last executing test programs:

5.354064747s ago: executing program 3 (id=2603):
r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000), 0x88c02, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
write$cgroup_int(r0, 0x0, 0x2)

5.317514348s ago: executing program 3 (id=2604):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x4}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r0}, 0x10)
readlink(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=""/7, 0x7)

5.316983978s ago: executing program 3 (id=2605):
syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000100000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r1 = gettid()
r2 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="00000000000000008af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095000000008437e0bd57d46e109a96be36ce1d8fe289e800"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
pause()
fcntl$setsig(r4, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r5}], 0x2c, 0xffffffffffbffff8)
dup2(r4, r5)
fcntl$setown(r4, 0x8, r1)
tkill(r1, 0x13)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r6}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
memfd_secret(0x80000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r10, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bind$unix(r9, &(0x7f0000000200)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffdb7}, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)

2.253013553s ago: executing program 3 (id=2697):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="01000000040000000800000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='kmem_cache_free\x00', r4}, 0x18)
connect$llc(r0, &(0x7f0000000000)={0x1a, 0x1, 0x1, 0x1, 0x3f, 0x0, @remote}, 0x10)

2.139682665s ago: executing program 3 (id=2701):
io_setup(0x7, &(0x7f0000000600)=<r0=>0x0)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="020000000400000008000000"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r3, 0x0, 0x100000000}, 0x18)
io_submit(r0, 0xe7, &(0x7f0000000080)=[&(0x7f0000000140)={0x0, 0x4, 0x0, 0x1, 0x0, r1, &(0x7f0000000000)="ff07000000000000", 0x400000}])

2.056752927s ago: executing program 3 (id=2707):
syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000100000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r1 = gettid()
r2 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="00000000000000008af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095000000008437e0bd57d46e109a96be36ce1d8fe289e800"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x18)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000b28000)=0x20003)
pause()
fcntl$setsig(0xffffffffffffffff, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{}], 0x2c, 0xffffffffffbffff8)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
fcntl$setown(0xffffffffffffffff, 0x8, r1)
tkill(r1, 0x13)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r4}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
memfd_secret(0x80000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bind$unix(r7, &(0x7f0000000200)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffdb7}, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)

1.129351487s ago: executing program 2 (id=2728):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x101, 0x7ffc, 0xcc}, 0x50)

1.053494848s ago: executing program 2 (id=2731):
r0 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x20003)
pause()
fcntl$setsig(r1, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r2}], 0x2c, 0xffffffffffbffff8)
dup2(r1, r2)
fcntl$setown(r1, 0x8, r0)
tkill(r0, 0x13)

835.014743ms ago: executing program 4 (id=2741):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x1000, 0x400, 0x8, 0x1, 0x200008, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000000)={0x80, 0xa, 0x2fe, 0xe5, 0x0, 0x9, 0x0})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454da, &(0x7f00000002c0)={'batadv0\x00', 0x8b22})
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)

778.718994ms ago: executing program 4 (id=2744):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa4000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x7000000, 0x6e073, r2, 0x2000)

759.013875ms ago: executing program 4 (id=2745):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000100)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000100000085000000820000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x40000, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x2)
readv(r3, &(0x7f0000000000)=[{&(0x7f0000000440)=""/244, 0xf4}], 0x1)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000700000a7c000000060a030400000000000000000a0000050900010073797a3100000000500004804c0001800b00010074617267657400003c00028024000300733900000455afb9fdd672bad09dfb78c7699c74e891a0c7000000000000000008000240000000000c00010052415445455354000900020073797a32"], 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040)

665.204306ms ago: executing program 4 (id=2748):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={&(0x7f0000000080), 0x1}, 0x20, 0x10000, 0x33f8, 0x1, 0x8, 0x20005, 0xc, 0x0, 0xac74, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd42"], 0xfdef)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x82000, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

583.976838ms ago: executing program 0 (id=2751):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r1}, 0x10)
get_mempolicy(0x0, 0x0, 0x400, &(0x7f0000ffd000/0x2000)=nil, 0x2)

582.359908ms ago: executing program 4 (id=2752):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r2, 0x400, 0x1)
fremovexattr(r2, &(0x7f0000000040)=@known='system.posix_acl_default\x00')

564.840578ms ago: executing program 4 (id=2753):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="01000000040000000800000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='kmem_cache_free\x00', r3}, 0x18)
connect$llc(r0, &(0x7f0000000000)={0x1a, 0x1, 0x1, 0x1, 0x3f, 0x0, @remote}, 0x10)

564.375269ms ago: executing program 0 (id=2754):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x33, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x6}]}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)={0x1b, 0x0, 0x0, 0x40000}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x2000003, 0x13, r3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB], 0x0, 0x80000000}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x53b, &(0x7f0000000b80)="$eJzs3cFvHFcZAPBvNl7HSZzaBQ5QqaWiRUkF2Y1r2locSpEQnCohyj0Ye2NZWXste93GVgXrvwAJIUDiBBcuSPwBSCgSF44IKRKcQSoCIUhBggN00OzO2mY9a2/SjTde/37SZN6b2Znvexu/2Zmdp9kAzq3nI+KNiPggTdOXImImX17Kp2h1pux17z94dymbkkjTt/6WRJIv6+4ryedX8s2mIuJrX4n4ZnI07tbO7p3Fer22mderzbWN6tbO7o3VtcWV2kptfX5+7tWF1xZeWbg5lHZejYjXv/Sn73/np19+/ZeffeePt/5y/VtZWtP5+sPteEgTx63sNL18capng81HDPYkytpT7lYuDbbN3mPMBwCA/rJz/I9ExKci4qWYiQvHn84CAAAAZ1D6hen4TxKRFpvssxwAAAA4Q0rtMbBJqZKPBZiOUqlS6Yzh/VhcLtUbW83P3G5sry93xsrORrl0e7Veu5mPFZ6NcpLV59rlg/rLPfX5iHg6Ir43c6ldryw16suj/vIDAAAAzokrPdf//5zpXP8DAAAAY2Z21AkAAAAAj53rfwAAABh/rv8BAABgrH31zTezKe3+/vXy2zvbdxpv31iubd2prG0vVZYamxuVlUZjpf3MvrWT9ldvNDY+F+vbd6vN2lazenVn99ZaY3u9eWs1pk6lQQAAAMART3/y3u+TiGh9/lJ7ykyOOingVEzsl5J8XtD7//BUZ/7eKSUFnIoLA7zmvYvFy50nwNk20bugT18Hxk951AkAI5ecsL7v4J3fdGalIecDAAAM37VPFN//P/l8vuWUH844nRjOr577/+nMqBIBTl37/v+gA3mcLMBYKQ80AhAYZx/2/v/J0vShEgIAAIZuuj0lpUr+9d50lEqVSsTV9s8ClJPbq/XazYh4KiJ+N1O+mNXn2lsmJ14zAAAAAAAAAAAAAAAAAAAAAAAAAAAdaZpECgAAAIy1iNKfk191nuV/bebF6d7vByaTf7d/EngyIt750Vs/uLvYbG7OZcv/vr+8+cN8+cuj+AYDAAAA6NW9Tm/P/zXqbAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYN+8/eHepOw3w8kvDivvXL0bEbFH8iZhqz6eiHBGX/5HExKHtkoi4MIT4rb2I+HhR/CRLaz9kUfxhvAmtvaSVthXGj9n8XSiKf2UI8eE8u5cdf94o6v+leL49L+5/ExH/V39U/Y9/sX/8u9Cn/18dMMYz939e7Rt/L+KZieLjXzd+0if+CwPG/8bXd3f7rUt/HHGt+/nTPuIdjnBQqjbXNqpbO7s3VtcWV2ortfX5+blXF15beGXhZvX2ar2W/1sY47vP/uKD49p/ufDzL8mz6d/+Fwv2V/SZ9N/7dx98tFtpHY1//YWC+L/+Sf6Ko/FLeZxP5+Vs/bVuudUpH/bcz3773HHtXz5of/lh/v+v99tpryMd5dlB/3QAgMdga2f3zmK9Xtsc20J2lf4EpPEohcl4ItIY38K3s8L9Ye0wTdM061MFq+5FxCD7SWLILS0V53NQ6HsEGPWRCQAAGLaDk/5RZwIAAAAAAAAAAAAAAAAAAADn12k8Za035sEjkJNhPEIbAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAo/hcAAP//Yw3Xfw==")
symlink(&(0x7f0000000dc0)='./file0\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

454.034981ms ago: executing program 0 (id=2757):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x101, 0x7ffc, 0xcc}, 0x50)

360.115253ms ago: executing program 0 (id=2759):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_open_dev$evdev(&(0x7f0000000480), 0xc000, 0x142)
write$evdev(r1, &(0x7f0000000640)=[{{0x77359400}, 0x1, 0x7f, 0x2}, {{}, 0x0, 0x0, 0x41}], 0x30)

360.015623ms ago: executing program 1 (id=2760):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x4}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
readlink(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=""/7, 0x7)

339.961523ms ago: executing program 0 (id=2761):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000100)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000100000085000000820000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x40000, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x2)
readv(r3, &(0x7f0000000000)=[{&(0x7f0000000440)=""/244, 0xf4}], 0x1)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000700000a7c000000060a030400000000000000000a0000050900010073797a3100000000500004804c0001800b00010074617267657400003c00028024000300733900000455afb9fdd672bad09dfb78c7699c74e891a0c7000000000000000008000240000000000c00010052415445455354000900020073797a32"], 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040)

338.254863ms ago: executing program 1 (id=2762):
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
r1 = socket$kcm(0x10, 0x2, 0x10)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={0x0, r5}, 0x18)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
faccessat(r6, &(0x7f0000000000)='./file0\x00', 0x5)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000140)=r3, 0x4)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r8=>0x0})
r9 = socket$can_j1939(0x1d, 0x2, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bind$can_j1939(r9, &(0x7f0000000080)={0x1d, r8, 0x0, {0x0, 0x0, 0x4}}, 0x18)
sendmsg$can_j1939(r9, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=@newtfilter={0x24, 0x11, 0x101, 0x70bd25, 0x10fffe, {0x0, 0x0, 0x74, r8, {0x5, 0xb}, {0x5, 0xfff3}, {0xfff1, 0xffe0}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4014}, 0xc4)

299.998504ms ago: executing program 1 (id=2763):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, 0x0, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r2, 0x400, 0x1)
fremovexattr(r2, &(0x7f0000000040)=@known='system.posix_acl_default\x00')

268.975665ms ago: executing program 1 (id=2764):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000d013a2575c273cf38df6", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x6}, 0xfffffffffffffc56)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000980)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="c0020000100063d10000000000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa0000000000000000000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc01000000000000000000000000000000000000330000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000b000000000000000000000000000000ffffffffffffffff000000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001600000000020000000000000000000000bf010100636d61632861657329"], 0x2c0}, 0x1, 0x0, 0x0, 0x40000}, 0x4004)

268.533515ms ago: executing program 0 (id=2765):
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000440)='/proc/sys/net/ipv4/vs/expire_nodest_conn\x00', 0x2, 0x0)
write$char_usb(r0, &(0x7f0000000000)='-0', 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0xc4}, 0x890)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7bd, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @value=r0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x7}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x700, 0x0, &(0x7f0000000140)={&(0x7f00000015c0)=ANY=[@ANYBLOB="020d000014000000000000000000000005000600000000000a0080ff00000000fc010000000000000000000000000000000000000000000005000500000000000a00000000000000000000fdff0000000000000000000000000000000000000008001200020002000000"], 0xa0}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x20048054}, 0x4)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000040000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_read_part_table(0x59d, &(0x7f0000000000)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x84)
pwritev2(r2, &(0x7f0000000900)=[{0x0}, {&(0x7f0000000a00)="7baa97b4da5302051c06c964dd0c514156a9d371d4da0eab878d79e605b4b58b60707e3eefb5104370c89a6d3f90bac2c6294ed26c074495aacafbf5bacee4dfff940a9d85d616a4a51dfd060bb3bedbc8644f6f84bb7817a7e9e75f340b5268d48c57a93f23c2732ac6c8a62b40cea386ee31bde1204a2db91b7c125fbbe6a693f33a3fe7b9321ce5586d835505e008f8e2ecc32dd652ae3d318295c21cc2ce93748f5a9e94114376aad6cc07aa107e2db13269a122d2ee0e46aacf0a", 0xbd}], 0x2, 0x6, 0xfffffffd, 0x2)

259.688725ms ago: executing program 1 (id=2766):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x1000, 0x400, 0x8, 0x1, 0x200008, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000000)={0x80, 0xa, 0x2fe, 0xe5, 0x0, 0x9, 0x0})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454da, &(0x7f00000002c0)={'batadv0\x00', 0x8b22})
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)

188.393096ms ago: executing program 2 (id=2767):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={&(0x7f0000000080), 0x1}, 0x20, 0x10000, 0x33f8, 0x1, 0x8, 0x20005, 0xc, 0x0, 0xac74, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd42"], 0xfdef)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x82000, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

185.191207ms ago: executing program 1 (id=2768):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x1, 0x571, &(0x7f0000000780)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000000140)='system.posix_acl_default\x00', &(0x7f0000000200)={{}, {}, [], {0x4, 0x6}, [], {0x10, 0x4}, {0x20, 0x3}}, 0x24, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kfree\x00', r0}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)

83.794969ms ago: executing program 2 (id=2769):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x7000000, 0x6e073, r2, 0x2000)

61.940589ms ago: executing program 2 (id=2770):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000980)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000118c0)='/sys/power/pm_async', 0x101201, 0xc9)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000d80)="a4f9dac9", 0x4}], 0x1)

0s ago: executing program 2 (id=2771):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x101, 0x7ffc, 0xcc}, 0x50)

kernel console output (not intermixed with test programs):

syscall=459 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  115.876121][   T29] audit: type=1326 audit(115.683:8725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7840 comm="syz.1.1538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  115.925810][ T7856] loop1: detected capacity change from 0 to 764
[  115.944561][ T7856] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  115.963970][ T7856] netlink: 'syz.1.1543': attribute type 10 has an invalid length.
[  115.972861][ T7856] batman_adv: batadv0: Adding interface: veth1_vlan
[  115.979654][ T7856] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.081086][ T7856] batman_adv: batadv0: Interface activated: veth1_vlan
[  116.218138][ T7880] __nla_validate_parse: 7 callbacks suppressed
[  116.218159][ T7880] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1550'.
[  116.256404][ T7854] rdma_rxe: rxe_newlink: failed to add lo
[  116.345264][ T7898] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1561'.
[  116.367914][ T7895] loop1: detected capacity change from 0 to 2048
[  116.380512][ T7902] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7902 comm=syz.2.1562
[  116.413641][ T3398] IPVS: starting estimator thread 0...
[  116.415329][ T7903] lo speed is unknown, defaulting to 1000
[  116.425823][ T7908] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7908 comm=syz.0.1556
[  116.438504][ T7908] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=7908 comm=syz.0.1556
[  116.457106][ T7895] Alternate GPT is invalid, using primary GPT.
[  116.463635][ T7895]  loop1: p2 p3 p7
[  116.546004][ T7904] IPVS: using max 2352 ests per chain, 117600 per kthread
[  116.741107][ T7929] loop1: detected capacity change from 0 to 512
[  116.775514][ T7929] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.906010][ T7952] netlink: 204 bytes leftover after parsing attributes in process `syz.2.1578'.
[  116.915927][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.995062][ T7956] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1581'.
[  117.005705][ T7964] ALSA: seq fatal error: cannot create timer (-19)
[  117.084666][ T7974] netlink: 'syz.3.1587': attribute type 10 has an invalid length.
[  117.092703][ T7974] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1587'.
[  117.107851][ T7974] batman_adv: batadv0: Adding interface: veth1_vlan
[  117.114572][ T7974] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  117.152052][ T7979] netlink: 5 bytes leftover after parsing attributes in process `syz.4.1590'.
[  117.222615][ T7974] batman_adv: batadv0: Interface activated: veth1_vlan
[  117.245439][ T7977] loop2: detected capacity change from 0 to 8192
[  117.266142][ T7988] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1594'.
[  117.292715][ T7992] ALSA: seq fatal error: cannot create timer (-19)
[  117.487031][ T8021] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1607'.
[  117.496103][ T8021] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1607'.
[  117.532982][ T8017] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1605'.
[  117.569728][ T8019] loop1: detected capacity change from 0 to 512
[  117.602049][ T8019] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  117.646781][ T8019] EXT4-fs (loop1): 1 truncate cleaned up
[  117.676642][ T8019] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.717926][ T8043] loop0: detected capacity change from 0 to 512
[  117.750922][ T8043] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  117.797266][ T8043] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.1613: invalid block
[  117.811523][ T8043] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1613: invalid indirect mapped block 4294967295 (level 1)
[  117.826834][ T8043] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1613: invalid indirect mapped block 4294967295 (level 1)
[  117.842073][ T8043] EXT4-fs (loop0): 2 truncates cleaned up
[  117.859256][ T8043] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.877664][ T8035] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.1613: bg 0: block 5: invalid block bitmap
[  117.915965][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.934678][ T8057] FAULT_INJECTION: forcing a failure.
[  117.934678][ T8057] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.947938][ T8057] CPU: 0 UID: 0 PID: 8057 Comm: syz.0.1621 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  117.947977][ T8057] Tainted: [W]=WARN
[  117.947986][ T8057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  117.948003][ T8057] Call Trace:
[  117.948010][ T8057]  <TASK>
[  117.948099][ T8057]  __dump_stack+0x1d/0x30
[  117.948127][ T8057]  dump_stack_lvl+0xe8/0x140
[  117.948163][ T8057]  dump_stack+0x15/0x1b
[  117.948185][ T8057]  should_fail_ex+0x265/0x280
[  117.948288][ T8057]  should_fail+0xb/0x20
[  117.948316][ T8057]  should_fail_usercopy+0x1a/0x20
[  117.948351][ T8057]  _copy_from_user+0x1c/0xb0
[  117.948393][ T8057]  ___sys_sendmsg+0xc1/0x1d0
[  117.948591][ T8057]  __x64_sys_sendmsg+0xd4/0x160
[  117.948634][ T8057]  x64_sys_call+0x191e/0x2ff0
[  117.948662][ T8057]  do_syscall_64+0xd2/0x200
[  117.948705][ T8057]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  117.948748][ T8057]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  117.948789][ T8057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.948878][ T8057] RIP: 0033:0x7f111208eba9
[  117.948899][ T8057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.948924][ T8057] RSP: 002b:00007f1110aef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  117.948946][ T8057] RAX: ffffffffffffffda RBX: 00007f11122d5fa0 RCX: 00007f111208eba9
[  117.949016][ T8057] RDX: 0000000004004040 RSI: 0000200000000780 RDI: 0000000000000003
[  117.949033][ T8057] RBP: 00007f1110aef090 R08: 0000000000000000 R09: 0000000000000000
[  117.949049][ T8057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.949064][ T8057] R13: 00007f11122d6038 R14: 00007f11122d5fa0 R15: 00007fff2b9020b8
[  117.949090][ T8057]  </TASK>
[  118.160309][ T8063] loop2: detected capacity change from 0 to 1024
[  118.240023][ T8074] lo speed is unknown, defaulting to 1000
[  118.285357][ T8075] loop0: detected capacity change from 0 to 2048
[  118.323490][ T8075] Alternate GPT is invalid, using primary GPT.
[  118.330011][ T8075]  loop0: p2 p3 p7
[  118.337983][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.360661][ T8082] loop1: detected capacity change from 0 to 512
[  118.383036][ T8082] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1631: bg 0: block 248: padding at end of block bitmap is not set
[  118.398125][ T8082] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1631: Failed to acquire dquot type 1
[  118.411244][ T8082] EXT4-fs (loop1): 1 truncate cleaned up
[  118.417381][ T8082] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.449998][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.459577][ T3426] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:7: Failed to release dquot type 1
[  118.506160][ T8091] lo speed is unknown, defaulting to 1000
[  118.512039][ T8091] lo speed is unknown, defaulting to 1000
[  118.518168][ T8091] lo speed is unknown, defaulting to 1000
[  118.524872][ T8091] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  118.536360][ T8091] lo speed is unknown, defaulting to 1000
[  118.545126][ T8091] lo speed is unknown, defaulting to 1000
[  118.551381][ T8091] lo speed is unknown, defaulting to 1000
[  118.558466][ T8091] lo speed is unknown, defaulting to 1000
[  118.565202][ T8091] lo speed is unknown, defaulting to 1000
[  118.573302][ T8091] lo speed is unknown, defaulting to 1000
[  118.767305][ T8111] serio: Serial port ptm0
[  118.851079][ T8115] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  118.931620][ T8113] usb usb8: usbfs: process 8113 (syz.0.1641) did not claim interface 0 before use
[  118.954203][ T8113] lo speed is unknown, defaulting to 1000
[  118.963551][ T8125] loop2: detected capacity change from 0 to 2048
[  118.989827][ T8113] lo speed is unknown, defaulting to 1000
[  119.035461][ T8125] Alternate GPT is invalid, using primary GPT.
[  119.041995][ T8125]  loop2: p2 p3 p7
[  119.075697][ T8134] serio: Serial port ptm0
[  119.116034][ T8139] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  119.226378][ T8150] program syz.2.1660 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  119.332450][ T8151] lo speed is unknown, defaulting to 1000
[  119.365288][ T8151] lo speed is unknown, defaulting to 1000
[  119.636761][ T8154] loop0: detected capacity change from 0 to 512
[  119.643712][ T8154] ext4: Unknown parameter 'smackfsdef'
[  119.654564][ T8155] bond1: (slave geneve2): Releasing active interface
[  119.665469][  T110] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.678724][  T110] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.692047][  T110] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.701772][  T110] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.729789][ T8161] loop0: detected capacity change from 0 to 2048
[  119.784304][ T8161] Alternate GPT is invalid, using primary GPT.
[  119.790767][ T8161]  loop0: p2 p3 p7
[  119.858760][ T8167] loop0: detected capacity change from 0 to 512
[  119.873409][ T8167] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1665: bg 0: block 248: padding at end of block bitmap is not set
[  119.888221][ T8167] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1665: Failed to acquire dquot type 1
[  119.900298][ T8167] EXT4-fs (loop0): 1 truncate cleaned up
[  119.907211][ T8167] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.932976][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.942840][ T1650] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:6: Failed to release dquot type 1
[  120.033424][ T8175] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  120.065040][ T8177] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  120.072884][ T8177] batadv_slave_0: entered promiscuous mode
[  120.175737][ T8185] pimreg: entered allmulticast mode
[  120.181590][ T8185] pimreg: left allmulticast mode
[  120.498765][ T8201] 9pnet_fd: Insufficient options for proto=fd
[  120.713287][   T29] kauditd_printk_skb: 936 callbacks suppressed
[  120.713312][   T29] audit: type=1326 audit(120.703:9656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  120.743729][   T29] audit: type=1326 audit(120.703:9657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  120.766794][   T29] audit: type=1326 audit(120.713:9658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  120.789790][   T29] audit: type=1326 audit(120.713:9659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  120.812776][   T29] audit: type=1326 audit(120.713:9660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  120.835691][   T29] audit: type=1326 audit(120.713:9661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  120.858730][   T29] audit: type=1326 audit(120.713:9662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  120.881612][   T29] audit: type=1326 audit(120.713:9663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  120.904577][   T29] audit: type=1326 audit(120.713:9664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  120.927481][   T29] audit: type=1326 audit(120.713:9665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.4.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  120.967292][ T8223] FAULT_INJECTION: forcing a failure.
[  120.967292][ T8223] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  120.980545][ T8223] CPU: 1 UID: 0 PID: 8223 Comm: syz.1.1690 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  120.980634][ T8223] Tainted: [W]=WARN
[  120.980642][ T8223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  120.980732][ T8223] Call Trace:
[  120.980737][ T8223]  <TASK>
[  120.980745][ T8223]  __dump_stack+0x1d/0x30
[  120.980765][ T8223]  dump_stack_lvl+0xe8/0x140
[  120.980790][ T8223]  dump_stack+0x15/0x1b
[  120.980812][ T8223]  should_fail_ex+0x265/0x280
[  120.980862][ T8223]  should_fail+0xb/0x20
[  120.980888][ T8223]  should_fail_usercopy+0x1a/0x20
[  120.980919][ T8223]  _copy_from_user+0x1c/0xb0
[  120.980960][ T8223]  __sys_sendto+0x19e/0x330
[  120.981044][ T8223]  __x64_sys_sendto+0x76/0x90
[  120.981134][ T8223]  x64_sys_call+0x2d05/0x2ff0
[  120.981156][ T8223]  do_syscall_64+0xd2/0x200
[  120.981197][ T8223]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  120.981249][ T8223]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  120.981289][ T8223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.981312][ T8223] RIP: 0033:0x7f174645eba9
[  120.981328][ T8223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.981391][ T8223] RSP: 002b:00007f1744ebf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  120.981415][ T8223] RAX: ffffffffffffffda RBX: 00007f17466a5fa0 RCX: 00007f174645eba9
[  120.981431][ T8223] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  120.981446][ T8223] RBP: 00007f1744ebf090 R08: 00002000000000c0 R09: 000000000000001c
[  120.981462][ T8223] R10: 00000000340108a0 R11: 0000000000000246 R12: 0000000000000001
[  120.981477][ T8223] R13: 00007f17466a6038 R14: 00007f17466a5fa0 R15: 00007ffd316fe178
[  120.981497][ T8223]  </TASK>
[  121.197774][ T8228] ALSA: seq fatal error: cannot create timer (-19)
[  121.313567][ T8259] __nla_validate_parse: 12 callbacks suppressed
[  121.313588][ T8259] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1705'.
[  121.494872][ T8279] loop1: detected capacity change from 0 to 8192
[  121.556284][ T8301] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 649
[  121.571402][ T8279]  loop1: p1 p4 < >
[  121.575353][ T8279] loop1: p1 start 4261412864 is beyond EOD, truncated
[  121.582929][ T8295] loop0: detected capacity change from 0 to 1024
[  121.589703][ T8295] EXT4-fs: Ignoring removed orlov option
[  121.628936][ T8295] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.728181][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.936601][ T8360] loop1: detected capacity change from 0 to 1024
[  121.943678][ T8360] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  121.966303][ T8360] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  121.982395][ T8360] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  121.991778][ T8360] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.1750: Freeing blocks not in datazone - block = 0, count = 4096
[  122.007567][ T8360] EXT4-fs (loop1): Remounting filesystem read-only
[  122.014298][ T8360] EXT4-fs (loop1): 1 orphan inode deleted
[  122.023442][ T8360] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.041279][ T3426] EXT4-fs (loop1): Quota write (off=3072, len=1024) cancelled because transaction is not started
[  122.069348][ T8370] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  122.104464][ T8382] netlink: 'syz.3.1759': attribute type 1 has an invalid length.
[  122.113581][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.134067][ T8382] bond0: (slave vxcan3): The slave device specified does not support setting the MAC address
[  122.146918][ T8382] bond0: (slave vxcan3): Error -95 calling set_mac_address
[  122.196154][ T8393] vlan2: entered allmulticast mode
[  122.201523][ T8393] bridge0: entered allmulticast mode
[  122.276854][ T8393] bridge0: entered promiscuous mode
[  122.295985][ T8393] bridge0: left promiscuous mode
[  122.301916][ T8393] bond0: (slave vlan2): Enslaving as an active interface with a down link
[  122.326652][ T8404] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1768'.
[  122.407822][ T8382] macvlan2: entered promiscuous mode
[  122.413248][ T8382] macvlan2: entered allmulticast mode
[  122.428284][ T8382] bond0: entered promiscuous mode
[  122.436506][ T8382] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  122.447064][ T8382] bond0: left promiscuous mode
[  122.456321][ T8406] ALSA: seq fatal error: cannot create timer (-19)
[  122.547253][ T8413] tmpfs: Unknown parameter 'quota'
[  122.786630][ T8422] loop2: detected capacity change from 0 to 512
[  122.844798][ T8422] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.903913][ T8422] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.1774: corrupted inode contents
[  122.950237][ T8422] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.1774: mark_inode_dirty error
[  122.971586][ T8422] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.1774: corrupted inode contents
[  123.003435][ T8435] loop0: detected capacity change from 0 to 512
[  123.023003][ T8422] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.1774: corrupted inode contents
[  123.040930][ T8435] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1778: bg 0: block 248: padding at end of block bitmap is not set
[  123.054939][ T8441] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1781'.
[  123.060406][ T8435] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1778: Failed to acquire dquot type 1
[  123.064488][ T8422] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.1774: mark_inode_dirty error
[  123.077859][ T8435] EXT4-fs (loop0): 1 truncate cleaned up
[  123.095483][ T8435] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.112515][ T8422] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.1774: corrupted inode contents
[  123.127583][ T8422] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.1774: mark_inode_dirty error
[  123.155177][ T8422] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.1774: corrupted inode contents
[  123.178623][ T8422] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.1774: mark_inode_dirty error
[  123.191666][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.202835][ T1650] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:6: Failed to release dquot type 1
[  123.241288][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.310101][ T8452] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1788'.
[  123.373451][ T8461] lo speed is unknown, defaulting to 1000
[  123.395465][ T8467] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  123.445246][ T8472] loop1: detected capacity change from 0 to 512
[  123.484634][ T8461] lo speed is unknown, defaulting to 1000
[  123.494203][ T8468] loop4: detected capacity change from 0 to 2048
[  123.500632][ T8472] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1795: bg 0: block 248: padding at end of block bitmap is not set
[  123.520660][ T8484] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1801'.
[  123.527510][ T8472] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1795: Failed to acquire dquot type 1
[  123.550233][ T8486] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1802'.
[  123.551952][ T8472] EXT4-fs (loop1): 1 truncate cleaned up
[  123.569300][ T8468] Alternate GPT is invalid, using primary GPT.
[  123.575712][ T8472] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.575786][ T8468]  loop4: p2 p3 p7
[  123.600364][ T8490] lo speed is unknown, defaulting to 1000
[  123.643761][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.648324][ T8490] lo speed is unknown, defaulting to 1000
[  123.658654][ T1650] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:6: Failed to release dquot type 1
[  123.711138][ T8504] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  123.775475][ T8508] loop2: detected capacity change from 0 to 1024
[  123.799766][ T8508] EXT4-fs: Mount option(s) incompatible with ext2
[  123.845503][ T8516] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1814'.
[  123.892708][ T8508] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1809'.
[  123.901800][ T8508] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1809'.
[  123.967599][ T8514] loop4: detected capacity change from 0 to 512
[  124.030784][ T8514] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  124.068669][ T8514] EXT4-fs (loop4): 1 truncate cleaned up
[  124.088142][ T8514] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.132626][ T8543] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  124.376176][ T8555] netlink: 'syz.1.1826': attribute type 32 has an invalid length.
[  124.384173][ T8555] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1826'.
[  124.409900][ T8555] loop1: detected capacity change from 0 to 256
[  124.428388][ T8555] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  124.463160][ T8555] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  124.564192][ T8571] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  124.612102][ T8576] loop0: detected capacity change from 0 to 1024
[  124.620005][ T8576] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (58532!=20869)
[  124.652679][ T8576] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040e11d, mo2=0002]
[  124.660852][ T8576] EXT4-fs (loop0): failed to initialize system zone (-117)
[  124.709964][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.711149][ T8576] EXT4-fs (loop0): mount failed
[  124.993394][ T8605] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  125.036532][ T8610] loop4: detected capacity change from 0 to 512
[  125.053697][ T8610] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1848: bg 0: block 248: padding at end of block bitmap is not set
[  125.108414][ T8617] loop1: detected capacity change from 0 to 128
[  125.125145][ T8610] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1848: Failed to acquire dquot type 1
[  125.190625][ T8620] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8620 comm=syz.3.1851
[  125.203490][ T8620] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=8620 comm=syz.3.1851
[  125.221597][ T8610] EXT4-fs (loop4): 1 truncate cleaned up
[  125.227699][ T8610] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.263137][ T8621] netlink: 'syz.1.1850': attribute type 41 has an invalid length.
[  125.315978][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.342298][   T51] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:3: Failed to release dquot type 1
[  125.494457][ T8629] loop1: detected capacity change from 0 to 2048
[  125.542699][ T8629] Alternate GPT is invalid, using primary GPT.
[  125.549222][ T8629]  loop1: p2 p3 p7
[  125.680353][ T8640] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  125.704596][ T8642] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  125.714445][ T8642] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.822789][ T8642] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  125.832658][ T8642] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.879982][   T29] kauditd_printk_skb: 443 callbacks suppressed
[  125.880001][   T29] audit: type=1326 audit(125.863:10098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8619 comm="syz.3.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  125.909304][   T29] audit: type=1326 audit(125.863:10099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8619 comm="syz.3.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  125.944990][   T29] audit: type=1326 audit(125.903:10100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8619 comm="syz.3.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  125.968053][   T29] audit: type=1326 audit(125.903:10101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8619 comm="syz.3.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  125.991627][   T29] audit: type=1326 audit(125.903:10102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8619 comm="syz.3.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  126.014878][   T29] audit: type=1326 audit(125.903:10103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8619 comm="syz.3.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  126.037855][   T29] audit: type=1326 audit(125.903:10104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8619 comm="syz.3.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  126.060922][   T29] audit: type=1326 audit(125.903:10105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8619 comm="syz.3.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  126.088538][ T8652] loop0: detected capacity change from 0 to 128
[  126.189358][ T8652] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  126.197293][ T8652] FAT-fs (loop0): Filesystem has been set read-only
[  126.204154][ T8652] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  126.212081][ T8652] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  126.365253][ T8642] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  126.375218][ T8642] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.447324][ T8642] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  126.457200][ T8642] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.473786][ T8663] __nla_validate_parse: 5 callbacks suppressed
[  126.473804][ T8663] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1867'.
[  126.499940][ T8663] serio: Serial port ptm0
[  126.513917][ T3608] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  126.522214][ T3608] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.545360][ T3608] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  126.553710][ T3608] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.571444][   T29] audit: type=1326 audit(126.563:10106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8667 comm="syz.3.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  126.618052][ T3608] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  126.626351][ T3608] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.651795][   T29] audit: type=1326 audit(126.563:10107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8667 comm="syz.3.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  126.675326][ T3608] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  126.683706][ T3608] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.694836][ T8670] loop0: detected capacity change from 0 to 128
[  126.706859][ T8674] loop1: detected capacity change from 0 to 1024
[  126.707769][ T8670] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  126.714519][ T8674] EXT4-fs: Mount option(s) incompatible with ext2
[  126.725848][ T8670] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  126.816090][ T8674] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1872'.
[  126.824000][ T8670] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1870'.
[  126.825138][ T8674] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1872'.
[  126.883102][ T8693] loop0: detected capacity change from 0 to 2048
[  126.887651][ T8696] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8696 comm=syz.4.1876
[  126.902193][ T8696] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=8696 comm=syz.4.1876
[  126.943160][ T8693] Alternate GPT is invalid, using primary GPT.
[  126.949546][ T8693]  loop0: p2 p3 p7
[  126.969508][ T8701] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1881'.
[  126.978546][ T8701] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1881'.
[  127.248639][ T8718] loop0: detected capacity change from 0 to 512
[  127.312476][ T8718] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1887: bg 0: block 248: padding at end of block bitmap is not set
[  127.335537][ T8718] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1887: Failed to acquire dquot type 1
[  127.352895][ T8718] EXT4-fs (loop0): 1 truncate cleaned up
[  127.362091][ T8726] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  127.370288][ T8718] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.415543][ T8733] can0: slcan on ttyS3.
[  127.425829][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.435432][   T51] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:3: Failed to release dquot type 1
[  127.461246][ T8733] can0 (unregistered): slcan off ttyS3.
[  127.510878][ T8737] SELinux:  Context system_u:object_r:hald_exec_t:s0 is not valid (left unmapped).
[  127.775949][ T8751] loop0: detected capacity change from 0 to 8192
[  127.786625][ T8733] loop2: detected capacity change from 0 to 32768
[  127.795170][ T8751] vfat: Unknown parameter '0x0000000000000000'
[  127.834638][ T8751] loop0: detected capacity change from 0 to 512
[  127.871082][ T8751] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  128.073879][ T8751] EXT4-fs (loop0): 1 truncate cleaned up
[  128.083856][ T8751] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.128706][ T8764] loop2: detected capacity change from 0 to 512
[  128.185383][ T8764] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1906: bg 0: block 248: padding at end of block bitmap is not set
[  128.280355][ T8764] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1906: Failed to acquire dquot type 1
[  128.299273][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.365895][ T8772] lo speed is unknown, defaulting to 1000
[  128.374275][ T8764] EXT4-fs (loop2): 1 truncate cleaned up
[  128.380452][ T8764] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.422221][ T8772] lo speed is unknown, defaulting to 1000
[  128.450239][ T8775] loop4: detected capacity change from 0 to 2048
[  128.459442][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.468811][ T3426] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:7: Failed to release dquot type 1
[  128.493643][ T8780] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8780 comm=syz.0.1910
[  128.496834][ T8775] Alternate GPT is invalid, using primary GPT.
[  128.506515][ T8780] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=8780 comm=syz.0.1910
[  128.512950][ T8775]  loop4: p2 p3 p7
[  128.754410][ T8793] loop4: detected capacity change from 0 to 1024
[  128.771109][ T8793] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  128.798105][ T8793] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #11: comm syz.4.1916: iget: bogus i_mode (1)
[  128.811147][ T8793] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1916: couldn't read orphan inode 11 (err -117)
[  128.916313][ T8803] ALSA: seq fatal error: cannot create timer (-19)
[  128.937999][ T8806] SELinux:  Context system_u:object_r:crypt_device_t:s0 is not valid (left unmapped).
[  129.442385][ T8816] loop0: detected capacity change from 0 to 2048
[  129.487936][ T8816] Alternate GPT is invalid, using primary GPT.
[  129.494368][ T8816]  loop0: p2 p3 p7
[  129.636969][ T8824] lo speed is unknown, defaulting to 1000
[  129.674505][ T8824] lo speed is unknown, defaulting to 1000
[  129.702438][ T8828] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1927'.
[  129.724889][ T8826] loop0: detected capacity change from 0 to 2048
[  129.777491][ T8826] Alternate GPT is invalid, using primary GPT.
[  129.781295][ T8833] loop1: detected capacity change from 0 to 512
[  129.784083][ T8826]  loop0: p2 p3 p7
[  129.802927][ T8833] EXT4-fs mount: 2 callbacks suppressed
[  129.802945][ T8833] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.824998][ T8833] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.1929: corrupted inode contents
[  129.876788][ T8843] loop4: detected capacity change from 0 to 1024
[  129.887582][ T8833] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.1929: mark_inode_dirty error
[  129.910640][ T8841] ALSA: seq fatal error: cannot create timer (-19)
[  129.942462][ T8843] EXT4-fs: Mount option(s) incompatible with ext2
[  129.950698][ T8833] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.1929: corrupted inode contents
[  129.972068][ T8844] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.1929: corrupted inode contents
[  129.997350][ T8844] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.1929: mark_inode_dirty error
[  130.030553][ T8844] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.1929: corrupted inode contents
[  130.055150][ T8844] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.1929: mark_inode_dirty error
[  130.067543][ T8850] loop0: detected capacity change from 0 to 2048
[  130.070074][ T8844] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.1929: corrupted inode contents
[  130.077118][ T8843] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1932'.
[  130.093094][ T8844] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.1929: mark_inode_dirty error
[  130.095343][ T8843] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1932'.
[  130.122557][ T8850] Alternate GPT is invalid, using primary GPT.
[  130.129080][ T8850]  loop0: p2 p3 p7
[  130.134104][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.218890][ T8868] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1941'.
[  130.287930][ T8875] lo speed is unknown, defaulting to 1000
[  130.326634][ T8875] lo speed is unknown, defaulting to 1000
[  130.348989][ T8877] loop2: detected capacity change from 0 to 2048
[  130.393985][ T8877] Alternate GPT is invalid, using primary GPT.
[  130.400449][ T8877]  loop2: p2 p3 p7
[  130.572952][ T8881] ALSA: seq fatal error: cannot create timer (-19)
[  130.623506][ T8884] vhci_hcd: invalid port number 96
[  130.628712][ T8884] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  131.127583][   T29] kauditd_printk_skb: 613 callbacks suppressed
[  131.127601][   T29] audit: type=1400 audit(131.113:10715): avc:  denied  { ioctl } for  pid=8899 comm="syz.2.1955" path="/dev/input/event2" dev="devtmpfs" ino=245 ioctlcmd=0x4590 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  131.186341][ T8903] ALSA: seq fatal error: cannot create timer (-19)
[  131.273337][   T29] audit: type=1326 audit(131.263:10716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8907 comm="syz.0.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  131.296433][   T29] audit: type=1326 audit(131.263:10717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8907 comm="syz.0.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  131.355810][   T29] audit: type=1326 audit(131.263:10718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8907 comm="syz.0.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  131.379240][   T29] audit: type=1326 audit(131.263:10719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8907 comm="syz.0.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  131.379428][ T8908] loop0: detected capacity change from 0 to 2048
[  131.402226][   T29] audit: type=1326 audit(131.263:10720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8907 comm="syz.0.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  131.431609][   T29] audit: type=1326 audit(131.303:10721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8907 comm="syz.0.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  131.454647][   T29] audit: type=1326 audit(131.313:10722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8907 comm="syz.0.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  131.477590][   T29] audit: type=1326 audit(131.313:10723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8907 comm="syz.0.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  131.500965][   T29] audit: type=1326 audit(131.313:10724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8907 comm="syz.0.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  131.589229][ T8908] Alternate GPT is invalid, using primary GPT.
[  131.595650][ T8908]  loop0: p2 p3 p7
[  131.618831][ T8921] vhci_hcd: default hub control req: 0300 vfffa i0000 l0
[  131.919763][ T8953] 9pnet_fd: p9_fd_create_unix (8953): problem connecting socket: ./file0: -2
[  131.974147][ T8959] netlink: 'syz.0.1976': attribute type 13 has an invalid length.
[  131.982051][ T8959] netlink: 24859 bytes leftover after parsing attributes in process `syz.0.1976'.
[  132.202275][ T8977] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1984'.
[  132.243090][ T8981] loop0: detected capacity change from 0 to 512
[  132.249910][ T8981] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  132.261841][ T8981] EXT4-fs (loop0): 1 truncate cleaned up
[  132.267874][ T8981] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.722687][ T8998] loop4: detected capacity change from 0 to 512
[  132.743850][ T8998] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.757902][ T8998] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.1991: corrupted inode contents
[  132.771034][ T8998] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.1991: mark_inode_dirty error
[  132.784119][ T8998] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.1991: corrupted inode contents
[  132.798327][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.816938][ T8998] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.1991: corrupted inode contents
[  132.831458][ T8998] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.1991: mark_inode_dirty error
[  132.845190][ T8998] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.1991: corrupted inode contents
[  132.857905][ T8998] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.1991: mark_inode_dirty error
[  132.871222][ T8998] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.1991: corrupted inode contents
[  132.892057][ T8998] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.1991: mark_inode_dirty error
[  132.918323][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.940138][ T9009] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1996'.
[  132.979310][ T9012] lo speed is unknown, defaulting to 1000
[  133.015758][ T9012] lo speed is unknown, defaulting to 1000
[  133.082123][ T9016] loop0: detected capacity change from 0 to 2048
[  133.124094][ T9016] Alternate GPT is invalid, using primary GPT.
[  133.130576][ T9016]  loop0: p2 p3 p7
[  133.152466][ T9022] lo speed is unknown, defaulting to 1000
[  133.185837][ T9022] lo speed is unknown, defaulting to 1000
[  133.207032][ T9023] loop4: detected capacity change from 0 to 2048
[  133.254533][ T9023] Alternate GPT is invalid, using primary GPT.
[  133.261022][ T9023]  loop4: p2 p3 p7
[  133.455158][ T9039] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2007'.
[  133.558094][ T9046] loop4: detected capacity change from 0 to 1024
[  133.565439][ T9046] EXT4-fs: Mount option(s) incompatible with ext2
[  133.599295][ T9046] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2010'.
[  133.608396][ T9046] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2010'.
[  133.917897][ T9050] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2011'.
[  134.204341][ T9072] loop1: detected capacity change from 0 to 512
[  134.222865][ T9072] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2021: bg 0: block 248: padding at end of block bitmap is not set
[  134.239144][ T9072] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.2021: Failed to acquire dquot type 1
[  134.253941][ T9075] loop0: detected capacity change from 0 to 1024
[  134.276253][ T9075] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.293528][ T9075] EXT4-fs error (device loop0): ext4_read_inline_dir:1476: inode #12: block 7: comm syz.0.2020: path /433/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[  134.306628][ T9079] loop2: detected capacity change from 0 to 512
[  134.317710][ T9072] EXT4-fs (loop1): 1 truncate cleaned up
[  134.328772][ T9072] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.343736][ T9079] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2022: bg 0: block 248: padding at end of block bitmap is not set
[  134.359488][ T9079] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2022: Failed to acquire dquot type 1
[  134.363104][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.372300][ T9079] EXT4-fs (loop2): 1 truncate cleaned up
[  134.385786][   T51] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:3: Failed to release dquot type 1
[  134.398148][ T9079] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.462140][ T9084] lo speed is unknown, defaulting to 1000
[  134.472825][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.492465][ T3426] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:7: Failed to release dquot type 1
[  134.546920][ T9084] lo speed is unknown, defaulting to 1000
[  134.574611][ T9085] loop1: detected capacity change from 0 to 2048
[  134.604509][ T9090] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2025'.
[  134.634337][ T9085] Alternate GPT is invalid, using primary GPT.
[  134.640746][ T9085]  loop1: p2 p3 p7
[  134.864024][ T9097] netlink: 'syz.3.2029': attribute type 32 has an invalid length.
[  134.907231][ T9101] loop1: detected capacity change from 0 to 512
[  134.956968][ T9101] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.2030: bad orphan inode 11862016
[  135.004786][ T9101] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  135.127041][ T9113] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2031'.
[  135.145593][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  135.171583][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.193888][ T9123] FAULT_INJECTION: forcing a failure.
[  135.193888][ T9123] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.207112][ T9123] CPU: 1 UID: 0 PID: 9123 Comm: syz.1.2033 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  135.207148][ T9123] Tainted: [W]=WARN
[  135.207155][ T9123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  135.207201][ T9123] Call Trace:
[  135.207209][ T9123]  <TASK>
[  135.207218][ T9123]  __dump_stack+0x1d/0x30
[  135.207239][ T9123]  dump_stack_lvl+0xe8/0x140
[  135.207261][ T9123]  dump_stack+0x15/0x1b
[  135.207282][ T9123]  should_fail_ex+0x265/0x280
[  135.207363][ T9123]  should_fail+0xb/0x20
[  135.207384][ T9123]  should_fail_usercopy+0x1a/0x20
[  135.207409][ T9123]  _copy_from_user+0x1c/0xb0
[  135.207450][ T9123]  ___sys_sendmsg+0xc1/0x1d0
[  135.207523][ T9123]  __x64_sys_sendmsg+0xd4/0x160
[  135.207595][ T9123]  x64_sys_call+0x191e/0x2ff0
[  135.207623][ T9123]  do_syscall_64+0xd2/0x200
[  135.207727][ T9123]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  135.207822][ T9123]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  135.207864][ T9123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.207893][ T9123] RIP: 0033:0x7f174645eba9
[  135.207913][ T9123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.207997][ T9123] RSP: 002b:00007f1744ebf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  135.208017][ T9123] RAX: ffffffffffffffda RBX: 00007f17466a5fa0 RCX: 00007f174645eba9
[  135.208033][ T9123] RDX: 0000000000000044 RSI: 00002000000007c0 RDI: 0000000000000003
[  135.208048][ T9123] RBP: 00007f1744ebf090 R08: 0000000000000000 R09: 0000000000000000
[  135.208063][ T9123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.208077][ T9123] R13: 00007f17466a6038 R14: 00007f17466a5fa0 R15: 00007ffd316fe178
[  135.208096][ T9123]  </TASK>
[  135.469905][ T9136] lo speed is unknown, defaulting to 1000
[  135.529193][ T9134] lo speed is unknown, defaulting to 1000
[  135.535523][ T9140] loop0: detected capacity change from 0 to 2048
[  135.536372][ T9136] lo speed is unknown, defaulting to 1000
[  135.575018][ T9140] Alternate GPT is invalid, using primary GPT.
[  135.581509][ T9140]  loop0: p2 p3 p7
[  135.599012][ T9134] lo speed is unknown, defaulting to 1000
[  135.687469][ T9156] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2046'.
[  135.987486][ T9187] loop0: detected capacity change from 0 to 512
[  135.998112][ T9187] EXT4-fs: Ignoring removed orlov option
[  136.005561][ T9187] ext4: Unknown parameter 'audit'
[  136.048445][ T9195] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9195 comm=syz.3.2063
[  136.061282][ T9195] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=9195 comm=syz.3.2063
[  136.222723][   T29] kauditd_printk_skb: 557 callbacks suppressed
[  136.222738][   T29] audit: type=1326 audit(136.213:11276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9194 comm="syz.3.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  136.252022][   T29] audit: type=1326 audit(136.213:11277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9194 comm="syz.3.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  136.285584][   T29] audit: type=1326 audit(136.213:11278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9194 comm="syz.3.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  136.308725][   T29] audit: type=1326 audit(136.213:11279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9194 comm="syz.3.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  136.331740][   T29] audit: type=1326 audit(136.213:11280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9194 comm="syz.3.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  136.354740][   T29] audit: type=1326 audit(136.213:11281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9194 comm="syz.3.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  136.377977][   T29] audit: type=1326 audit(136.213:11282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9194 comm="syz.3.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  136.401081][   T29] audit: type=1326 audit(136.213:11283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9194 comm="syz.3.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  136.425820][   T29] audit: type=1326 audit(136.403:11284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9194 comm="syz.3.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  136.448937][   T29] audit: type=1326 audit(136.403:11285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9194 comm="syz.3.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  136.483493][ T9209] loop4: detected capacity change from 0 to 512
[  136.503892][ T9209] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm : bg 0: block 248: padding at end of block bitmap is not set
[  136.522203][ T9209] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm : Failed to acquire dquot type 1
[  136.533619][ T9209] EXT4-fs (loop4): 1 truncate cleaned up
[  136.539875][ T9209] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.797100][ T9229] netlink: 'syz.3.2074': attribute type 4 has an invalid length.
[  137.319372][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.340585][ T9237] serio: Serial port ptm0
[  137.513483][ T9242] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9242 comm=syz.4.2077
[  137.526210][ T9242] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=9242 comm=syz.4.2077
[  137.995223][ T9272] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9272 comm=syz.3.2089
[  138.075388][ T9285] __nla_validate_parse: 6 callbacks suppressed
[  138.075407][ T9285] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2094'.
[  138.142438][ T9291] lo speed is unknown, defaulting to 1000
[  138.176020][ T9291] lo speed is unknown, defaulting to 1000
[  138.198584][ T9293] loop2: detected capacity change from 0 to 2048
[  138.244929][ T9293] Alternate GPT is invalid, using primary GPT.
[  138.251385][ T9293]  loop2: p2 p3 p7
[  138.370917][ T9299] veth0: entered promiscuous mode
[  138.390633][ T9298] veth0: left promiscuous mode
[  138.455712][ T9305] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2101'.
[  138.474725][ T9305] Â: renamed from macvlan0 (while UP)
[  138.539955][ T9317] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2107'.
[  138.586054][ T9323] loop4: detected capacity change from 0 to 512
[  138.602721][ T9323] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2110: bg 0: block 248: padding at end of block bitmap is not set
[  138.617466][ T9323] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2110: Failed to acquire dquot type 1
[  138.629383][ T9323] EXT4-fs (loop4): 1 truncate cleaned up
[  138.635589][ T9323] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.650582][ T9328] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9328 comm=syz.1.2108
[  138.663327][ T9328] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=9328 comm=syz.1.2108
[  138.689574][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.699005][ T3426] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:7: Failed to release dquot type 1
[  138.731890][ T9331] lo speed is unknown, defaulting to 1000
[  138.766732][ T9331] lo speed is unknown, defaulting to 1000
[  138.802163][ T9333] loop4: detected capacity change from 0 to 2048
[  138.859521][ T9333] Alternate GPT is invalid, using primary GPT.
[  138.866229][ T9333]  loop4: p2 p3 p7
[  139.051521][ T9342] netlink: 'syz.0.2114': attribute type 21 has an invalid length.
[  139.059741][ T9342] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2114'.
[  139.068894][ T9342] netlink: 'syz.0.2114': attribute type 1 has an invalid length.
[  139.078715][ T9349] netlink: 75 bytes leftover after parsing attributes in process `syz.2.2116'.
[  139.155719][ T9357] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2120'.
[  139.156237][ T9355] lo speed is unknown, defaulting to 1000
[  139.212916][ T9362] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2122'.
[  139.217987][ T9355] lo speed is unknown, defaulting to 1000
[  139.270560][ T9365] lo speed is unknown, defaulting to 1000
[  139.312075][ T9372] loop0: detected capacity change from 0 to 512
[  139.315153][ T9365] lo speed is unknown, defaulting to 1000
[  139.330147][ T9372] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2127: bg 0: block 393: padding at end of block bitmap is not set
[  139.346236][ T9373] loop4: detected capacity change from 0 to 2048
[  139.346447][ T9372] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  139.363362][ T9372] EXT4-fs (loop0): 2 truncates cleaned up
[  139.369588][ T9372] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.407054][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.420777][ T9373] Alternate GPT is invalid, using primary GPT.
[  139.427272][ T9373]  loop4: p2 p3 p7
[  139.475715][ T9377] loop0: detected capacity change from 0 to 2048
[  139.482950][ T9377] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  139.609208][ T9398] 9pnet_fd: Insufficient options for proto=fd
[  139.626417][ T9402] loop0: detected capacity change from 0 to 512
[  139.649482][ T9400] loop4: detected capacity change from 0 to 512
[  139.657717][ T9402] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.666613][ T9400] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  139.673056][ T9402] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2138: corrupted inode contents
[  139.682584][ T9400] EXT4-fs (loop4): orphan cleanup on readonly fs
[  139.694351][ T9402] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2138: mark_inode_dirty error
[  139.699040][ T9400] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.2137: Block bitmap for bg 0 marked uninitialized
[  139.710665][ T9402] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2138: corrupted inode contents
[  139.735424][ T9400] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  139.747522][ T9400] EXT4-fs (loop4): 1 orphan inode deleted
[  139.747607][ T9409] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2138: corrupted inode contents
[  139.761668][ T9400] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  139.778833][ T9410] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9410 comm=syz.1.2139
[  139.781170][ T9409] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2138: mark_inode_dirty error
[  139.791874][ T9410] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=9410 comm=syz.1.2139
[  139.814775][ T9409] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2138: corrupted inode contents
[  139.831802][ T9409] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.2138: mark_inode_dirty error
[  139.832146][ T9409] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2138: corrupted inode contents
[  139.832300][ T9409] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2138: mark_inode_dirty error
[  139.870913][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.891687][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.061195][ T9425] lo speed is unknown, defaulting to 1000
[  140.098656][ T9425] lo speed is unknown, defaulting to 1000
[  140.238120][ T9430] lo speed is unknown, defaulting to 1000
[  140.301487][ T9430] lo speed is unknown, defaulting to 1000
[  140.475337][ T9435] loop4: detected capacity change from 0 to 512
[  140.513191][ T9429] loop2: detected capacity change from 0 to 2048
[  140.534628][ T9435] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.593092][ T9429] Alternate GPT is invalid, using primary GPT.
[  140.599537][ T9429]  loop2: p2 p3 p7
[  140.677143][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.716522][ T9441] loop1: detected capacity change from 0 to 1024
[  140.739252][ T9445] loop2: detected capacity change from 0 to 128
[  140.768074][ T9445] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  140.777999][ T9445] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  140.969530][ T9469] loop1: detected capacity change from 0 to 1024
[  140.988003][ T9469] EXT4-fs: Mount option(s) incompatible with ext2
[  141.040751][ T9469] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2157'.
[  141.049119][ T9474] loop4: detected capacity change from 0 to 1024
[  141.049784][ T9469] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2157'.
[  141.077340][ T9474] EXT4-fs: Mount option(s) incompatible with ext2
[  141.212162][ T9474] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2158'.
[  141.241416][   T29] kauditd_printk_skb: 420 callbacks suppressed
[  141.241435][   T29] audit: type=1326 audit(141.233:11701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9473 comm="syz.4.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  141.272000][   T29] audit: type=1326 audit(141.233:11702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9473 comm="syz.4.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  141.295083][   T29] audit: type=1326 audit(141.233:11703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9473 comm="syz.4.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  141.317975][   T29] audit: type=1326 audit(141.233:11704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9473 comm="syz.4.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  141.341105][   T29] audit: type=1326 audit(141.233:11705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9473 comm="syz.4.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  141.364096][   T29] audit: type=1326 audit(141.233:11706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9473 comm="syz.4.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  141.387140][   T29] audit: type=1326 audit(141.233:11707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9473 comm="syz.4.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  141.410238][   T29] audit: type=1326 audit(141.233:11708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9473 comm="syz.4.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  141.433201][   T29] audit: type=1326 audit(141.233:11709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9473 comm="syz.4.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  141.456149][   T29] audit: type=1326 audit(141.233:11710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9473 comm="syz.4.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  141.565679][ T9478] lo speed is unknown, defaulting to 1000
[  141.607609][ T9478] lo speed is unknown, defaulting to 1000
[  141.630917][ T9479] loop2: detected capacity change from 0 to 2048
[  141.683529][ T9479] Alternate GPT is invalid, using primary GPT.
[  141.690023][ T9479]  loop2: p2 p3 p7
[  141.903503][ T9486] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9486 comm=syz.0.2160
[  141.916305][ T9486] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=9486 comm=syz.0.2160
[  142.088776][ T9501] vlan3: entered allmulticast mode
[  142.094169][ T9501] bridge_slave_0: entered allmulticast mode
[  142.661287][ T9521] loop0: detected capacity change from 0 to 512
[  142.673733][ T9521] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2174: bg 0: block 248: padding at end of block bitmap is not set
[  142.689503][ T9521] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2174: Failed to acquire dquot type 1
[  142.703590][ T9521] EXT4-fs (loop0): 1 truncate cleaned up
[  142.709858][ T9521] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.737918][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.748503][  T110] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 1
[  143.291902][ T9544] loop4: detected capacity change from 0 to 512
[  143.312683][ T9544] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.327265][ T9544] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2183: corrupted inode contents
[  143.339358][ T9544] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.2183: mark_inode_dirty error
[  143.352684][ T9544] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2183: corrupted inode contents
[  143.368087][ T9544] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2183: corrupted inode contents
[  143.380700][ T9544] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.2183: mark_inode_dirty error
[  143.392316][ T9544] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2183: corrupted inode contents
[  143.404273][ T9544] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.2183: mark_inode_dirty error
[  143.407772][ T9550] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9550 comm=syz.1.2184
[  143.422096][ T9544] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2183: corrupted inode contents
[  143.428134][ T9550] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=9550 comm=syz.1.2184
[  143.441565][ T9544] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.2183: mark_inode_dirty error
[  143.483908][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.526681][ T9556] loop4: detected capacity change from 0 to 512
[  143.542708][ T9556] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2186: bg 0: block 248: padding at end of block bitmap is not set
[  143.557632][ T9556] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2186: Failed to acquire dquot type 1
[  143.569767][ T9556] EXT4-fs (loop4): 1 truncate cleaned up
[  143.575884][ T9556] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.601880][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.612321][   T31] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 1
[  143.662301][ T9564] loop0: detected capacity change from 0 to 512
[  143.668205][ T9562] lo speed is unknown, defaulting to 1000
[  143.686658][ T9564] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.702778][ T9564] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2189: corrupted inode contents
[  143.705845][ T9562] lo speed is unknown, defaulting to 1000
[  143.716277][ T9564] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2189: mark_inode_dirty error
[  143.733919][ T9564] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2189: corrupted inode contents
[  143.746570][ T9567] loop4: detected capacity change from 0 to 2048
[  143.755536][ T9564] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2189: corrupted inode contents
[  143.767770][ T9564] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2189: mark_inode_dirty error
[  143.779664][ T9564] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2189: corrupted inode contents
[  143.791965][ T9564] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.2189: mark_inode_dirty error
[  143.803571][ T9564] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2189: corrupted inode contents
[  143.805057][ T9567] Alternate GPT is invalid, using primary GPT.
[  143.817418][ T9564] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2189: mark_inode_dirty error
[  143.821931][ T9567]  loop4: p2 p3 p7
[  143.848465][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.993207][ T9586] serio: Serial port ptm1
[  144.037462][ T9591] serio: Serial port ptm2
[  144.069664][ T9594] loop4: detected capacity change from 0 to 512
[  144.079154][ T9594] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2201: bg 0: block 131: padding at end of block bitmap is not set
[  144.094085][ T9594] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  144.103156][ T9594] EXT4-fs (loop4): 1 truncate cleaned up
[  144.109310][ T9594] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.190000][ T9608] lo speed is unknown, defaulting to 1000
[  144.238269][ T9608] lo speed is unknown, defaulting to 1000
[  144.249558][ T9615] loop0: detected capacity change from 0 to 2048
[  144.304293][ T9615] Alternate GPT is invalid, using primary GPT.
[  144.310743][ T9615]  loop0: p2 p3 p7
[  144.361498][ T9622] serio: Serial port ptm0
[  144.585955][ T9628] lo speed is unknown, defaulting to 1000
[  144.620107][ T9628] lo speed is unknown, defaulting to 1000
[  144.923027][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.006526][ T9643] loop1: detected capacity change from 0 to 512
[  145.024143][ T9643] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2220: bg 0: block 248: padding at end of block bitmap is not set
[  145.039030][ T9643] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.2220: Failed to acquire dquot type 1
[  145.051102][ T9646] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9646 comm=syz.2.2216
[  145.052361][ T9643] EXT4-fs (loop1): 1 truncate cleaned up
[  145.063801][ T9646] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=9646 comm=syz.2.2216
[  145.070508][ T9643] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.108609][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.117918][   T51] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:3: Failed to release dquot type 1
[  145.267136][ T9652] serio: Serial port ptm1
[  145.412293][ T9671] __nla_validate_parse: 1 callbacks suppressed
[  145.412309][ T9671] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2230'.
[  146.870920][ T9695] serio: Serial port ptm0
[  146.889386][   T29] kauditd_printk_skb: 406 callbacks suppressed
[  146.889404][   T29] audit: type=1400 audit(146.873:12108): avc:  denied  { read } for  pid=9709 comm="syz.4.2245" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  146.918503][   T29] audit: type=1400 audit(146.873:12109): avc:  denied  { open } for  pid=9709 comm="syz.4.2245" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  146.962611][ T9710] loop4: detected capacity change from 0 to 164
[  146.985266][ T9718] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9718 comm=syz.3.2248
[  146.997985][ T9718] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=9718 comm=syz.3.2248
[  147.015365][   T29] audit: type=1400 audit(147.003:12110): avc:  denied  { ioctl } for  pid=9709 comm="syz.4.2245" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  147.078813][ T9721] loop1: detected capacity change from 0 to 512
[  147.115855][   T29] audit: type=1400 audit(147.043:12111): avc:  denied  { recv } for  pid=3302 comm="syz-executor" saddr=10.128.0.163 src=30036 daddr=10.128.1.63 dest=35774 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  147.444749][ T9737] sock: sock_timestamping_bind_phc: sock not bind to device
[  147.474187][ T9739] loop0: detected capacity change from 0 to 1024
[  147.509249][ T9739] EXT4-fs: Ignoring removed bh option
[  147.553348][ T9739] EXT4-fs: inline encryption not supported
[  147.587090][   T29] audit: type=1326 audit(147.183:12112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9717 comm="syz.3.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  147.604834][ T9739] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  147.610199][   T29] audit: type=1326 audit(147.183:12113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9717 comm="syz.3.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  147.643532][   T29] audit: type=1326 audit(147.183:12114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9717 comm="syz.3.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  147.645408][ T9721] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2249: bg 0: block 248: padding at end of block bitmap is not set
[  147.666525][   T29] audit: type=1326 audit(147.183:12115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9717 comm="syz.3.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  147.666577][   T29] audit: type=1326 audit(147.183:12116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9717 comm="syz.3.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  147.690340][ T9745] 9pnet_fd: Insufficient options for proto=fd
[  147.704985][   T29] audit: type=1326 audit(147.183:12117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9717 comm="syz.3.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  147.733746][ T9721] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.2249: Failed to acquire dquot type 1
[  147.772259][ T9739] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 2: comm syz.0.2256: lblock 2 mapped to illegal pblock 2 (length 1)
[  147.787886][ T9721] EXT4-fs (loop1): 1 truncate cleaned up
[  147.794280][ T9721] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.807301][ T9739] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 48: comm syz.0.2256: lblock 0 mapped to illegal pblock 48 (length 1)
[  147.832016][ T9739] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2256: Failed to acquire dquot type 0
[  147.847598][ T9748] loop4: detected capacity change from 0 to 2048
[  147.862022][ T9739] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  147.878894][ T9739] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.2256: mark_inode_dirty error
[  147.882903][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.893079][ T9750] serio: Serial port ptm0
[  147.903896][  T159] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:5: Failed to release dquot type 1
[  147.903936][ T9739] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  147.926073][ T9739] EXT4-fs (loop0): 1 orphan inode deleted
[  147.932074][ T3426] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[  147.932500][ T9739] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.959701][ T9748] Alternate GPT is invalid, using primary GPT.
[  147.966057][ T9748]  loop4: p1 p2 p3
[  147.970215][ T3426] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:7: Failed to release dquot type 0
[  147.988949][ T9739] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  148.003336][ T9739] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  148.015859][ T9739] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 48: comm syz.0.2256: lblock 0 mapped to illegal pblock 48 (length 1)
[  148.034341][ T9739] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  148.060490][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.114119][ T9773] loop0: detected capacity change from 0 to 512
[  148.154458][ T9769] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  148.202375][ T9777] loop0: detected capacity change from 0 to 512
[  148.211415][ T9779] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9779 comm=syz.3.2270
[  148.224208][ T9779] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=9779 comm=syz.3.2270
[  148.240095][ T9777] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2269: bg 0: block 248: padding at end of block bitmap is not set
[  148.275922][ T9777] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2269: Failed to acquire dquot type 1
[  148.305731][ T9777] EXT4-fs (loop0): 1 truncate cleaned up
[  148.316344][ T9777] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.378504][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.387999][  T159] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:5: Failed to release dquot type 1
[  148.420159][ T9785] serio: Serial port ptm1
[  148.598956][ T9811] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2282'.
[  148.653573][ T9823] serio: Serial port ptm0
[  148.690595][ T9831] FAULT_INJECTION: forcing a failure.
[  148.690595][ T9831] name failslab, interval 1, probability 0, space 0, times 0
[  148.703694][ T9831] CPU: 0 UID: 0 PID: 9831 Comm: syz.0.2290 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  148.703737][ T9831] Tainted: [W]=WARN
[  148.703747][ T9831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  148.703763][ T9831] Call Trace:
[  148.703771][ T9831]  <TASK>
[  148.703781][ T9831]  __dump_stack+0x1d/0x30
[  148.703869][ T9831]  dump_stack_lvl+0xe8/0x140
[  148.703896][ T9831]  dump_stack+0x15/0x1b
[  148.703917][ T9831]  should_fail_ex+0x265/0x280
[  148.703950][ T9831]  should_failslab+0x8c/0xb0
[  148.703982][ T9831]  kmem_cache_alloc_node_noprof+0x57/0x320
[  148.704099][ T9831]  ? __alloc_skb+0x101/0x320
[  148.704121][ T9831]  ? avc_has_perm+0xf7/0x180
[  148.704150][ T9831]  __alloc_skb+0x101/0x320
[  148.704204][ T9831]  sock_wmalloc+0x7e/0xc0
[  148.704237][ T9831]  pppol2tp_sendmsg+0xfb/0x440
[  148.704271][ T9831]  ? __pfx_pppol2tp_sendmsg+0x10/0x10
[  148.704374][ T9831]  __sock_sendmsg+0x145/0x180
[  148.704431][ T9831]  sock_write_iter+0x165/0x1b0
[  148.704509][ T9831]  do_iter_readv_writev+0x499/0x540
[  148.704544][ T9831]  vfs_writev+0x2df/0x8b0
[  148.704592][ T9831]  do_writev+0xe7/0x210
[  148.704661][ T9831]  __x64_sys_writev+0x45/0x50
[  148.704693][ T9831]  x64_sys_call+0x1e9a/0x2ff0
[  148.704721][ T9831]  do_syscall_64+0xd2/0x200
[  148.704779][ T9831]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  148.704807][ T9831]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  148.704850][ T9831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.704872][ T9831] RIP: 0033:0x7f111208eba9
[  148.704891][ T9831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.704913][ T9831] RSP: 002b:00007f1110aef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  148.704938][ T9831] RAX: ffffffffffffffda RBX: 00007f11122d5fa0 RCX: 00007f111208eba9
[  148.705030][ T9831] RDX: 0000000000000001 RSI: 0000200000000180 RDI: 0000000000000003
[  148.705043][ T9831] RBP: 00007f1110aef090 R08: 0000000000000000 R09: 0000000000000000
[  148.705061][ T9831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.705077][ T9831] R13: 00007f11122d6038 R14: 00007f11122d5fa0 R15: 00007fff2b9020b8
[  148.705113][ T9831]  </TASK>
[  149.072530][ T9865] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9865 comm=syz.4.2295
[  149.085321][ T9865] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=9865 comm=syz.4.2295
[  149.106791][ T9868] loop0: detected capacity change from 0 to 512
[  149.114746][ T9868] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  149.129498][ T9868] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #16: comm syz.0.2305: invalid indirect mapped block 4294967295 (level 0)
[  149.145147][ T9868] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #16: comm syz.0.2305: invalid indirect mapped block 4294967295 (level 1)
[  149.161389][ T9868] EXT4-fs (loop0): 1 orphan inode deleted
[  149.167161][ T9868] EXT4-fs (loop0): 1 truncate cleaned up
[  149.174612][ T9868] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.341360][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.382811][ T9877] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  149.393087][ T9877] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2307'.
[  149.495991][ T9884] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2310'.
[  149.542023][ T9888] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  149.548613][ T9888] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  149.556369][ T9888] vhci_hcd vhci_hcd.0: Device attached
[  149.565898][ T9888] loop0: detected capacity change from 0 to 512
[  149.582548][ T9888] EXT4-fs warning (device loop0): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  149.597764][ T9888] EXT4-fs (loop0): mount failed
[  149.609936][ T9888] loop0: detected capacity change from 0 to 512
[  149.624489][ T9889] vhci_hcd: connection closed
[  149.624572][   T31] vhci_hcd: stop threads
[  149.633672][   T31] vhci_hcd: release socket
[  149.638155][   T31] vhci_hcd: disconnect device
[  149.909942][ T9907] loop4: detected capacity change from 0 to 512
[  149.933249][ T9907] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2318: bg 0: block 248: padding at end of block bitmap is not set
[  149.947874][ T9907] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2318: Failed to acquire dquot type 1
[  149.959914][ T9907] EXT4-fs (loop4): 1 truncate cleaned up
[  149.966043][ T9907] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.993709][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.003055][   T51] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:3: Failed to release dquot type 1
[  150.194544][ T9915] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2321'.
[  150.432481][ T9923] loop2: detected capacity change from 0 to 2048
[  150.441593][ T9923] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.494469][ T9923] netlink: 'syz.2.2324': attribute type 29 has an invalid length.
[  150.514004][ T9928] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  150.531261][ T3305] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  150.551040][ T3305] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  150.571572][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.762184][ T9940] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9940 comm=syz.2.2329
[  150.775048][ T9940] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=9940 comm=syz.2.2329
[  151.186188][ T9955] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2333'.
[  151.285927][ T9966] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  151.300995][ T9964] lo speed is unknown, defaulting to 1000
[  151.367347][ T9964] lo speed is unknown, defaulting to 1000
[  151.535778][ T9988] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2348'.
[  151.566583][ T9985] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2347'.
[  151.610400][ T9991] loop4: detected capacity change from 0 to 512
[  151.635420][ T9993] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  151.667112][ T9991] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.709883][ T9999] lo speed is unknown, defaulting to 1000
[  151.735030][T10001] loop0: detected capacity change from 0 to 512
[  151.746870][ T9999] lo speed is unknown, defaulting to 1000
[  151.761209][ T9991] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2349: corrupted inode contents
[  151.789038][T10002] loop2: detected capacity change from 0 to 2048
[  151.796336][ T9991] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.2349: mark_inode_dirty error
[  151.812144][ T9991] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2349: corrupted inode contents
[  151.825226][T10004] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2349: corrupted inode contents
[  151.837981][T10001] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2353: bg 0: block 248: padding at end of block bitmap is not set
[  151.838886][T10004] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.2349: mark_inode_dirty error
[  151.857216][T10002] Alternate GPT is invalid, using primary GPT.
[  151.866819][T10004] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2349: corrupted inode contents
[  151.870201][T10002]  loop2: p2 p3 p7
[  151.883784][T10004] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.2349: mark_inode_dirty error
[  151.896964][T10001] __quota_error: 511 callbacks suppressed
[  151.896981][T10001] Quota error (device loop0): write_blk: dquota write failed
[  151.897192][T10004] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2349: corrupted inode contents
[  151.902903][T10001] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  151.923499][T10004] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.2349: mark_inode_dirty error
[  151.944690][   T29] audit: type=1326 audit(151.923:12615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10007 comm="syz.3.2354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  151.954293][T10001] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2353: Failed to acquire dquot type 1
[  151.968149][   T29] audit: type=1326 audit(151.923:12616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10007 comm="syz.3.2354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  152.003675][   T29] audit: type=1326 audit(151.923:12617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10007 comm="syz.3.2354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  152.027234][   T29] audit: type=1326 audit(151.923:12618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10007 comm="syz.3.2354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  152.035896][T10001] EXT4-fs (loop0): 1 truncate cleaned up
[  152.050540][   T29] audit: type=1326 audit(151.923:12619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10007 comm="syz.3.2354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  152.056819][T10001] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.079364][   T29] audit: type=1326 audit(151.923:12620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10007 comm="syz.3.2354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  152.114875][   T29] audit: type=1326 audit(151.923:12621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10007 comm="syz.3.2354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  152.138073][   T29] audit: type=1326 audit(151.923:12622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10007 comm="syz.3.2354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feec780eba9 code=0x7ffc0000
[  152.195737][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.205125][  T159] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:5: Failed to release dquot type 1
[  152.220287][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.284331][T10020] loop2: detected capacity change from 0 to 1024
[  152.292617][T10020] EXT4-fs: Mount option(s) incompatible with ext2
[  152.306364][T10024] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  152.343589][T10020] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2359'.
[  152.352767][T10020] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2359'.
[  152.403194][T10032] loop1: detected capacity change from 0 to 764
[  152.419818][T10032] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  152.442447][T10035] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10035 comm=syz.4.2362
[  152.455312][T10035] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=10035 comm=syz.4.2362
[  152.459649][T10032] Symlink component flag not implemented
[  152.489477][T10032] Symlink component flag not implemented (7)
[  152.731999][T10043] netlink: 256 bytes leftover after parsing attributes in process `syz.1.2367'.
[  152.885381][T10048] loop0: detected capacity change from 0 to 512
[  152.937499][T10048] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.992308][T10048] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2368: corrupted inode contents
[  153.048528][T10048] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2368: mark_inode_dirty error
[  153.089633][T10048] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2368: corrupted inode contents
[  153.124906][T10062] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  153.142393][T10048] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.2368: mark_inode_dirty error
[  153.254891][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.322934][T10077] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  153.343008][T10077] SELinux: failed to load policy
[  153.356073][T10076] loop4: detected capacity change from 0 to 512
[  153.383309][T10076] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2381: bg 0: block 248: padding at end of block bitmap is not set
[  153.401234][T10076] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2381: Failed to acquire dquot type 1
[  153.425428][T10076] EXT4-fs (loop4): 1 truncate cleaned up
[  153.437139][T10076] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.470014][T10091] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  153.481286][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.520354][  T159] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:5: Failed to release dquot type 1
[  153.575153][T10093] loop0: detected capacity change from 0 to 512
[  153.624892][T10093] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.695157][T10093] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2388: corrupted inode contents
[  153.731404][T10093] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2388: mark_inode_dirty error
[  153.771421][T10093] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2388: corrupted inode contents
[  153.804998][T10093] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.2388: mark_inode_dirty error
[  153.847827][T10106] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10106 comm=syz.4.2391
[  153.860602][T10106] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=10106 comm=syz.4.2391
[  153.892089][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.183319][T10127] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  154.427223][T10146] loop2: detected capacity change from 0 to 512
[  154.445753][T10146] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.462171][T10146] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.2406: corrupted inode contents
[  154.474381][T10146] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.2406: mark_inode_dirty error
[  154.480172][T10155] netlink: 256 bytes leftover after parsing attributes in process `syz.0.2409'.
[  154.487496][T10146] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.2406: corrupted inode contents
[  154.507838][T10146] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.2406: mark_inode_dirty error
[  154.535793][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.640582][T10165] lo speed is unknown, defaulting to 1000
[  154.677539][T10165] lo speed is unknown, defaulting to 1000
[  154.731496][T10167] loop2: detected capacity change from 0 to 2048
[  154.783779][T10167] Alternate GPT is invalid, using primary GPT.
[  154.790158][T10167]  loop2: p2 p3 p7
[  154.812323][T10178] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2418'.
[  154.961630][T10196] loop2: detected capacity change from 0 to 512
[  154.973542][T10196] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2427: bg 0: block 248: padding at end of block bitmap is not set
[  154.988350][T10196] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2427: Failed to acquire dquot type 1
[  155.007975][T10196] EXT4-fs (loop2): 1 truncate cleaned up
[  155.034580][T10196] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.053005][T10204] serio: Serial port ptm0
[  155.068910][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.078685][ T3608] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 1
[  155.137086][T10209] lo speed is unknown, defaulting to 1000
[  155.154003][T10211] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2433'.
[  155.174380][T10209] lo speed is unknown, defaulting to 1000
[  155.205803][T10219] loop0: detected capacity change from 0 to 512
[  155.216205][T10214] loop2: detected capacity change from 0 to 2048
[  155.235747][T10219] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2435: corrupted inode contents
[  155.247888][T10219] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2435: mark_inode_dirty error
[  155.259507][T10219] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2435: corrupted inode contents
[  155.265165][T10214] Alternate GPT is invalid, using primary GPT.
[  155.273001][T10219] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.2435: mark_inode_dirty error
[  155.277684][T10214]  loop2: p2 p3 p7
[  155.434579][T10228] loop0: detected capacity change from 0 to 128
[  155.444922][T10228] EXT4-fs error (device loop0): ext4_validate_block_bitmap:423: comm syz.0.2437: bg 0: bad block bitmap checksum
[  155.458620][T10228] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2437'.
[  155.667407][T10239] loop4: detected capacity change from 0 to 512
[  155.683386][T10239] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2442: bg 0: block 248: padding at end of block bitmap is not set
[  155.698913][T10239] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2442: Failed to acquire dquot type 1
[  155.712162][T10239] EXT4-fs (loop4): 1 truncate cleaned up
[  155.732602][ T3426] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:7: Failed to release dquot type 1
[  156.288014][T10273] loop2: detected capacity change from 0 to 512
[  156.303028][T10273] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2457: bg 0: block 248: padding at end of block bitmap is not set
[  156.319024][T10273] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2457: Failed to acquire dquot type 1
[  156.331346][T10273] EXT4-fs (loop2): 1 truncate cleaned up
[  156.349893][  T110] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 1
[  156.373128][T10276] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  156.416487][T10284] __nla_validate_parse: 2 callbacks suppressed
[  156.416509][T10284] netlink: 256 bytes leftover after parsing attributes in process `syz.2.2461'.
[  156.809777][T10308] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2471'.
[  156.999243][T10318] netlink: 256 bytes leftover after parsing attributes in process `syz.4.2475'.
[  157.013018][   T29] kauditd_printk_skb: 444 callbacks suppressed
[  157.013037][   T29] audit: type=1326 audit(157.003:13054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10317 comm="syz.4.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  157.042788][   T29] audit: type=1326 audit(157.003:13055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10317 comm="syz.4.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  157.066003][   T29] audit: type=1326 audit(157.003:13056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10317 comm="syz.4.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  157.089092][   T29] audit: type=1326 audit(157.003:13057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10317 comm="syz.4.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  157.112102][   T29] audit: type=1326 audit(157.003:13058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10317 comm="syz.4.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  157.135970][   T29] audit: type=1326 audit(157.003:13059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10317 comm="syz.4.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20b831eba9 code=0x7ffc0000
[  157.213090][T10324] loop1: detected capacity change from 0 to 512
[  157.237723][   T29] audit: type=1326 audit(157.223:13060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10327 comm="syz.0.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  157.275239][T10330] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2480'.
[  157.284717][   T29] audit: type=1326 audit(157.253:13061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10327 comm="syz.0.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  157.307839][   T29] audit: type=1326 audit(157.253:13062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10327 comm="syz.0.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  157.330856][   T29] audit: type=1326 audit(157.253:13063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10327 comm="syz.0.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111208eba9 code=0x7ffc0000
[  157.367104][T10324] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2477: corrupted inode contents
[  157.379191][T10336] loop4: detected capacity change from 0 to 512
[  157.380535][T10324] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.2477: mark_inode_dirty error
[  157.385758][T10335] ALSA: seq fatal error: cannot create timer (-19)
[  157.399363][T10324] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2477: corrupted inode contents
[  157.416213][T10324] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.2477: mark_inode_dirty error
[  157.455230][T10336] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2482: bg 0: block 248: padding at end of block bitmap is not set
[  157.479276][T10336] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2482: Failed to acquire dquot type 1
[  157.494733][T10336] EXT4-fs (loop4): 1 truncate cleaned up
[  157.529783][T10345] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2483'.
[  157.535009][T10347] lo speed is unknown, defaulting to 1000
[  157.562693][   T31] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 1
[  157.577862][T10347] lo speed is unknown, defaulting to 1000
[  157.605453][T10352] loop0: detected capacity change from 0 to 2048
[  157.629035][T10359] serio: Serial port ptm0
[  157.643733][T10352] Alternate GPT is invalid, using primary GPT.
[  157.650244][T10352]  loop0: p2 p3 p7
[  157.715063][T10365] loop1: detected capacity change from 0 to 512
[  157.721850][T10365] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  157.776709][T10370] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  157.839974][T10378] serio: Serial port ptm0
[  157.911271][T10382] loop0: detected capacity change from 0 to 512
[  157.933539][T10382] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2498: bg 0: block 248: padding at end of block bitmap is not set
[  157.948409][T10382] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2498: Failed to acquire dquot type 1
[  157.960335][T10382] EXT4-fs (loop0): 1 truncate cleaned up
[  157.977981][   T31] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 1
[  158.322515][T10401] netlink: 256 bytes leftover after parsing attributes in process `syz.2.2504'.
[  158.658901][T10417] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2512'.
[  158.710247][T10422] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2514'.
[  158.714642][T10423] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2515'.
[  158.753911][T10431] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  158.797033][T10435] lo speed is unknown, defaulting to 1000
[  158.852975][T10435] lo speed is unknown, defaulting to 1000
[  158.868319][T10442] loop1: detected capacity change from 0 to 2048
[  158.923736][T10442] Alternate GPT is invalid, using primary GPT.
[  158.930298][T10442]  loop1: p2 p3 p7
[  158.972554][T10450] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2525'.
[  159.107017][T10461] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  159.157373][T10464] loop1: detected capacity change from 0 to 512
[  159.179899][T10464] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2530: bg 0: block 248: padding at end of block bitmap is not set
[  159.200393][T10464] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.2530: Failed to acquire dquot type 1
[  159.214548][T10464] EXT4-fs (loop1): 1 truncate cleaned up
[  159.248670][ T3608] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 1
[  159.315412][T10486] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  159.319016][T10488] loop2: detected capacity change from 0 to 512
[  159.334815][T10488] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.2541: corrupted inode contents
[  159.347155][T10488] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.2541: mark_inode_dirty error
[  159.374891][T10488] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.2541: corrupted inode contents
[  159.382337][T10494] serio: Serial port ptm0
[  159.389482][T10495] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.2541: corrupted inode contents
[  159.403282][T10495] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.2541: mark_inode_dirty error
[  159.414957][T10495] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.2541: corrupted inode contents
[  159.427025][T10495] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.2541: mark_inode_dirty error
[  159.438986][T10495] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.2541: corrupted inode contents
[  159.452013][T10495] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.2541: mark_inode_dirty error
[  159.551890][T10509] lo speed is unknown, defaulting to 1000
[  159.602460][T10509] lo speed is unknown, defaulting to 1000
[  159.667037][T10520] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  159.680864][T10522] tipc: Disabling bearer <eth:syzkaller0>
[  159.739637][T10527] serio: Serial port ptm0
[  159.740464][T10525] loop2: detected capacity change from 0 to 512
[  159.766769][T10525] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2555: bg 0: block 248: padding at end of block bitmap is not set
[  159.782500][T10525] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2555: Failed to acquire dquot type 1
[  159.786959][T10533] loop0: detected capacity change from 0 to 512
[  159.796369][T10525] EXT4-fs (loop2): 1 truncate cleaned up
[  159.822573][T10533] EXT4-fs mount: 19 callbacks suppressed
[  159.822594][T10533] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.853734][T10533] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2558: corrupted inode contents
[  159.854183][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.883109][   T51] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:3: Failed to release dquot type 1
[  159.900744][T10533] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2558: mark_inode_dirty error
[  159.923405][T10533] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2558: corrupted inode contents
[  159.966021][T10541] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2558: corrupted inode contents
[  159.993366][T10541] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2558: mark_inode_dirty error
[  160.024119][T10541] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2558: corrupted inode contents
[  160.040017][T10541] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.2558: mark_inode_dirty error
[  160.052938][T10541] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2558: corrupted inode contents
[  160.074917][T10541] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2558: mark_inode_dirty error
[  160.109491][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.366453][T10594] loop1: detected capacity change from 0 to 512
[  160.390884][T10594] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.406766][T10594] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2583: corrupted inode contents
[  160.419369][T10594] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.2583: mark_inode_dirty error
[  160.431410][T10594] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2583: corrupted inode contents
[  160.444459][T10594] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2583: corrupted inode contents
[  160.456423][T10594] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.2583: mark_inode_dirty error
[  160.468395][T10594] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2583: corrupted inode contents
[  160.480648][T10594] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.2583: mark_inode_dirty error
[  160.492362][T10594] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2583: corrupted inode contents
[  160.504412][T10594] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.2583: mark_inode_dirty error
[  160.530438][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.625901][T10616] loop1: detected capacity change from 0 to 164
[  160.643683][T10618] loop4: detected capacity change from 0 to 164
[  160.838654][T10642] serio: Serial port ptm0
[  161.048002][T10657] lo speed is unknown, defaulting to 1000
[  161.107967][T10657] lo speed is unknown, defaulting to 1000
[  161.115879][T10662] loop2: detected capacity change from 0 to 2048
[  161.183960][T10662] Alternate GPT is invalid, using primary GPT.
[  161.190331][T10662]  loop2: p2 p3 p7
[  161.417413][T10673] serio: Serial port ptm0
[  161.600772][T10696] lo speed is unknown, defaulting to 1000
[  161.632385][T10696] lo speed is unknown, defaulting to 1000
[  161.658741][T10697] loop1: detected capacity change from 0 to 2048
[  161.704209][T10697] Alternate GPT is invalid, using primary GPT.
[  161.710658][T10697]  loop1: p2 p3 p7
[  162.021193][   T29] kauditd_printk_skb: 564 callbacks suppressed
[  162.021211][   T29] audit: type=1326 audit(162.003:13616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10708 comm="syz.1.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  162.051631][   T29] audit: type=1326 audit(162.013:13617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10708 comm="syz.1.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  162.074821][   T29] audit: type=1326 audit(162.013:13618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10708 comm="syz.1.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  162.098124][   T29] audit: type=1326 audit(162.013:13619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10708 comm="syz.1.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  162.121338][   T29] audit: type=1326 audit(162.013:13620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10708 comm="syz.1.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  162.144445][   T29] audit: type=1326 audit(162.013:13621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10708 comm="syz.1.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  162.167621][   T29] audit: type=1326 audit(162.013:13622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10708 comm="syz.1.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  162.191033][   T29] audit: type=1326 audit(162.013:13623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10708 comm="syz.1.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  162.214035][   T29] audit: type=1326 audit(162.013:13624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10708 comm="syz.1.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  162.237053][   T29] audit: type=1326 audit(162.013:13625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10708 comm="syz.1.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f174645eba9 code=0x7ffc0000
[  162.304498][T10714] __nla_validate_parse: 2 callbacks suppressed
[  162.304513][T10714] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2636'.
[  162.370589][T10724] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  162.388590][T10725] lo speed is unknown, defaulting to 1000
[  162.440077][T10730] loop1: detected capacity change from 0 to 2048
[  162.440822][T10725] lo speed is unknown, defaulting to 1000
[  162.464838][T10730] Alternate GPT is invalid, using primary GPT.
[  162.471183][T10730]  loop1: p2 p3 p7
[  162.669409][T10752] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  162.719421][T10756] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2653'.
[  162.908152][T10778] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  162.983919][T10784] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2666'.
[  163.090286][T10796] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2671'.
[  163.237322][T10802] loop0: detected capacity change from 0 to 512
[  163.252620][T10802] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.266955][T10802] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2674: corrupted inode contents
[  163.280533][T10802] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2674: mark_inode_dirty error
[  163.295989][T10802] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2674: corrupted inode contents
[  163.309996][T10802] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2674: corrupted inode contents
[  163.315516][T10809] serio: Serial port ptm0
[  163.323654][T10802] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2674: mark_inode_dirty error
[  163.338034][T10802] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2674: corrupted inode contents
[  163.350149][T10802] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.2674: mark_inode_dirty error
[  163.362241][T10802] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.2674: corrupted inode contents
[  163.374792][T10802] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.2674: mark_inode_dirty error
[  163.420094][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.434964][T10818] loop1: detected capacity change from 0 to 512
[  163.446418][T10812] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2677'.
[  163.474079][T10818] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2680: bg 0: block 248: padding at end of block bitmap is not set
[  163.491194][T10818] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.2680: Failed to acquire dquot type 1
[  163.521960][T10818] EXT4-fs (loop1): 1 truncate cleaned up
[  163.529629][T10818] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.556252][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.567884][   T51] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:3: Failed to release dquot type 1
[  163.654416][T10839] serio: Serial port ptm0
[  163.730017][T10845] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2691'.
[  163.750064][T10855] loop4: detected capacity change from 0 to 512
[  163.763981][T10855] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.781304][T10858] loop0: detected capacity change from 0 to 512
[  163.789765][T10855] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2695: corrupted inode contents
[  163.803662][T10855] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.2695: mark_inode_dirty error
[  163.816170][T10855] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2695: corrupted inode contents
[  163.830798][T10858] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2694: bg 0: block 248: padding at end of block bitmap is not set
[  163.847602][T10866] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2695: corrupted inode contents
[  163.860345][T10858] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2694: Failed to acquire dquot type 1
[  163.873189][T10858] EXT4-fs (loop0): 1 truncate cleaned up
[  163.879234][T10858] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.897073][T10866] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.2695: mark_inode_dirty error
[  163.909470][T10866] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2695: corrupted inode contents
[  163.923963][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.935155][T10866] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.2695: mark_inode_dirty error
[  163.950177][  T159] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:5: Failed to release dquot type 1
[  163.963339][T10866] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.2695: corrupted inode contents
[  163.979336][T10866] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz.4.2695: mark_inode_dirty error
[  164.010743][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.079965][T10886] serio: Serial port ptm0
[  164.121006][T10890] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2708'.
[  164.448065][T10921] serio: Serial port ptm0
[  164.575393][T10927] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2721'.
[  165.121628][T10952] serio: Serial port ptm0
[  165.241230][T10956] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2734'.
[  165.286931][T10967] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=10967 comm=syz.1.2737
[  165.354120][T10977] lo speed is unknown, defaulting to 1000
[  165.398503][T10982] serio: Serial port ptm0
[  165.422876][T10977] lo speed is unknown, defaulting to 1000
[  165.431657][T10980] loop1: detected capacity change from 0 to 2048
[  165.457116][T10987] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2747'.
[  165.473318][T10980] Alternate GPT is invalid, using primary GPT.
[  165.479728][T10980]  loop1: p2 p3 p7
[  165.591757][T11004] loop0: detected capacity change from 0 to 512
[  165.603248][T11004] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2754: bg 0: block 248: padding at end of block bitmap is not set
[  165.631448][T11004] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2754: Failed to acquire dquot type 1
[  165.644275][T11004] EXT4-fs (loop0): 1 truncate cleaned up
[  165.658985][T11004] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.689189][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.699560][ T3608] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 1
[  165.810699][T11021] serio: Serial port ptm0
[  165.902622][T11032] lo speed is unknown, defaulting to 1000
[  165.936824][T11032] lo speed is unknown, defaulting to 1000
[  165.968277][T11039] loop1: detected capacity change from 0 to 512
[  165.985964][T11035] loop0: detected capacity change from 0 to 2048
[  166.003184][T11039] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.017801][T11039] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2768: corrupted inode contents
[  166.030272][T11039] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.2768: mark_inode_dirty error
[  166.046914][T11039] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2768: corrupted inode contents
[  166.062075][T11039] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2768: corrupted inode contents
[  166.074949][T11039] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.2768: mark_inode_dirty error
[  166.088322][T11039] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2768: corrupted inode contents
[  166.101895][T11039] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.2768: mark_inode_dirty error
[  166.114092][T11039] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.2768: corrupted inode contents
[  166.114105][T11035] Alternate GPT is invalid, using primary GPT.
[  166.114221][T11039] ==================================================================
[  166.114259][T11039] BUG: KCSAN: data-race in data_alloc / data_push_tail
[  166.114306][T11039] 
[  166.114313][T11039] write to 0xffffffff88e51260 of 8 bytes by task 11035 on cpu 0:
[  166.114332][T11039]  data_alloc+0x203/0x2b0
[  166.114368][T11039]  prb_reserve+0x808/0xaf0
[  166.114418][T11035]  loop0: p2 p3 p7
[  166.114414][T11039]  vprintk_store+0x56d/0x860
[  166.114433][T11039]  vprintk_emit+0x178/0x650
[  166.114450][T11039]  vprintk_default+0x26/0x30
[  166.114467][T11039]  vprintk+0x1d/0x30
[  166.114489][T11039]  _printk+0x79/0xa0
[  166.114522][T11039]  efi_partition+0x12bd/0x1400
[  166.114551][T11039]  bdev_disk_changed+0x4b6/0xcb0
[  166.114572][T11039]  loop_set_status+0x5d2/0x6a0
[  166.114595][T11039]  lo_ioctl+0x671/0x12b0
[  166.114619][T11039]  blkdev_ioctl+0x34f/0x440
[  166.114652][T11039]  __se_sys_ioctl+0xce/0x140
[  166.114674][T11039]  __x64_sys_ioctl+0x43/0x50
[  166.114696][T11039]  x64_sys_call+0x1816/0x2ff0
[  166.114725][T11039]  do_syscall_64+0xd2/0x200
[  166.114762][T11039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.114791][T11039] 
[  166.114800][T11039] read to 0xffffffff88e51260 of 8 bytes by task 11039 on cpu 1:
[  166.114821][T11039]  data_push_tail+0xfd/0x420
[  166.114869][T11039]  data_alloc+0xbf/0x2b0
[  166.114904][T11039]  prb_reserve+0x808/0xaf0
[  166.114935][T11039]  vprintk_store+0x56d/0x860
[  166.114953][T11039]  vprintk_emit+0x178/0x650
[  166.114971][T11039]  vprintk_default+0x26/0x30
[  166.114996][T11039]  vprintk+0x1d/0x30
[  166.115028][T11039]  _printk+0x79/0xa0
[  166.115064][T11039]  __ext4_error_inode+0x2ca/0x3f0
[  166.115107][T11039]  ext4_mark_iloc_dirty+0x35e/0xda0
[  166.115134][T11039]  __ext4_mark_inode_dirty+0x2e2/0x3f0
[  166.115163][T11039]  ext4_dirty_inode+0x92/0xc0
[  166.115182][T11039]  __mark_inode_dirty+0x162/0x750
[  166.115211][T11039]  ext4_free_blocks+0xea9/0x1480
[  166.115242][T11039]  ext4_ext_map_blocks+0x11d7/0x38a0
[  166.115266][T11039]  ext4_map_blocks+0x5ee/0xd00
[  166.115298][T11039]  ext4_getblk+0x114/0x510
[  166.115334][T11039]  ext4_bread+0x28/0x110
[  166.115378][T11039]  ext4_append+0x16e/0x2b0
[  166.115405][T11039]  ext4_add_entry+0x1053/0x1c60
[  166.115428][T11039]  ext4_add_nondir+0x4e/0x180
[  166.115461][T11039]  ext4_create+0x1ff/0x2f0
[  166.115492][T11039]  path_openat+0x1105/0x2170
[  166.115516][T11039]  do_filp_open+0x109/0x230
[  166.115536][T11039]  do_sys_openat2+0xa6/0x110
[  166.115569][T11039]  __x64_sys_openat+0xf2/0x120
[  166.115612][T11039]  x64_sys_call+0x2e9c/0x2ff0
[  166.115641][T11039]  do_syscall_64+0xd2/0x200
[  166.115679][T11039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.115701][T11039] 
[  166.115706][T11039] value changed: 0x00000000ffffeaa2 -> 0x00000000fffff5af
[  166.115719][T11039] 
[  166.115725][T11039] Reported by Kernel Concurrency Sanitizer on:
[  166.115745][T11039] CPU: 1 UID: 0 PID: 11039 Comm: syz.1.2768 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  166.115785][T11039] Tainted: [W]=WARN
[  166.115796][T11039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  166.115813][T11039] ==================================================================
[  166.441544][T11039] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.2768: mark_inode_dirty error
[  166.456752][T11039] syz.1.2768 (11039) used greatest stack depth: 8648 bytes left
[  166.473800][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.372101][   T29] kauditd_printk_skb: 605 callbacks suppressed
[  167.372120][   T29] audit: type=1400 audit(167.363:14222): avc:  denied  { egress } for  pid=22 comm="ksoftirqd/1" saddr=fe80::1b daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[  167.401438][   T29] audit: type=1400 audit(167.363:14223): avc:  denied  { sendto } for  pid=22 comm="ksoftirqd/1" saddr=fe80::1b daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1