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3936'.
[  474.912261][T15116] IPVS: Unknown mcast interface: vcan0
[  474.991268][T15124] loop6: detected capacity change from 0 to 256
[  475.252426][    T7] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  475.412551][    T7] usb 1-1: device descriptor read/64, error -71
[  475.722271][    T7] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  475.886671][    T7] usb 1-1: device descriptor read/64, error -71
[  475.966810][T15140] blktrace: Concurrent blktraces are not allowed on loop9
[  476.027450][    T7] usb usb1-port1: attempt power cycle
[  476.314867][T15157] loop5: detected capacity change from 0 to 1024
[  476.341584][T15157] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  476.380005][   T27] kauditd_printk_skb: 2 callbacks suppressed
[  476.380022][   T27] audit: type=1326 audit(1744378657.605:4068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15161 comm="syz.2.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  476.385327][   T27] audit: type=1326 audit(1744378657.615:4069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15161 comm="syz.2.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  476.385376][   T27] audit: type=1326 audit(1744378657.615:4070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15161 comm="syz.2.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  476.385414][   T27] audit: type=1326 audit(1744378657.615:4071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15161 comm="syz.2.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  476.385452][   T27] audit: type=1326 audit(1744378657.615:4072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15161 comm="syz.2.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  476.385488][   T27] audit: type=1326 audit(1744378657.615:4073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15161 comm="syz.2.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=43 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  476.385525][   T27] audit: type=1326 audit(1744378657.615:4074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15161 comm="syz.2.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7feaf8d169 code=0x7ffc0000
[  476.426603][T12549] EXT4-fs (loop5): unmounting filesystem.
[  476.452539][    T7] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  476.492008][    C0] vkms_vblank_simulate: vblank timer overrun
[  476.494251][    T7] usb 1-1: device descriptor read/8, error -71
[  476.497556][   T27] audit: type=1326 audit(1744378657.695:4075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15163 comm="syz.4.3955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  476.497605][   T27] audit: type=1326 audit(1744378657.695:4076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15163 comm="syz.4.3955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  476.497642][   T27] audit: type=1326 audit(1744378657.695:4077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15163 comm="syz.4.3955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  476.564457][T15168] loop5: detected capacity change from 0 to 512
[  476.593260][T15170] blktrace: Concurrent blktraces are not allowed on loop5
[  476.658991][    C0] vkms_vblank_simulate: vblank timer overrun
[  476.708226][    C0] vkms_vblank_simulate: vblank timer overrun
[  476.820632][T15168] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.3957: Failed to acquire dquot type 0
[  476.835468][T15168] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.3957: Failed to acquire dquot type 0
[  476.844840][T15168] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.3957: Failed to acquire dquot type 0
[  476.854489][T15168] EXT4-fs (loop5): 1 orphan inode deleted
[  476.854535][T15168] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  476.854649][T15168] ext4 filesystem being mounted at /184/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  476.949450][    T7] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  476.992703][    T7] usb 1-1: device descriptor read/8, error -71
[  477.112545][    T7] usb usb1-port1: unable to enumerate USB device
[  477.219199][T15184] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3963'.
[  477.459732][T12549] EXT4-fs (loop5): unmounting filesystem.
[  477.707772][T15204] blktrace: Concurrent blktraces are not allowed on loop5
[  477.958734][T15215] netlink: 40 bytes leftover after parsing attributes in process `syz.6.3977'.
[  477.984788][T15217] loop2: detected capacity change from 0 to 512
[  477.987687][T15219] loop4: detected capacity change from 0 to 512
[  478.011328][T15217] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  478.066298][T15219] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.3978: Failed to acquire dquot type 0
[  478.079298][T15219] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.3978: Failed to acquire dquot type 0
[  478.091407][T15217] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  478.092426][T15219] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.3978: Failed to acquire dquot type 0
[  478.134579][T15219] EXT4-fs (loop4): 1 orphan inode deleted
[  478.140401][T15219] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  478.178181][T15217] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec02c, mo2=0002]
[  478.202620][T15217] System zones: 0-2, 18-18, 34-34
[  478.209799][T15219] ext4 filesystem being mounted at /205/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  478.234143][T15217] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  478.330526][T15217] EXT4-fs (loop2): 1 truncate cleaned up
[  478.336583][T15217] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  478.438431][T15233] loop6: detected capacity change from 0 to 512
[  478.514856][T15233] EXT4-fs (loop6): too many log groups per flexible block group
[  478.546639][T15233] EXT4-fs (loop6): failed to initialize mballoc (-12)
[  478.566945][T15233] EXT4-fs (loop6): mount failed
[  478.600152][T13010] EXT4-fs (loop2): unmounting filesystem.
[  478.777913][T15247] loop2: detected capacity change from 0 to 1024
[  478.793085][T15247] EXT4-fs: Ignoring removed bh option
[  478.870073][T15247] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  478.893855][T12260] EXT4-fs (loop4): unmounting filesystem.
[  478.964575][T15247] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  479.058435][T15256] netlink: 100 bytes leftover after parsing attributes in process `syz.4.3994'.
[  479.099073][T13010] EXT4-fs (loop2): unmounting filesystem.
[  479.105023][T15256] netlink: 'syz.4.3994': attribute type 3 has an invalid length.
[  479.161364][T15264] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3996'.
[  479.476430][T15279] loop5: detected capacity change from 0 to 512
[  479.498980][T15279] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.4004: Failed to acquire dquot type 0
[  479.511766][T15279] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.4004: Failed to acquire dquot type 0
[  479.525193][T15279] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.4004: Failed to acquire dquot type 0
[  479.539035][T15279] EXT4-fs (loop5): 1 orphan inode deleted
[  479.546297][T15279] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  479.573024][T15279] ext4 filesystem being mounted at /194/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  479.908427][T15295] loop4: detected capacity change from 0 to 1024
[  479.917640][T15295] EXT4-fs: Ignoring removed bh option
[  479.939625][T15295] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  480.001569][T15295] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  480.030406][T15302] device ip6tnl1 entered promiscuous mode
[  480.086880][T12260] EXT4-fs (loop4): unmounting filesystem.
[  480.131629][T15306] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4014'.
[  480.392880][T12549] EXT4-fs (loop5): unmounting filesystem.
[  480.515273][T15322] netlink: 84 bytes leftover after parsing attributes in process `syz.2.4021'.
[  480.741035][T15327] loop5: detected capacity change from 0 to 1764
[  480.765572][T15327] ISOFS: unable to read i-node block
[  480.771072][T15327] isofs_fill_super: get root inode failed
[  480.864144][T15339] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4028'.
[  481.102066][T15352] netlink: 100 bytes leftover after parsing attributes in process `syz.0.4032'.
[  481.128450][T15355] netlink: 84 bytes leftover after parsing attributes in process `syz.5.4034'.
[  481.340655][T15366] loop4: detected capacity change from 0 to 1024
[  481.350857][T15366] EXT4-fs: Ignoring removed bh option
[  481.364490][T15366] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  481.419946][T15366] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  481.510991][   T27] kauditd_printk_skb: 114 callbacks suppressed
[  481.511010][   T27] audit: type=1326 audit(1744378662.735:4174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15360 comm="syz.5.4036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fed8ef8d1f7 code=0x7ffc0000
[  481.525214][T15364] loop5: detected capacity change from 0 to 8192
[  481.584094][T15364]  loop5: p1 p2 p3
[  481.603623][T12260] EXT4-fs (loop4): unmounting filesystem.
[  481.637147][T15378] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4043'.
[  481.656584][   T27] audit: type=1326 audit(1744378662.745:4175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15360 comm="syz.5.4036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fed8ef8bad0 code=0x7ffc0000
[  481.710796][   T27] audit: type=1326 audit(1744378662.745:4176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15360 comm="syz.5.4036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fed8ef8cd6b code=0x7ffc0000
[  481.835463][   T27] audit: type=1326 audit(1744378662.775:4177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15360 comm="syz.5.4036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fed8ef8bdca code=0x7ffc0000
[  481.929622][   T27] audit: type=1326 audit(1744378662.775:4178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15360 comm="syz.5.4036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fed8ef8cd6b code=0x7ffc0000
[  481.958486][T15388] syz.6.4047[15388] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  481.958706][T15388] syz.6.4047[15388] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  481.983606][T15393] netlink: 84 bytes leftover after parsing attributes in process `syz.5.4046'.
[  482.015462][   T27] audit: type=1326 audit(1744378662.775:4179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15360 comm="syz.5.4036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fed8ef8cd6b code=0x7ffc0000
[  482.101815][T15388] tipc: New replicast peer: 255.255.255.255
[  482.129706][T15394] dccp_close: ABORT with 36 bytes unread
[  482.129976][   T27] audit: type=1326 audit(1744378662.825:4180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15360 comm="syz.5.4036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fed8ef8b97a code=0x7ffc0000
[  482.154511][T15388] tipc: Enabled bearer <udp:syz2>, priority 10
[  482.193848][T15399] loop4: detected capacity change from 0 to 512
[  482.202831][   T27] audit: type=1326 audit(1744378662.825:4181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15360 comm="syz.5.4036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7fed8ef8c6e7 code=0x7ffc0000
[  482.275675][T15399] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  482.284924][   T27] audit: type=1326 audit(1744378662.825:4182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15360 comm="syz.5.4036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fed8ef8b97a code=0x7ffc0000
[  482.308709][T15399] ext4 filesystem being mounted at /218/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  482.386390][T15404] loop2: detected capacity change from 0 to 1024
[  482.386823][   T27] audit: type=1326 audit(1744378662.825:4183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15360 comm="syz.5.4036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7fed8ef8c6e7 code=0x7ffc0000
[  482.389714][T12260] EXT4-fs (loop4): unmounting filesystem.
[  482.428015][T15404] EXT4-fs: Ignoring removed bh option
[  482.513068][T15404] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  482.778925][T13010] EXT4-fs (loop2): unmounting filesystem.
[  482.834898][T15419] bond0: (slave bond_slave_1): Releasing backup interface
[  482.896545][T15426] 0ªX¹¦À: renamed from caif0
[  482.917259][T15426] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  483.005410][T15432] __nla_validate_parse: 4 callbacks suppressed
[  483.005433][T15432] netlink: 96 bytes leftover after parsing attributes in process `syz.5.4065'.
[  483.043070][T15433] netlink: 128 bytes leftover after parsing attributes in process `syz.2.4066'.
[  483.062759][ T4271] Bluetooth: hci1: command 0x0406 tx timeout
[  483.187920][T15438] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4068'.
[  483.220986][T15438] device ipvlan2 entered promiscuous mode
[  483.328443][T15446] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4072'.
[  483.338385][T15446] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4072'.
[  483.447364][T15451] netlink: 84 bytes leftover after parsing attributes in process `syz.0.4075'.
[  483.682348][ T4302] hid-generic 0705:0000:0000.0027: unknown main item tag 0x0
[  483.708006][T15466] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4079'.
[  483.710294][ T4302] hid-generic 0705:0000:0000.0027: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  483.762700][T15469] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4081'.
[  483.795051][T15470] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4082'.
[  483.864181][T15470] blktrace: Concurrent blktraces are not allowed on loop13
[  483.999441][T15479] netlink: 128 bytes leftover after parsing attributes in process `syz.4.4084'.
[  484.360090][T15492] hub 2-0:1.0: USB hub found
[  484.368259][T15492] hub 2-0:1.0: 1 port detected
[  485.125676][T15494] loop5: detected capacity change from 0 to 128
[  485.213458][T15502] netlink: 'syz.2.4093': attribute type 10 has an invalid length.
[  485.268566][T15502] team0: Port device geneve0 added
[  485.488589][T15509] blktrace: Concurrent blktraces are not allowed on loop13
[  485.516738][ T4302] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  485.537330][T15514] dccp_close: ABORT with 36 bytes unread
[  485.556242][ T4302] hid-generic 0000:0000:0000.0028: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  485.576636][T15504] loop4: detected capacity change from 0 to 1024
[  485.621539][T15504] EXT4-fs: Ignoring removed nomblk_io_submit option
[  485.651434][T15504] EXT4-fs: Mount option(s) incompatible with ext2
[  485.890749][T15529] loop5: detected capacity change from 0 to 1024
[  485.921233][T15529] EXT4-fs: Ignoring removed bh option
[  485.939269][T15529] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  485.990877][T15529] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  486.018771][T15534] loop4: detected capacity change from 0 to 1024
[  486.051569][T15534] ext4: Unknown parameter 'nouser_xattr'
[  486.121648][T15534] bridge0: port 2(bridge_slave_1) entered disabled state
[  486.129171][T15534] bridge0: port 1(bridge_slave_0) entered disabled state
[  486.190434][T12549] EXT4-fs (loop5): unmounting filesystem.
[  486.420088][T15549] loop6: detected capacity change from 0 to 1024
[  486.510322][T15549] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  486.596706][ T4782] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  486.633448][ T4782] hid-generic 0000:0000:0000.0029: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  486.688236][T12700] EXT4-fs (loop6): unmounting filesystem.
[  486.698557][T15564] loop2: detected capacity change from 0 to 512
[  486.761784][T15564] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  486.800327][T15564] ext4 filesystem being mounted at /190/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  487.011890][T13010] EXT4-fs (loop2): unmounting filesystem.
[  487.231817][T15590] loop5: detected capacity change from 0 to 512
[  487.281206][T15590] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  487.331693][T15590] EXT4-fs (loop5): 1 truncate cleaned up
[  487.339997][T15590] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  487.367287][   T27] kauditd_printk_skb: 9 callbacks suppressed
[  487.367305][   T27] audit: type=1800 audit(1744378668.595:4193): pid=15590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.4125" name="file1" dev="loop5" ino=15 res=0 errno=0
[  487.538062][T15590] EXT4-fs (loop5): unmounting filesystem.
[  487.582267][ T4782] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  487.700072][T15616] dccp_close: ABORT with 36 bytes unread
[  487.742211][ T4782] usb 1-1: device descriptor read/64, error -71
[  487.829098][T15616] loop5: detected capacity change from 0 to 1024
[  487.872091][T15616] EXT4-fs: Ignoring removed bh option
[  487.949856][T15616] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  487.959035][   T27] audit: type=1326 audit(1744378669.175:4194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15627 comm="syz.4.4139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  488.012239][ T4782] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  488.075012][T15630] __nla_validate_parse: 13 callbacks suppressed
[  488.075034][T15630] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4141'.
[  488.102448][   T27] audit: type=1326 audit(1744378669.185:4195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15627 comm="syz.4.4139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  488.146095][T12549] EXT4-fs (loop5): unmounting filesystem.
[  488.182600][ T4271] Bluetooth: hci3: command 0x0406 tx timeout
[  488.200448][   T27] audit: type=1326 audit(1744378669.185:4196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15627 comm="syz.4.4139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  488.203659][ T4782] usb 1-1: device descriptor read/64, error -71
[  488.223558][   T27] audit: type=1326 audit(1744378669.185:4197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15627 comm="syz.4.4139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  488.253347][   T27] audit: type=1326 audit(1744378669.185:4198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15627 comm="syz.4.4139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  488.276423][   T27] audit: type=1326 audit(1744378669.185:4199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15627 comm="syz.4.4139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  488.299985][   T27] audit: type=1326 audit(1744378669.185:4200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15627 comm="syz.4.4139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  488.323330][   T27] audit: type=1326 audit(1744378669.185:4201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15627 comm="syz.4.4139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  488.348812][   T27] audit: type=1326 audit(1744378669.185:4202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15627 comm="syz.4.4139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  488.408858][T15639] netlink: 100 bytes leftover after parsing attributes in process `syz.5.4142'.
[  488.452445][ T4782] usb usb1-port1: attempt power cycle
[  488.489201][T15641] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4145'.
[  488.523002][T15641] blktrace: Concurrent blktraces are not allowed on loop13
[  488.672008][T15651] netlink: 84 bytes leftover after parsing attributes in process `syz.6.4149'.
[  488.818309][T15657] loop6: detected capacity change from 0 to 1024
[  488.851743][T15657] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  488.860589][T15657] ext4 filesystem being mounted at /225/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  488.864604][ T4782] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  488.880947][T15657] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  488.932674][T12700] EXT4-fs (loop6): unmounting filesystem.
[  488.965843][ T4782] usb 1-1: device descriptor read/8, error -71
[  489.053942][T15664] loop5: detected capacity change from 0 to 1024
[  489.079221][T15664] EXT4-fs: Ignoring removed bh option
[  489.135504][T15664] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  489.244371][T12549] EXT4-fs (loop5): unmounting filesystem.
[  489.252470][ T4782] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  489.303513][ T4782] usb 1-1: device descriptor read/8, error -71
[  489.422423][ T4782] usb usb1-port1: unable to enumerate USB device
[  489.554414][T15655] block device autoloading is deprecated and will be removed.
[  489.581674][T15655] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  489.682518][T15687] loop5: detected capacity change from 0 to 512
[  489.735760][T15687] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.4162: Failed to acquire dquot type 0
[  489.750033][T15687] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.4162: Failed to acquire dquot type 0
[  489.763625][T15687] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.4162: Failed to acquire dquot type 0
[  489.802444][T15687] EXT4-fs (loop5): 1 orphan inode deleted
[  489.813114][T15687] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  489.822874][T15687] ext4 filesystem being mounted at /225/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  490.851645][T15707] loop0: detected capacity change from 0 to 1024
[  490.858625][T12549] EXT4-fs (loop5): unmounting filesystem.
[  490.900712][T15709] loop4: detected capacity change from 0 to 2048
[  490.916427][T15707] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  490.979278][T15709] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  491.089514][T15722] netlink: 'syz.5.4171': attribute type 3 has an invalid length.
[  491.114074][T13356] EXT4-fs (loop0): unmounting filesystem.
[  491.153107][T15724] random: crng reseeded on system resumption
[  491.189136][T15725] netlink: 128 bytes leftover after parsing attributes in process `syz.2.4175'.
[  491.412536][T15738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4176'.
[  491.473054][T15735] loop5: detected capacity change from 0 to 1024
[  491.480246][T15735] EXT4-fs: Ignoring removed bh option
[  491.512468][T15738] bridge0: port 2(bridge_slave_1) entered disabled state
[  491.586179][T15735] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  491.771363][T15709] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  491.831643][T15709] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  491.834432][T15738] device bridge_slave_1 left promiscuous mode
[  491.856403][T15709] EXT4-fs (loop4): This should not happen!! Data will be lost
[  491.856403][T15709] 
[  491.867831][T15709] EXT4-fs (loop4): Total free blocks count 0
[  491.875083][T12549] EXT4-fs (loop5): unmounting filesystem.
[  491.894607][T15738] bridge0: port 2(bridge_slave_1) entered disabled state
[  491.928364][T15709] EXT4-fs (loop4): Free/Dirty block details
[  491.940208][T15709] EXT4-fs (loop4): free_blocks=2415919104
[  491.951839][T15709] EXT4-fs (loop4): dirty_blocks=2128
[  491.963332][T15709] EXT4-fs (loop4): Block reservation details
[  491.969392][T15709] EXT4-fs (loop4): i_reserved_data_blocks=133
[  492.110915][T15756] loop6: detected capacity change from 0 to 512
[  492.161532][T15756] EXT4-fs error (device loop6): ext4_acquire_dquot:6802: comm syz.6.4182: Failed to acquire dquot type 0
[  492.182101][T15756] EXT4-fs error (device loop6): ext4_acquire_dquot:6802: comm syz.6.4182: Failed to acquire dquot type 0
[  492.200753][T15756] EXT4-fs error (device loop6): ext4_acquire_dquot:6802: comm syz.6.4182: Failed to acquire dquot type 0
[  492.217171][T15756] EXT4-fs (loop6): 1 orphan inode deleted
[  492.223260][T15756] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  492.232488][ T5622] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 76 with error 28
[  492.246169][T15756] ext4 filesystem being mounted at /236/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  493.427081][T12700] EXT4-fs (loop6): unmounting filesystem.
[  493.480663][T15774] loop4: detected capacity change from 0 to 128
[  493.499208][T15775] loop0: detected capacity change from 0 to 512
[  493.527032][T15778] netlink: 128 bytes leftover after parsing attributes in process `syz.6.4189'.
[  493.561461][   T27] kauditd_printk_skb: 63 callbacks suppressed
[  493.561479][   T27] audit: type=1800 audit(1744378674.785:4254): pid=15774 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4188" name="bus" dev="loop4" ino=1048634 res=0 errno=0
[  493.604477][T15779] blktrace: Concurrent blktraces are not allowed on loop11
[  493.613975][T15775] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  493.628606][T15775] ext4 filesystem being mounted at /154/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  493.801760][T13356] EXT4-fs (loop0): unmounting filesystem.
[  493.876542][T15792] device ipip0 entered promiscuous mode
[  494.345083][T15819] blktrace: Concurrent blktraces are not allowed on loop13
[  494.471944][T15820] hub 2-0:1.0: USB hub found
[  494.477032][T15820] hub 2-0:1.0: 1 port detected
[  494.520417][T15822] loop0: detected capacity change from 0 to 512
[  494.551953][T15822] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  494.574712][T15822] ext4 filesystem being mounted at /157/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  494.725022][T13356] EXT4-fs (loop0): unmounting filesystem.
[  494.851613][T15836] loop6: detected capacity change from 0 to 512
[  494.890278][T15836] EXT4-fs (loop6): orphan cleanup on readonly fs
[  494.910593][T15836] EXT4-fs error (device loop6): ext4_orphan_get:1426: comm syz.6.4208: bad orphan inode 13
[  494.938526][T15836] ext4_test_bit(bit=12, block=18) = 1
[  494.973981][T15836] is_bad_inode(inode)=0
[  494.994026][T15836] NEXT_ORPHAN(inode)=2130706432
[  495.019297][T15836] max_ino=32
[  495.035515][T15836] i_nlink=1
[  495.044674][T15836] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  495.130628][T15836] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  495.236936][T15836] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.4208: bg 0: block 248: padding at end of block bitmap is not set
[  495.268317][T15836] Quota error (device loop6): write_blk: dquota write failed
[  495.284378][T15836] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  495.308610][T15836] EXT4-fs error (device loop6): ext4_acquire_dquot:6802: comm syz.6.4208: Failed to acquire dquot type 1
[  495.346740][T15858] block device autoloading is deprecated and will be removed.
[  495.378450][T15836] EXT4-fs warning (device loop6): ext4_enable_quotas:7037: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  495.502769][T15836] syz.6.4208 (15836) used greatest stack depth: 19000 bytes left
[  495.627024][T12700] EXT4-fs (loop6): unmounting filesystem.
[  496.131734][T15890] hub 2-0:1.0: USB hub found
[  496.137101][T15890] hub 2-0:1.0: 1 port detected
[  496.239295][T15898] blktrace: Concurrent blktraces are not allowed on loop13
[  496.714166][T15923] dccp_close: ABORT with 36 bytes unread
[  496.897950][T15923] loop4: detected capacity change from 0 to 1024
[  496.974265][T15923] EXT4-fs: Ignoring removed bh option
[  497.066521][T15923] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  497.178874][T15934] loop0: detected capacity change from 0 to 512
[  497.268462][T15934] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  497.327293][T15934] ext4 filesystem being mounted at /166/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  497.569963][T13356] EXT4-fs (loop0): unmounting filesystem.
[  497.581155][T12260] EXT4-fs (loop4): unmounting filesystem.
[  498.260915][T15971] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4258'.
[  498.341277][T15974] loop4: detected capacity change from 0 to 1024
[  498.359430][T15974] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  498.389733][T15974] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce028, mo2=0000]
[  498.431342][T15974] EXT4-fs error (device loop4): ext4_map_blocks:634: inode #3: block 2: comm syz.4.4256: lblock 2 mapped to illegal pblock 2 (length 1)
[  498.454066][T15974] EXT4-fs (loop4): Remounting filesystem read-only
[  498.473136][T15974] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  498.481390][T15974] EXT4-fs error (device loop4): ext4_map_blocks:634: inode #3: block 48: comm syz.4.4256: lblock 0 mapped to illegal pblock 48 (length 1)
[  498.491253][T15981] netlink: 'syz.6.4260': attribute type 10 has an invalid length.
[  498.513897][T15974] EXT4-fs (loop4): Remounting filesystem read-only
[  498.566154][T15974] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  498.631304][T15974] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.4256: Failed to acquire dquot type 0
[  498.702917][T15974] EXT4-fs (loop4): Remounting filesystem read-only
[  498.719787][T15974] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5885: Corrupt filesystem
[  498.768723][T15974] EXT4-fs (loop4): Remounting filesystem read-only
[  498.796191][T15974] EXT4-fs error (device loop4): ext4_evict_inode:279: inode #11: comm syz.4.4256: mark_inode_dirty error
[  498.819268][T15974] EXT4-fs (loop4): Remounting filesystem read-only
[  498.857078][T15974] EXT4-fs warning (device loop4): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  498.867757][T15974] EXT4-fs (loop4): 1 orphan inode deleted
[  498.882978][T11482] EXT4-fs error (device loop4): ext4_map_blocks:634: inode #3: block 1: comm kworker/u4:18: lblock 1 mapped to illegal pblock 1 (length 1)
[  498.903490][T15974] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  498.955383][T11482] EXT4-fs (loop4): Remounting filesystem read-only
[  498.992292][T11482] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  499.000837][T11482] EXT4-fs error (device loop4): ext4_release_dquot:6825: comm kworker/u4:18: Failed to release dquot type 0
[  499.047895][T11482] EXT4-fs (loop4): Remounting filesystem read-only
[  499.063840][T15974] EXT4-fs (loop4): unmounting filesystem.
[  499.070436][T15974] EXT4-fs error (device loop4): __ext4_get_inode_loc:4506: comm syz.4.4256: Invalid inode table block 1 in block_group 0
[  499.126775][T15974] EXT4-fs (loop4): Remounting filesystem read-only
[  499.158889][T15974] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5885: Corrupt filesystem
[  499.172621][T14202] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  499.187211][T15974] EXT4-fs (loop4): Remounting filesystem read-only
[  499.203962][T16012] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4273'.
[  499.223514][T15974] EXT4-fs error (device loop4): ext4_quota_off:7091: inode #3: comm syz.4.4256: mark_inode_dirty error
[  499.224236][T16009] loop5: detected capacity change from 0 to 1024
[  499.262592][T15974] EXT4-fs (loop4): Remounting filesystem read-only
[  499.263082][T14202] hid-generic 0000:0000:0000.002A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  499.289264][T16009] EXT4-fs: Ignoring removed nomblk_io_submit option
[  499.312095][T16009] EXT4-fs: Mount option(s) incompatible with ext2
[  499.829066][T16035] blktrace: Concurrent blktraces are not allowed on loop11
[  501.754953][T16015] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  501.938254][   T14] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  501.970978][T16052] loop5: detected capacity change from 0 to 1024
[  502.012512][   T14] hid-generic 0000:0000:0000.002B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  502.045032][T16052] EXT4-fs: Ignoring removed nomblk_io_submit option
[  502.109230][T16052] EXT4-fs: Mount option(s) incompatible with ext2
[  502.215284][T16059] loop0: detected capacity change from 0 to 256
[  502.432752][T16069] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4295'.
[  502.509034][T16072] loop6: detected capacity change from 0 to 512
[  502.522940][T16072] EXT4-fs: Ignoring removed nomblk_io_submit option
[  502.539850][T16072] EXT4-fs: Ignoring removed mblk_io_submit option
[  502.581347][T16072] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  502.589586][T16072] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -2
[  502.618170][T16072] EXT4-fs (loop6): 1 truncate cleaned up
[  502.631663][T16072] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  502.647475][T16072] EXT4-fs (loop6): re-mounted. Quota mode: writeback.
[  503.113258][T16077] blktrace: Concurrent blktraces are not allowed on loop9
[  504.059455][T16098] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4307'.
[  504.420601][T16091] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  504.606439][T16108] blktrace: Concurrent blktraces are not allowed on loop9
[  504.758754][T16114] loop4: detected capacity change from 0 to 1024
[  504.823264][T16114] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  505.230755][T12260] EXT4-fs (loop4): unmounting filesystem.
[  505.242409][T12700] EXT4-fs (loop6): unmounting filesystem.
[  505.357245][T16122] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4317'.
[  505.738910][T16129] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4320'.
[  505.773617][ T7765] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  505.809637][ T7765] hid-generic 0000:0000:0000.002C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  505.965857][T16141] blktrace: Concurrent blktraces are not allowed on loop9
[  506.541153][T16167] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4335'.
[  506.732576][T16169] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4336'.
[  507.198622][T16177] tc_dump_action: action bad kind
[  507.475014][T16174] loop5: detected capacity change from 0 to 1024
[  507.505831][T16174] EXT4-fs: Ignoring removed nomblk_io_submit option
[  507.535169][T16174] EXT4-fs: Mount option(s) incompatible with ext2
[  507.846234][   T27] audit: type=1326 audit(1744378689.075:4255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16191 comm="syz.4.4343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  507.925550][T16200] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4344'.
[  507.941045][   T27] audit: type=1326 audit(1744378689.105:4256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16191 comm="syz.4.4343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  508.074631][   T27] audit: type=1326 audit(1744378689.105:4257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16191 comm="syz.4.4343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  508.582486][T16203] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  508.662204][ T4265] Bluetooth: hci0: command 0x0406 tx timeout
[  508.803766][T16219] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4353'.
[  508.898258][T16220] tipc: Started in network mode
[  508.906143][T16220] tipc: Node identity be0547254f84, cluster identity 4711
[  508.932414][T16220] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  508.947884][T16215] tipc: Resetting bearer <eth:syzkaller0>
[  509.090958][ T4788] hid-generic 0705:0000:0000.002D: unknown main item tag 0x0
[  509.120071][ T4788] hid-generic 0705:0000:0000.002D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  509.484073][T16241] loop4: detected capacity change from 0 to 1024
[  509.491289][T16241] EXT4-fs: Ignoring removed bh option
[  509.541870][T16241] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  509.631256][T12260] EXT4-fs (loop4): unmounting filesystem.
[  509.731451][T16253] loop4: detected capacity change from 0 to 512
[  509.790620][T16253] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  509.822053][T16253] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  509.843084][T16253] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.4362: Failed to acquire dquot type 0
[  509.867643][T16253] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  509.878501][T16253] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  509.888398][T16253] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.4362: Failed to acquire dquot type 0
[  509.901203][T16253] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  509.916150][T16253] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  509.926294][T16253] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.4362: Failed to acquire dquot type 0
[  509.958988][T16253] EXT4-fs (loop4): 1 orphan inode deleted
[  509.964963][   T22] tipc: Node number set to 4051781413
[  509.971087][T16253] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  509.981875][T16253] ext4 filesystem being mounted at /286/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  510.914548][T12260] EXT4-fs (loop4): unmounting filesystem.
[  511.077806][T16259] blktrace: Concurrent blktraces are not allowed on loop9
[  511.449853][T16261] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  511.571919][T16264] loop4: detected capacity change from 0 to 512
[  511.656145][T16264] EXT4-fs (loop4): too many log groups per flexible block group
[  511.666373][T16264] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  511.673452][T16264] EXT4-fs (loop4): mount failed
[  512.148926][   T27] audit: type=1107 audit(1744378693.375:4258): pid=16269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  512.318116][T16274] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4369'.
[  513.476496][T16215] tipc: Disabling bearer <eth:syzkaller0>
[  513.485690][T16225] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4354'.
[  513.494865][T16246] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4361'.
[  513.509913][T16274] IPVS: Unknown mcast interface: vcan0
[  513.736086][   T27] audit: type=1326 audit(1744378694.955:4259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16279 comm="syz.4.4374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  513.821083][   T27] audit: type=1326 audit(1744378694.955:4260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16279 comm="syz.4.4374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  513.911549][T16287] loop5: detected capacity change from 0 to 1024
[  513.943092][T16287] EXT4-fs: Ignoring removed bh option
[  513.972419][   T27] audit: type=1326 audit(1744378694.965:4261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16279 comm="syz.4.4374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  514.096629][   T27] audit: type=1326 audit(1744378694.965:4262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16279 comm="syz.4.4374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  514.131930][T16300] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4378'.
[  514.182800][T16287] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  514.225559][   T27] audit: type=1326 audit(1744378694.965:4263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16279 comm="syz.4.4374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  514.249679][   T27] audit: type=1326 audit(1744378694.965:4264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16279 comm="syz.4.4374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  514.272449][   T27] audit: type=1326 audit(1744378694.965:4265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16279 comm="syz.4.4374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  514.296088][   T27] audit: type=1326 audit(1744378694.965:4266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16279 comm="syz.4.4374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  514.318694][   T27] audit: type=1326 audit(1744378694.965:4267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16279 comm="syz.4.4374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  514.341435][   T27] audit: type=1326 audit(1744378694.965:4268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16279 comm="syz.4.4374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  514.386418][T16306] hub 2-0:1.0: USB hub found
[  514.395466][T16306] hub 2-0:1.0: 1 port detected
[  514.397266][T12549] EXT4-fs (loop5): unmounting filesystem.
[  514.575669][T16308] loop4: detected capacity change from 0 to 1024
[  514.595766][T16308] EXT4-fs: Ignoring removed bh option
[  514.611978][T16308] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  514.653324][T16314] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4380'.
[  514.710495][T16308] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  514.720682][T16313] netlink: 40 bytes leftover after parsing attributes in process `syz.6.4382'.
[  514.750476][ T7765] hid-generic 0705:0000:0000.002E: unknown main item tag 0x0
[  514.793814][ T7765] hid-generic 0705:0000:0000.002E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  514.820496][T16313] loop6: detected capacity change from 0 to 1024
[  514.827954][T16313] EXT4-fs: Ignoring removed nomblk_io_submit option
[  514.837441][T16313] EXT4-fs: Mount option(s) incompatible with ext2
[  514.907982][T12260] EXT4-fs (loop4): unmounting filesystem.
[  515.072679][T16324] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4385'.
[  515.106017][T16324] IPVS: Unknown mcast interface: vcan0
[  515.150275][T16327] netlink: 96 bytes leftover after parsing attributes in process `syz.6.4386'.
[  515.726973][T16325] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  515.905372][T16350] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4396'.
[  515.951692][T14202] hid-generic 0705:0000:0000.002F: unknown main item tag 0x0
[  515.981124][T14202] hid-generic 0705:0000:0000.002F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  516.000527][T16350] loop5: detected capacity change from 0 to 1024
[  516.012793][T16350] EXT4-fs: Ignoring removed nomblk_io_submit option
[  516.026289][T16350] EXT4-fs: Mount option(s) incompatible with ext2
[  516.065265][T16356] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4398'.
[  516.091678][T16356] IPVS: Unknown mcast interface: vcan0
[  516.146528][T16359] loop0: detected capacity change from 0 to 1024
[  516.237935][T16359] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  516.301824][T13356] EXT4-fs (loop0): unmounting filesystem.
[  516.864933][T16390] loop0: detected capacity change from 0 to 2048
[  516.915797][ T4302] hid-generic 0705:0000:0000.0030: unknown main item tag 0x0
[  516.943289][ T4302] hid-generic 0705:0000:0000.0030: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  516.957773][T16388] loop5: detected capacity change from 0 to 1024
[  516.965488][T16390] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  516.985262][T16388] EXT4-fs: Ignoring removed nomblk_io_submit option
[  517.035794][T16388] EXT4-fs: Mount option(s) incompatible with ext2
[  517.112947][T16397] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  517.161619][T16401] random: crng reseeded on system resumption
[  517.691078][T16390] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  517.715726][T16390] EXT4-fs (loop0): This should not happen!! Data will be lost
[  517.715726][T16390] 
[  517.748054][T16390] EXT4-fs (loop0): Total free blocks count 0
[  517.764425][T16390] EXT4-fs (loop0): Free/Dirty block details
[  517.780681][T16390] EXT4-fs (loop0): free_blocks=2415919104
[  517.811044][T16390] EXT4-fs (loop0): dirty_blocks=2800
[  517.826171][T16390] EXT4-fs (loop0): Block reservation details
[  517.857973][T16390] EXT4-fs (loop0): i_reserved_data_blocks=175
[  517.935643][T16425] __nla_validate_parse: 5 callbacks suppressed
[  517.935662][T16425] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4424'.
[  518.125097][T16429] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4426'.
[  518.412482][T16437] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4431'.
[  518.443145][T16438] loop4: detected capacity change from 0 to 1024
[  518.453826][ T4302] hid-generic 0705:0000:0000.0031: unknown main item tag 0x0
[  518.481913][T16443] loop5: detected capacity change from 0 to 512
[  518.492835][T16438] EXT4-fs: Ignoring removed bh option
[  518.498894][ T4302] hid-generic 0705:0000:0000.0031: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  518.560470][T16438] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  518.630230][T16443] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.4433: Failed to acquire dquot type 0
[  518.698384][T16443] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.4433: Failed to acquire dquot type 0
[  518.726676][T12260] EXT4-fs (loop4): unmounting filesystem.
[  518.791219][T16443] __quota_error: 131 callbacks suppressed
[  518.791242][T16443] Quota error (device loop5): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  518.852866][T16443] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  518.867385][   T27] audit: type=1326 audit(1744378700.095:4396): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=unconfined pid=16448 comm="syz.6.4434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff68b38d169 code=0x7ffc0000
[  518.878437][T16443] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.4433: Failed to acquire dquot type 0
[  518.959726][T16443] EXT4-fs (loop5): 1 orphan inode deleted
[  518.982205][T16443] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  519.030963][T16459] loop6: detected capacity change from 0 to 1024
[  519.031972][T16443] ext4 filesystem being mounted at /276/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  519.074233][T16459] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  519.181830][T12700] EXT4-fs (loop6): unmounting filesystem.
[  519.267334][T16463] loop4: detected capacity change from 0 to 2048
[  519.334641][T16463] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  519.702745][T16470] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4439'.
[  519.759862][T16472] random: crng reseeded on system resumption
[  519.922274][   T27] audit: type=1326 audit(1744378701.075:4397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16462 comm="syz.4.4438" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x0
[  519.964455][T12549] EXT4-fs (loop5): unmounting filesystem.
[  520.071433][   T27] audit: type=1326 audit(1744378701.215:4398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16462 comm="syz.4.4438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  520.154099][T16478] netlink: 96 bytes leftover after parsing attributes in process `syz.6.4441'.
[  520.169099][   T27] audit: type=1326 audit(1744378701.215:4399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16462 comm="syz.4.4438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  520.172236][T16463] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  520.292336][   T27] audit: type=1326 audit(1744378701.215:4400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16462 comm="syz.4.4438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  520.332244][T16463] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1104 with error 28
[  520.402307][   T27] audit: type=1326 audit(1744378701.215:4401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16462 comm="syz.4.4438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  520.408910][T16463] EXT4-fs (loop4): This should not happen!! Data will be lost
[  520.408910][T16463] 
[  520.478154][T16463] EXT4-fs (loop4): Total free blocks count 0
[  520.480813][   T27] audit: type=1326 audit(1744378701.215:4402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16462 comm="syz.4.4438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  520.491836][T16463] EXT4-fs (loop4): Free/Dirty block details
[  520.522560][T16484] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4444'.
[  520.531883][T16463] EXT4-fs (loop4): free_blocks=2415919104
[  520.545471][T16463] EXT4-fs (loop4): dirty_blocks=1104
[  520.551123][T16463] EXT4-fs (loop4): Block reservation details
[  520.560753][T16463] EXT4-fs (loop4): i_reserved_data_blocks=69
[  520.581150][   T27] audit: type=1326 audit(1744378701.215:4403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16462 comm="syz.4.4438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7fae2b18d169 code=0x7ffc0000
[  520.760036][T12260] EXT4-fs (loop4): unmounting filesystem.
[  521.017127][T16493] loop4: detected capacity change from 0 to 1024
[  521.037465][T16493] EXT4-fs: Ignoring removed bh option
[  521.075362][T16493] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  521.138612][T12260] EXT4-fs (loop4): unmounting filesystem.
[  521.195009][T14202] hid-generic 0705:0000:0000.0032: unknown main item tag 0x0
[  521.223748][T14202] hid-generic 0705:0000:0000.0032: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  521.283718][T16501] loop5: detected capacity change from 0 to 1024
[  521.342646][T16501] EXT4-fs: Ignoring removed bh option
[  521.362259][T16501] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  521.417501][T16501] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  521.451007][T16510] loop4: detected capacity change from 0 to 512
[  521.487203][T12549] EXT4-fs (loop5): unmounting filesystem.
[  521.550458][T16512] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4453'.
[  521.575649][T16510] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.4452: Failed to acquire dquot type 0
[  521.599906][T16510] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.4452: Failed to acquire dquot type 0
[  521.651733][T16516] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4455'.
[  521.698410][T16510] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.4452: Failed to acquire dquot type 0
[  521.740435][T16510] EXT4-fs (loop4): 1 orphan inode deleted
[  521.766398][T16510] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  521.786774][T16510] ext4 filesystem being mounted at /314/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  521.895805][T16520] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4456'.
[  521.947472][T16393] ------------[ cut here ]------------
[  521.953525][T16393] kernel BUG at fs/buffer.c:2666!
[  521.962968][T16393] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[  521.969101][T16393] CPU: 0 PID: 16393 Comm: kmmpd-loop0 Not tainted 6.1.134-syzkaller #0
[  521.977371][T16393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  521.987457][T16393] RIP: 0010:submit_bh_wbc+0x4c0/0x4e0
[  521.992888][T16393] Code: 02 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c be fe ff ff 48 89 ef e8 61 3d e0 ff e9 b1 fe ff ff e8 87 db 88 ff 0f 0b e8 80 db 88 ff <0f> 0b e8 79 db 88 ff 0f 0b e8 72 db 88 ff 0f 0b e8 6b db 88 ff 0f
[  522.009702][T16525] loop6: detected capacity change from 0 to 2048
[  522.012509][T16393] RSP: 0018:ffffc90003c6fc40 EFLAGS: 00010293
[  522.012533][T16393] RAX: ffffffff8201ced0 RBX: 0000000000000000 RCX: ffff8880305c0000
[  522.012549][T16393] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  522.012562][T16393] RBP: ffffc90003c6fd50 R08: ffffffff8201caad R09: ffffed100e849801
[  522.048893][T16393] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100e849800
[  522.056889][T16393] R13: ffff88807424c000 R14: 0000000000000000 R15: 0000000000003801
[  522.064879][T16393] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  522.073914][T16393] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  522.080508][T16393] CR2: 00007ff680ca3000 CR3: 0000000083aaf000 CR4: 00000000003506f0
[  522.088504][T16393] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  522.096511][T16393] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  522.104492][T16393] Call Trace:
[  522.107777][T16393]  <TASK>
[  522.110718][T16393]  write_mmp_block_thawed+0x3b6/0x5a0
[  522.116118][T16393]  ? read_mmp_block+0x7e0/0x7e0
[  522.120995][T16393]  ? update_process_times+0x1b0/0x1b0
[  522.126382][T16393]  ? kmmpd+0x40c/0xa70
[  522.130468][T16393]  write_mmp_block+0x13f/0x390
[  522.135250][T16393]  kmmpd+0x40c/0xa70
[  522.139175][T16393]  ? write_mmp_block_thawed+0x5a0/0x5a0
[  522.144733][T16393]  ? __kthread_parkme+0x168/0x1c0
[  522.149778][T16393]  kthread+0x28d/0x320
[  522.153857][T16393]  ? write_mmp_block_thawed+0x5a0/0x5a0
[  522.159415][T16393]  ? kthread_blkcg+0xd0/0xd0
[  522.164017][T16393]  ret_from_fork+0x1f/0x30
[  522.168456][T16393]  </TASK>
[  522.171476][T16393] Modules linked in:
[  522.194671][T16393] ---[ end trace 0000000000000000 ]---
[  522.200266][T16393] RIP: 0010:submit_bh_wbc+0x4c0/0x4e0
[  522.207945][T16393] Code: 02 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c be fe ff ff 48 89 ef e8 61 3d e0 ff e9 b1 fe ff ff e8 87 db 88 ff 0f 0b e8 80 db 88 ff <0f> 0b e8 79 db 88 ff 0f 0b e8 72 db 88 ff 0f 0b e8 6b db 88 ff 0f
[  522.232017][T16393] RSP: 0018:ffffc90003c6fc40 EFLAGS: 00010293
[  522.584394][T16393] RAX: ffffffff8201ced0 RBX: 0000000000000000 RCX: ffff8880305c0000
[  522.601422][T16393] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  522.618457][T16393] RBP: ffffc90003c6fd50 R08: ffffffff8201caad R09: ffffed100e849801
[  522.635418][T16393] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100e849800
[  522.654009][T16393] R13: ffff88807424c000 R14: 0000000000000000 R15: 0000000000003801
[  522.671007][T16393] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  522.690375][T16525] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  522.690689][T12260] EXT4-fs (loop4): unmounting filesystem.
[  522.705490][T16393] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  522.712807][T16393] CR2: 0000001b3111eff8 CR3: 0000000027b92000 CR4: 00000000003506e0
[  522.720990][T16393] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  522.729081][T16393] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  522.737304][T16393] Kernel panic - not syncing: Fatal exception
[  522.743700][T16393] Kernel Offset: disabled
[  522.748034][T16393] Rebooting in 86400 seconds..