last executing test programs:

25.164457167s ago: executing program 4 (id=1208):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
r2 = getpgid(0x0)
r3 = syz_pidfd_open(r2, 0x0)
pidfd_getfd(r3, r3, 0x0)

24.784177614s ago: executing program 4 (id=1211):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x2000c16, &(0x7f0000000280)={[{@usrquota}, {@nodelalloc}]}, 0xff, 0x25e, &(0x7f0000000e80)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r1, 0x0, 0x81}, 0x18)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0x45)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000080)=ANY=[], 0xfe37, 0x0)

24.328279815s ago: executing program 4 (id=1217):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000040340000000000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000357500007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='./file0\x00')

24.217062729s ago: executing program 4 (id=1222):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x2c)
mount$tmpfs(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000300), 0x210009, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='./file0/../file0\x00')

24.20747676s ago: executing program 4 (id=1224):
syz_open_dev$tty20(0xc, 0x4, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
creat(&(0x7f0000000340)='./bus\x00', 0x182)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='kfree\x00', r1, 0x0, 0x2}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x20000010)

24.183612071s ago: executing program 4 (id=1225):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r2, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, 0x0, 0x0)

24.123385163s ago: executing program 32 (id=1225):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r2, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, 0x0, 0x0)

6.829564475s ago: executing program 1 (id=1584):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x43)
link(&(0x7f0000000f40)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0)

6.754106559s ago: executing program 1 (id=1588):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
mmap$IORING_OFF_SQES(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x1000008, 0xc94ee3b6e518beb0, 0xffffffffffffffff, 0x10000000)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x565c}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB="c200000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[], 0xd0}, 0x1, 0x0, 0x0, 0x4001}, 0x4000000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$lock(r2, 0x26, &(0x7f0000000180)={0x0, 0x1, 0x0, 0xc5, r0})
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

5.921336386s ago: executing program 1 (id=1606):
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0xc08, 0x3, 0x440, 0x310, 0x5002004a, 0xb, 0x310, 0xea13, 0x3a8, 0x3c8, 0x3c8, 0x3a8, 0x3c8, 0x3, 0x0, {[{{@ip={@multicast2, @private=0xa010101, 0xff, 0xffffffff, 'bridge0\x00', 'veth0_macvtap\x00', {}, {0xff}, 0x5c, 0x3, 0x2}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{}, {0x16}, {0x4}, {}, {}, {0x0, 0x0, 0x5e}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}, {0x0, 0x0, 0x4}, {}, {0x4, 0x8}, {}, {}, {0x1}, {0x0, 0x0, 0x0, 0x7f}, {0x0, 0x4}, {}, {}, {}, {0xfffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x40}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfd}]}}, @common=@inet=@socket3={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4a0)

5.847366079s ago: executing program 1 (id=1607):
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000280)='./file0\x00', 0x1000001, &(0x7f0000001300)=ANY=[], 0x1, 0x36b, &(0x7f0000000a00)="$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")
syz_open_dev$evdev(&(0x7f0000000100), 0xc73, 0x20000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f00000002c0)={{}, {0x10}}, 0x24, 0x0)
epoll_create1(0x0)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f00000004c0)=""/48, 0x30)

4.194398783s ago: executing program 1 (id=1627):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2000085c, &(0x7f0000000580)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESDEC=0x0, @ANYBLOB=',discard,\x00', @ANYBLOB="f9ee7ee6616006527905abd668ea17e382e0c83dc34879c344093674bfcb9afe6942e93d2c31ef3422c5857ce514a621738e2e0ca9f3b51f9577ee83ca37bd7a2dda7be50c9438a6731ec6303c2b70c0282527857939030300203de5ad9ccf10f399d47a553c3815a8140e156f525b62a6c34f36a440f37ac333648bccb6c848db175245696642c3000000000000", @ANYRESOCT=0x0, @ANYRES16=0x0, @ANYRES32, @ANYRESHEX, @ANYRESHEX, @ANYRESHEX], 0xc1, 0x151a, &(0x7f0000002a80)="$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")
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0xa, 0x1, 0x0)
pipe2$9p(&(0x7f00000000c0), 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
fsetxattr$trusted_overlay_origin(r0, &(0x7f00000001c0), 0x0, 0x0, 0x1)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x4, 0x5, 0x6, 0x4004, 0x2, 0x4, 0xefffffffffffffff, 0x0, 0x0, 0x2000000, 0x0, 0x1c, 0x0, 0xffffffffffffffff, 0x6], 0x0, 0x41901})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.887881877s ago: executing program 1 (id=1632):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x141, 0x48, 0x13, 0x44, 0x20, 0x424, 0x7500, 0x69ee, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xb8, 0x7, 0x2, 0x96, 0xd1, 0xca, 0x0, [], [{{0x9, 0x5, 0x6, 0x2, 0x200, 0xd, 0x0, 0x6}}, {{0x9, 0x5, 0x82, 0x2, 0x200, 0x0, 0x1, 0x10}}]}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000900)={0x84, &(0x7f00000003c0)={0x0, 0x17, 0x4, "abe763a8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000740)={0x44, &(0x7f0000000180)=ANY=[@ANYBLOB="601004000000cf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000300)={0x1c, &(0x7f0000001480)=ANY=[@ANYBLOB="200104"], 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000013c0)={0x44, &(0x7f00000011c0)={0x20, 0x14, 0x4, "0426fd98"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000fc0)={0x84, &(0x7f0000000c80)={0x20, 0x0, 0x4, "f670e000"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000001200)={0x84, &(0x7f0000000f00)={0x0, 0x14, 0x4, "42467af9"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000500)={0x2c, &(0x7f0000000200)={0x0, 0x14}, 0x0, 0x0, 0x0, 0x0})

3.511575003s ago: executing program 3 (id=1640):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000005c0)=ANY=[@ANYBLOB="1201500000000010d90481a000000000000109022400010000000009040100010300000009210000000122080009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000180)=ANY=[], 0x0}, 0xffffffffffffffff)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
ioctl$TUNSETLINK(r1, 0x400454cd, 0x20)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='net/dev_mcast\x00')
lstat(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
getgroups(0x1, &(0x7f0000000040)=[r3])
pread64(r2, &(0x7f0000003b00)=""/195, 0xc3, 0x591f)

1.886808236s ago: executing program 2 (id=1666):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x3804402, &(0x7f00000005c0)={[{@mblk_io_submit}, {@abort}, {@resuid}, {@oldalloc}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@nolazytime}, {@noinit_itable}, {@nomblk_io_submit}, {@nodelalloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x400}}]}, 0x1, 0x55f, &(0x7f0000000c80)="$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")
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0xc0185879, &(0x7f0000000240)={0x9, 0x6ab, 0x2, 0x6, 0x0, 0x5, 0x2401})

1.886422966s ago: executing program 3 (id=1667):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000500)={[{@nojournal_checksum}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xe7}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x6}}, {@barrier}, {@nodelalloc}, {@noinit_itable}]}, 0x1, 0x5b3, &(0x7f0000000780)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x50)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
preadv2(r0, &(0x7f0000000d40)=[{&(0x7f00000001c0)=""/200, 0xc8}], 0x1, 0x4, 0x2, 0x9)

1.853807437s ago: executing program 2 (id=1668):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, 0x0, 0x0)

1.818608929s ago: executing program 3 (id=1669):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002180), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x100000003)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x32874000)
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f0000002480)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80`4/\xe9\x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\x16\\n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd3\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84\x04;\xc5[\nja\xb9\'\xc9#\xfcx\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x00B\x05\xd4\xea\xea\x7f=\xc6:\\N\xc3\xb7Vw\xc6\x9c\x96s\xaaHL\x96\xc72\n\x18Ynj\xceTS\xfbl\x0f\x9f8M\f\x89\xa1\xd2Hs`\x8bp\x8a\xc4%\xf8\x1d3\nV\x9a\xaf\x1f\xf96^\x93\xc1\xaf)\rg\x86\xd6\xea\xa9\x0f\x9a\xf1V\x1b\xbf\x8b\'-\xab\x8e\t7\xd3\xf7\xa9v\xfbY\xe6\x9b^d\x8c\xb1\xdd')
ioctl$ASHMEM_SET_NAME(r0, 0x40087707, &(0x7f0000000300)='\x00\x00\x00\x06\x00\x00\x03\x00\x00x\x92\x12\xbc\x00\x00\xbb\x0642\x9c\x1a\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6\xb5\t?,~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaahB\t\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99f.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\xa6\xa3\xab\xdb\r\x17\xff[\xb1\x00\xff\x7f\x00\x00\x00\x00')

1.761578382s ago: executing program 2 (id=1670):
syz_mount_image$exfat(&(0x7f0000000100), &(0x7f0000000140)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000003c0)=ANY=[], 0x22, 0x1517, &(0x7f0000002780)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)

1.761105111s ago: executing program 3 (id=1671):
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x1000008, 0xc94ee3b6e518beb0, 0xffffffffffffffff, 0x10000000)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x565c}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB="c200000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[], 0xd0}, 0x1, 0x0, 0x0, 0x4001}, 0x4000000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$lock(r2, 0x26, &(0x7f0000000180)={0x0, 0x1, 0x0, 0xc5, r0})

1.760961342s ago: executing program 2 (id=1672):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@loopback, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@mcast1, 0x0, 0x3c}, 0x0, @in=@local, 0x6, 0x4, 0x3, 0x0, 0x0, 0x10000}]}]}, 0xfc}}, 0x0)
syz_emit_ethernet(0x5a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000386dd6000000000243c00fe8000000000000000000000000000aafe8000000000000000000000000000aa"], 0x0)

1.760657982s ago: executing program 2 (id=1673):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r1, 0x0, 0x0)
readv(r1, &(0x7f0000000100)=[{&(0x7f00000002c0)=""/215, 0xd7}], 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_RX_RING(r2, 0x10e, 0x6, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0xe}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

1.329797751s ago: executing program 0 (id=1674):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$AUDIT_LIST_RULES(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, 0x0, 0x0)
connect$inet6(r0, 0x0, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4084}, 0x8044800)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x800000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_XCRS(r3, 0x4188aea7, &(0x7f0000000140)={0x5, 0x3, [{0x0, 0x0, 0x17}, {0x0, 0x0, 0x1000000000000003}, {0x48, 0x0, 0x7}, {0x3, 0x0, 0x7fffffef}, {0xfffffcb8, 0x0, 0x53a}, {0x6, 0x0, 0x80}, {0x400, 0x0, 0x2}, {0x5b7b, 0x0, 0x100}, {0x5, 0x0, 0x7fff}, {0x80000000, 0x0, 0xffffffffffffff55}, {0xffff, 0x0, 0x9}, {0x8, 0x0, 0x7c}, {0x80, 0x0, 0x40}, {0x6, 0x0, 0x400}, {0x816, 0x0, 0x2}, {0x10001, 0x0, 0x3ff}]})

1.317586131s ago: executing program 0 (id=1675):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000280)=[{0x2, 0xa6, 0x2, 0x3}]}, 0x10)
write$binfmt_misc(r0, &(0x7f0000000100), 0x6)

1.284396433s ago: executing program 0 (id=1676):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)=ANY=[@ANYBLOB="12010000020000102505a1a440000102030109025c0002010000000904000001020d0000052406000105240000000d240f5c09000000000000000006241a000018090581220d000000fd0904010000020d000009040101"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000004, &(0x7f0000000c00)={[{@jqfmt_vfsold}, {@grpid}, {@debug}, {@grpid}, {@noauto_da_alloc}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x9}}, {@debug}, {@usrjquota}, {@nolazytime}, {@norecovery}]}, 0xfe, 0x477, &(0x7f0000000780)="$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")
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000580)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x80, 0x1c, {0x8000, 0x0, 0x306, 0x8001, 0x3, 0x7, 0x9, 0x4, 0x6, 0x9, 0x4, 0x9}}, 0x0, &(0x7f00000003c0)={0x20, 0x83, 0x2}, 0x0, 0x0})
writev(0xffffffffffffffff, 0x0, 0x0)

1.096977081s ago: executing program 5 (id=1681):
r0 = socket$packet(0x11, 0x2, 0x300)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
setsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, 0x0, 0x0)

1.081693391s ago: executing program 5 (id=1682):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x3000046, &(0x7f0000000340)={[{@delalloc}, {@nodelalloc}, {@init_itable_val={'init_itable', 0x3d, 0x3}}, {@inlinecrypt}, {@data_err_ignore}, {@nodiscard}, {@journal_dev={'journal_dev', 0x3d, 0xd}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x5, 0x557, &(0x7f0000000fc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c)

1.001655885s ago: executing program 5 (id=1683):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000100)='./file0\x00', 0x1000000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bb, &(0x7f0000000440)="$eJzs3UFrE1sYxvGnTW+TprTJhcuFe0E96EY3oY0fQIO0IAaU2hR1IUztREPGpMyESkRsNuLWD+Gq6M6doC7ddCNu3LsrguCmC3HETNImbVrTNklj+/9BmTd5z8OcttPyptDJ2o1n9/NZL5G1ShqMGA1KFa1L8V9VzUDtOFith9WoonOj3z6duH7z1pVUOj01Y8x0avZ80hgzfurNg0cvTr8rjc69Gn8d1mr89trX5OfVf1f/W/sxey/nmZxnCsWSscx8sViy5h3bLOS8fMKYa45tebbJFTzbbepnneLiYtlYhYWx6KJre56xCmWTt8umVDQlt2ysu1auYBKJhBmL6ngbamNNZmVmxkrt2PZDHd0Rum6k1ZOum6q0bmZWerAnAADQZ3af/4NZf+f5Pz0XHNua/18+l9qb/6VOzv8DPf2C9rlK06PfzP84Elw3ZUVrP7/NmP8BAAAAAAAAAAAAAAAAAAAAAPgTrPt+zPf9WP1Y/whLikiqPz7sfaI79vn9v3BI20WHNfzjXkRyni5lljLBMeinssrJka0JxfS9ej3UBPX05fTUhKmK662zXMsvL2VCCtfzdfFW+ZN/TwZ505z/S9HG8ycV0z+tz59smR/W2TMN+YRi+nBHRTlaqF7Xm/nHk8Zcuprekh+prgMAAAAA4ChImA3bXr9X+9UFEW3vB/k9/H1gy+vrIf3fzi0qAQAAAADAgXnlh3nLcWx3H0VY0gHieyj8ga6fonNFSH2xjS3FRUl9sI1eFRFJwTNmP/EvG/G2Un4ba4YkHfTzivTw0jrs30wAAAAAOm1z6N9D6OOTLu4IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDjp937gdXXb2vVG7vEG04X0vuNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAjp2fAQAA//91iCZA")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2840, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000001c0)={{0x2000, 0x41000, 0x8, 0x6f, 0x3, 0x7, 0x40, 0x29, 0x0, 0x2e, 0x19}, {0xd000, 0xeeef0000, 0xc, 0x0, 0x40, 0x5, 0x7d, 0x8, 0x58, 0x3, 0x3, 0x1}, {0x200000, 0x3000, 0xe, 0x9, 0x3, 0x8, 0xfe, 0x9, 0x5, 0xab, 0x5, 0x81}, {0x25000, 0x26000, 0x3, 0x5d, 0x4, 0x42, 0x9, 0xff, 0x6, 0x7, 0xe}, {0x0, 0x9000, 0x9, 0x3, 0x7, 0x7, 0xab, 0x7f, 0x9e, 0x9, 0xf7, 0x83}, {0x1000, 0x80a0000, 0x0, 0xa0, 0xb1, 0x8, 0x1, 0xa0, 0x80, 0x11, 0x1, 0xfd}, {0x25000, 0x2, 0xd, 0x5, 0x7, 0x2, 0x8b, 0xfc, 0x5, 0x81, 0xff, 0x70}, {0x5000, 0x1000, 0x8, 0x5, 0xf, 0x7, 0xff, 0x18, 0x2, 0x3, 0x7, 0x9}, {0x2000, 0x30}, {0x10000, 0x86}, 0x80000031, 0x0, 0x70000, 0x242120, 0x800b, 0x0, 0xa000, [0x6840000000000000, 0x4, 0x5a, 0x100]})

914.366769ms ago: executing program 3 (id=1684):
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x8, 0xa602)
ioctl$BLKALIGNOFF(r0, 0x127a, &(0x7f0000000040))

913.880869ms ago: executing program 3 (id=1685):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x74, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000009000/0x18000)=nil, 0x0, 0x0, 0x40, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x244, &(0x7f0000000400)="$eJzs3T9oJFUcB/DvzO565m6RUxtB/AMiooFwdoJNbBQCEoKIoEJExEZJhJhgl1jZWGitksomiJ3RUtIEG0WwipoiNoIGC4OFFiu7k0hMVqNu3Dkynw9MZibz3vzesPN9u83sBmisq0mmk7SSTCbpJCmON7i7Wq4e7q5PbM8nvd4TPxWDdtV+5ajflSRrSR5KslUWeamdrGw+s/fLzmP3vbncuff9zacnxnqRh/b3dh8/eG/2jY9mHlz54qsfZotMp/un6zp/xZD/tYvklv+j2HWiaNc9Av6Judc+/Lqf+1uT3DPIfydlqhfvraUbtjp54N2/6vv2j1/ePs6xAuev1+v03wPXekDjlEm6KcqpJNV2WU5NVZ/hv2ldLl9eXHp18sXF5YUX6p6pgPPSTXYf/eTSx1dO5P/7VpV/4OLq5//JuY1v+9sHrbpHA4zFHdWqn//J51bvj/xD48g/NJf8Q3PJPzSX/ENzyT80l/zDBdb5+8PyD80l/9Bc8g/NdTz/AECz9C7V/QQyUJe65x8AAAAAAAAAAAAAAAAAAOC09Ynt+aNlXDU/eyfZfyRJe1j91uD3iJMbB38v/1z0m/2hqLqN5Nm7RjzBiD6o+enrm76rt/7nd9Zbf3UhWXs9ybV2+/T9Vxzef//dzWcc7zw/YoF/qTix//BT461/0m8b9daf2Uk+7c8/14bNP2VuG6yHzz/ds79i+Uyv/DriCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABib3wMAAP//+kBtTA==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8080c61)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
write$tun(r1, &(0x7f0000000040)=ANY=[], 0x1043)
fallocate(r0, 0x3, 0x5000000, 0x8000c62)

913.504599ms ago: executing program 2 (id=1686):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000e00)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=r0}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x7, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0xa4000061)
ioctl$sock_SIOCSPGRP(r1, 0x8902, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r4, 0x1, 0x3c, &(0x7f00000002c0)=0x1, 0x4)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r5, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r5, 0x3)
setsockopt$bt_BT_SNDMTU(0xffffffffffffffff, 0x112, 0xc, &(0x7f0000000100)=0x8, 0x2)
setsockopt$inet_tcp_int(r4, 0x6, 0x22, &(0x7f0000000000)=0x1, 0x4)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f00000029c0)={0x0, 0x31000000, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x15\x00'}]}, 0x1c}}, 0x0)
r8 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000240), r7)
sendmsg$SEG6_CMD_SETHMAC(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r8, 0x1, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x48004)
sendmmsg$inet(r4, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000600)}}, {{0x0, 0x0, &(0x7f0000000800)=[{0x0}], 0x1}}], 0x2, 0x2400c042)
r9 = syz_clone(0x1222080, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r9, r9, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)

813.767884ms ago: executing program 5 (id=1687):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000110b0008850000000500000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sched_cls=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000000)="c1188e19b95d02ff4284860188a8", 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

644.074701ms ago: executing program 0 (id=1688):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x8410, &(0x7f0000000480)=ANY=[@ANYBLOB="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", @ANYRESHEX], 0xff, 0x2c3, &(0x7f00000000c0)="$eJzs3cGLG1UYAPBvsml21EMW8aIIDujB09L16mWjVBD3pERQDxrsFiQJhRYWXMHYU/EP8Oj/4R/gwYsX/wPBq+CtRSpPJjOzk62TbqkxBff3O3373vvefG8eZE/58tnL8+n1m1ncufdr5HkWvcM4jPtZ7EUvGt9EPwCA/4/7KcUf6Uky+73NVwMAbEP1/7/ytGsBALbjg48+fm90dHTt/aLI48Xh3ZNxFhHzuyfjan50I76IWRzH1RjGg4h0porfeffoWvSL0l68Nl+cjMvM+ac/1/uPfo9Y5h/EMPa68w+Kyln+s011RYxuXGn+GMYL3flvPJwf80WMB/H6qyv178cwfvk8bsYsrkeZ2+Z/fVAUb6fv7n31SfmYMj/rxXh3ua6VdrZ0JQAAAAAAAAAAAAAAAAAAAAAAXAL7RZFV7XuW/XvKofGyOc5458Fyfr9orPb3WTT9gbJmo6o/UIq6Rc8ixfdNf52rRVGkemGb34+X+n5YAAAAAAAAAAAAAAAAAAAAAEq3vzydTmaz41sbCZpuAM3X+p9snx9nhysjr8TpdLKzfsPdx3/WareBstbONU0Q/X5s6LVcFDxT1rPxnXfby/0wqqC5mI0+6/m3qk1Pp5Oinmpe8nSSXfSsvLm4H1anBtGx+PDCW86rMmaz40FdQTq3JvKzUs+nD9ZW2BzlUaf4s93nuc41f6WUHu9lvvlbdUf1SLZssbFm8bcppZWRK3XQecAyyP95Fz+tr2ftR8bOv/m8AQAAAAAAAAAAAAAAAAAA1mu/9NsxeeeRqb3/rCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2LL29/+bII+I8yPLYBDtyKJOfnhNRzCIW7ef8hEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4BP4OAAD//0pqRn0=")
r0 = open(&(0x7f0000000100)='./file1\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)

519.158537ms ago: executing program 0 (id=1689):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x3, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f00000000c0)={0x1, 0x0, [{0x40000097, 0x0, 0xe6335524}]})

215.05682ms ago: executing program 5 (id=1690):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000000)={'macvtap0\x00', {0x2, 0x4e23, @multicast1}})

178.865942ms ago: executing program 0 (id=1691):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
setsockopt$inet_int(r0, 0x0, 0x17, &(0x7f00000001c0)=0x5, 0x4)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x300)
setsockopt$inet_int(r0, 0x0, 0x14, &(0x7f0000000000)=0x1f5, 0x4)
getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, &(0x7f0000000300)=ANY=[@ANYBLOB="66696c7465720000000000000000000000000000000000000000000000000000fe000000ba1817fc0eb1"], 0x0)
recvmmsg(r0, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

0s ago: executing program 5 (id=1692):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000e00)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=r1}, &(0x7f0000000100)=<r2=>0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x7, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0xa4000061)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffff8, 0x0)
timer_gettime(r2, &(0x7f0000000180))

kernel console output (not intermixed with test programs):

 identity 4711
[   47.993601][ T1234] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   48.002283][ T1234] tipc: Disabling bearer <eth:syzkaller0>
[   48.114887][  T782] Bluetooth: hci0: command 0x1003 tx timeout
[   48.120970][  T404] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   48.192324][ T1241] netlink: 4 bytes leftover after parsing attributes in process `syz.3.311'.
[   48.306098][ T1251] loop3: detected capacity change from 0 to 128
[   48.346696][ T1251] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   48.374520][ T1251] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.429864][ T1258] netem: change failed
[   48.471105][  T285] EXT4-fs (loop3): unmounting filesystem.
[   48.824908][   T58] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   49.034919][   T58] usb 5-1: Using ep0 maxpacket: 32
[   49.041843][   T58] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[   49.051149][   T58] usb 5-1: config 0 has no interface number 0
[   49.057460][   T58] usb 5-1: config 0 interface 184 has no altsetting 0
[   49.068353][   T58] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[   49.077800][   T58] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   49.085959][   T58] usb 5-1: Product: syz
[   49.090245][   T58] usb 5-1: Manufacturer: syz
[   49.094997][   T58] usb 5-1: SerialNumber: syz
[   49.102135][   T58] usb 5-1: config 0 descriptor??
[   49.109544][   T58] smsc75xx v1.0.0
[   49.714061][   T58] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[   49.725142][   T58] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[   50.253297][ T1310] hub 2-0:1.0: USB hub found
[   50.261552][ T1310] hub 2-0:1.0: 1 port detected
[   50.335934][   T58] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -61
[   50.354599][   T58] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -61
[   50.371461][   T58] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -61
[   50.383433][   T58] smsc75xx: probe of 5-1:0.184 failed with error -61
[   50.391496][ T1326] netlink: 4 bytes leftover after parsing attributes in process `syz.1.347'.
[   50.483954][ T1342] tmpfs: Unsupported parameter 'mpol'
[   51.580918][ T1361] netlink: 28 bytes leftover after parsing attributes in process `syz.3.365'.
[   51.606330][   T58] usb 5-1: USB disconnect, device number 2
[   52.398881][   T28] kauditd_printk_skb: 139 callbacks suppressed
[   52.446462][   T28] audit: type=1326 audit(1765346147.663:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1383 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   52.678758][   T28] audit: type=1326 audit(1765346147.663:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1383 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   52.742480][   T28] audit: type=1326 audit(1765346147.663:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1383 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   52.746699][ T1393] netlink: 8 bytes leftover after parsing attributes in process `syz.3.378'.
[   52.765720][   T28] audit: type=1326 audit(1765346147.663:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1383 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   52.808952][   T28] audit: type=1326 audit(1765346147.663:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1383 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   52.832679][   T28] audit: type=1326 audit(1765346147.673:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1383 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   52.857798][   T28] audit: type=1326 audit(1765346147.673:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1383 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   52.881642][ T1393] device dummy0 entered promiscuous mode
[   52.887642][   T28] audit: type=1326 audit(1765346147.673:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1383 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   52.914401][   T28] audit: type=1326 audit(1765346147.693:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1387 comm="syz.2.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[   52.966817][   T28] audit: type=1326 audit(1765346147.703:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1387 comm="syz.2.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[   53.885614][  T344] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   54.107251][ T1436] netlink: 24 bytes leftover after parsing attributes in process `syz.3.395'.
[   54.166073][  T344] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[   54.175457][  T344] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   54.186053][  T344] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   54.200740][  T344] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   54.210137][  T344] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   54.219060][  T344] usb 5-1: Manufacturer: syz
[   54.231658][  T344] usb 5-1: config 0 descriptor??
[   54.306431][ T1466] loop3: detected capacity change from 0 to 1024
[   54.321066][ T1466] EXT4-fs: Ignoring removed oldalloc option
[   54.470888][ T1466] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[   54.496213][  T344] usb 5-1: USB disconnect, device number 3
[   54.637658][ T1471] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   54.700932][ T1479] netlink: 4 bytes leftover after parsing attributes in process `syz.3.413'.
[   54.793350][ T1491] loop3: detected capacity change from 0 to 2048
[   54.815322][ T1495] netlink: 8 bytes leftover after parsing attributes in process `syz.2.422'.
[   54.828037][ T1495] netlink: 4 bytes leftover after parsing attributes in process `syz.2.422'.
[   54.838212][ T1491] Alternate GPT is invalid, using primary GPT.
[   54.844781][ T1491]  loop3: p2 p3 p7
[   54.915438][  T338] udevd[338]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   54.931172][  T341] udevd[341]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   54.944019][  T648] udevd[648]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   55.399010][ T1522] syz.1.434[1522] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   55.399083][ T1522] syz.1.434[1522] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   55.501678][ T1526] loop1: detected capacity change from 0 to 1024
[   55.507218][ T1528] syz.4.436[1528] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   55.519770][ T1526] EXT4-fs: Ignoring removed oldalloc option
[   55.531640][ T1528] syz.4.436[1528] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   55.538127][ T1526] EXT4-fs: Ignoring removed bh option
[   55.572062][ T1526] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   55.622154][ T1526] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   55.692578][  T287] EXT4-fs (loop1): unmounting filesystem.
[   55.756528][ T1547] loop1: detected capacity change from 0 to 2048
[   56.310455][ T1547] Alternate GPT is invalid, using primary GPT.
[   56.320041][ T1547]  loop1: p2 p3 p7
[   56.379207][ T1562] device ip6erspan0 entered promiscuous mode
[   56.384295][  T338] udevd[338]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory
[   56.388191][  T341] udevd[341]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   56.398402][  T648] udevd[648]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   56.431908][ T1562] netlink: 4 bytes leftover after parsing attributes in process `syz.1.450'.
[   56.514925][ T1578] loop4: detected capacity change from 0 to 2048
[   56.546315][ T1578] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   56.599274][ T1586] loop1: detected capacity change from 0 to 1024
[   56.611789][ T1586] EXT4-fs: Ignoring removed orlov option
[   56.643030][ T1586] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   56.648418][ T1578] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   56.682939][ T1578] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1494 with error 28
[   56.714398][ T1578] EXT4-fs (loop4): This should not happen!! Data will be lost
[   56.714398][ T1578] 
[   56.725489][ T1578] EXT4-fs (loop4): Total free blocks count 0
[   56.731579][ T1578] EXT4-fs (loop4): Free/Dirty block details
[   56.737681][ T1578] EXT4-fs (loop4): free_blocks=2415919104
[   56.743480][ T1578] EXT4-fs (loop4): dirty_blocks=1504
[   56.748943][ T1578] EXT4-fs (loop4): Block reservation details
[   56.755301][ T1578] EXT4-fs (loop4): i_reserved_data_blocks=94
[   56.826653][  T286] EXT4-fs (loop4): unmounting filesystem.
[   56.875150][  T287] EXT4-fs (loop1): unmounting filesystem.
[   56.928361][ T1604] loop1: detected capacity change from 0 to 1024
[   56.950845][ T1604] EXT4-fs error (device loop1): ext4_acquire_dquot:6803: comm syz.1.464: Failed to acquire dquot type 0
[   56.962474][ T1604] EXT4-fs error (device loop1): mb_free_blocks:1810: group 0, inode 13: block 160:freeing already freed block (bit 10); block bitmap corrupt.
[   56.977817][ T1604] EXT4-fs (loop1): 1 truncate cleaned up
[   56.983666][ T1604] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   57.001872][  T287] EXT4-fs (loop1): unmounting filesystem.
[   57.245694][ T1634] netlink: 272 bytes leftover after parsing attributes in process `syz.3.478'.
[   57.572183][   T28] kauditd_printk_skb: 209 callbacks suppressed
[   57.572198][   T28] audit: type=1400 audit(1765346152.843:912): avc:  denied  { load_policy } for  pid=1640 comm="syz.2.481" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   57.590281][ T1641] SELinux: failed to load policy
[   57.727700][   T28] audit: type=1400 audit(1765346153.003:913): avc:  denied  { ioctl } for  pid=1647 comm="syz.0.484" path="socket:[19537]" dev="sockfs" ino=19537 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   57.831416][ T1658] loop4: detected capacity change from 0 to 8192
[   58.076142][ T1658]  loop4: p1 < > p2 < > p3 p4 < >
[   58.101441][ T1658] loop4: partition table partially beyond EOD, truncated
[   58.143391][ T1658] loop4: p1 start 67108864 is beyond EOD, truncated
[   58.237904][ T1658] loop4: p3 start 100859904 is beyond EOD, truncated
[   58.259888][   T28] audit: type=1326 audit(1765346153.533:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1663 comm="syz.1.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   58.334478][  T338] udevd[338]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   58.348246][   T28] audit: type=1326 audit(1765346153.533:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1663 comm="syz.1.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   58.380594][  T648] udevd[648]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   58.743385][   T28] audit: type=1326 audit(1765346153.533:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1663 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   58.780291][   T28] audit: type=1326 audit(1765346153.533:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1663 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   58.811941][   T28] audit: type=1326 audit(1765346153.533:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1663 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   58.836081][   T28] audit: type=1326 audit(1765346153.533:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1663 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   58.860967][   T28] audit: type=1326 audit(1765346153.563:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1663 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   58.896919][ T1681] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.899485][   T28] audit: type=1326 audit(1765346153.563:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1663 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   58.904252][ T1681] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.935252][ T1688] xt_hashlimit: max too large, truncated to 1048576
[   59.079491][ T1735] netlink: 20 bytes leftover after parsing attributes in process `syz.0.504'.
[   59.089558][ T1735] netlink: 4 bytes leftover after parsing attributes in process `syz.0.504'.
[   59.104060][ T1737] loop2: detected capacity change from 0 to 128
[   59.141569][ T1737] device veth0 entered promiscuous mode
[   59.173322][ T1737] FAT-fs (loop2): error, invalid access to FAT (entry 0x0fff0000)
[   59.201279][ T1737] FAT-fs (loop2): Filesystem has been set read-only
[   59.824024][ T1780] loop3: detected capacity change from 0 to 8192
[   59.866151][ T1780]  loop3: p1 < > p2 < > p3 p4 < >
[   59.867755][ T1783] loop4: detected capacity change from 0 to 1024
[   59.871474][ T1780] loop3: partition table partially beyond EOD, truncated
[   59.883001][ T1783] EXT4-fs: Ignoring removed orlov option
[   59.885340][ T1780] loop3: p1 start 67108864 is beyond EOD, truncated
[   59.898197][ T1780] loop3: p3 start 100859904 is beyond EOD, truncated
[   59.955882][ T1783] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e800c018, mo2=0002]
[   59.972182][ T1737] ÿ: attempt to access beyond end of device
[   59.972182][ T1737] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128
[   59.983244][ T1783] System zones: 0-1, 3-12
[   59.990061][ T1737] Buffer I/O error on dev loop2, logical block 128, lost async page write
[   60.005071][ T1783] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   60.023549][ T1737] device veth0 left promiscuous mode
[   60.047071][  T286] EXT4-fs (loop4): unmounting filesystem.
[   60.155013][  T341] udevd[341]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   60.156236][  T648] udevd[648]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   61.658523][ T1865] netlink: 4 bytes leftover after parsing attributes in process `syz.3.553'.
[   61.669607][ T1865] netlink: 4 bytes leftover after parsing attributes in process `syz.3.553'.
[   61.694468][  T451] tipc: Subscription rejected, illegal request
[   62.217565][ T1893] mmap: syz.3.562 (1893) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   62.497949][ T1900] netlink: 4 bytes leftover after parsing attributes in process `syz.0.565'.
[   62.499229][ T1898] loop3: detected capacity change from 0 to 512
[   62.517201][ T1900] netlink: 4 bytes leftover after parsing attributes in process `syz.0.565'.
[   62.532821][ T1898] ------------[ cut here ]------------
[   62.538481][ T1898] EA inode 11 i_nlink=2
[   62.539479][ T1898] WARNING: CPU: 0 PID: 1898 at fs/ext4/xattr.c:1022 ext4_xattr_inode_update_ref+0x4ad/0x510
[   62.553968][ T1898] Modules linked in:
[   62.557946][ T1898] CPU: 0 PID: 1898 Comm: syz.3.562 Not tainted syzkaller #0
[   62.565290][ T1898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   62.575412][ T1898] RIP: 0010:ext4_xattr_inode_update_ref+0x4ad/0x510
[   62.582130][ T1898] Code: 8d 7d 40 4c 89 f8 48 c1 e8 03 42 80 3c 30 00 74 08 4c 89 ff e8 a4 17 bb ff 49 8b 37 48 c7 c7 00 e9 94 85 89 da e8 d3 d1 47 ff <0f> 0b 4c 8b 6c 24 10 4c 8b 7c 24 08 4c 8d 64 24 60 e9 b4 fe ff ff
[   62.601837][ T1898] RSP: 0018:ffffc9000e9cf080 EFLAGS: 00010246
[   62.608043][ T1898] RAX: a5061905ec622500 RBX: 0000000000000002 RCX: 0000000000080000
[   62.616148][ T1898] RDX: ffffc90004616000 RSI: 000000000000690b RDI: 000000000000690c
[   62.624249][ T1898] RBP: ffffc9000e9cf170 R08: dffffc0000000000 R09: ffffed103ee04eb4
[   62.632297][ T1898] R10: ffffed103ee04eb4 R11: 1ffff1103ee04eb3 R12: ffffc9000e9cf0e0
[   62.640323][ T1898] R13: ffff888132b6d730 R14: dffffc0000000000 R15: ffff888132b6d770
[   62.648363][ T1898] FS:  00007f8fc54816c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   62.657436][ T1898] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   62.664125][ T1898] CR2: 0000000000000000 CR3: 000000010f836000 CR4: 00000000003506b0
[   62.672149][ T1898] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   62.680435][ T1898] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   62.688456][ T1898] Call Trace:
[   62.691970][ T1898]  <TASK>
[   62.694937][ T1898]  ? ext4_xattr_block_csum+0x500/0x500
[   62.700567][ T1898]  ? __kasan_check_write+0x14/0x20
[   62.705737][ T1898]  ? ext4_xattr_inode_iget+0x266/0x350
[   62.711330][ T1898]  ext4_xattr_set_entry+0xc6d/0x21d0
[   62.716863][ T1898]  ext4_xattr_ibody_set+0x24e/0x6c0
[   62.722101][ T1898]  ext4_expand_extra_isize_ea+0xf7b/0x1990
[   62.728012][ T1898]  __ext4_expand_extra_isize+0x2fe/0x3e0
[   62.733704][ T1898]  __ext4_mark_inode_dirty+0x3cf/0x600
[   62.739216][ T1898]  ext4_evict_inode+0xc0b/0x1460
[   62.744190][ T1898]  ? _raw_spin_unlock+0x4c/0x70
[   62.749097][ T1898]  ? __cfi_ext4_evict_inode+0x10/0x10
[   62.754501][ T1898]  ? unlock_new_inode+0x97/0xc0
[   62.759387][ T1898]  ? __cfi_ext4_evict_inode+0x10/0x10
[   62.764841][ T1898]  evict+0x493/0x890
[   62.768765][ T1898]  ? proc_nr_inodes+0x2f0/0x2f0
[   62.773628][ T1898]  ? __kasan_check_write+0x14/0x20
[   62.778778][ T1898]  iput+0x620/0x670
[   62.782618][ T1898]  ext4_process_orphan+0x2b1/0x320
[   62.787766][ T1898]  ext4_orphan_cleanup+0xb02/0x1210
[   62.792997][ T1898]  ? proc_register+0x546/0x720
[   62.797820][ T1898]  ? __cfi_ext4_orphan_cleanup+0x10/0x10
[   62.803489][ T1898]  ? ext4_register_sysfs+0x285/0x2c0
[   62.808896][ T1898]  ? errseq_check_and_advance+0x66/0x130
[   62.815050][ T1898]  ext4_fill_super+0x7439/0x7970
[   62.820015][ T1898]  ? __cfi_ext4_fill_super+0x10/0x10
[   62.825352][ T1898]  ? snprintf+0xd7/0x120
[   62.829635][ T1898]  ? set_blocksize+0x1df/0x360
[   62.834506][ T1898]  ? sb_set_blocksize+0xaa/0xf0
[   62.839713][ T1898]  get_tree_bdev+0x444/0x680
[   62.844365][ T1898]  ? __cfi_ext4_fill_super+0x10/0x10
[   62.849784][ T1898]  ext4_get_tree+0x1c/0x20
[   62.854320][ T1898]  vfs_get_tree+0x9a/0x270
[   62.858790][ T1898]  do_new_mount+0x25a/0xa20
[   62.863380][ T1898]  path_mount+0x675/0x1010
[   62.867857][ T1898]  ? user_path_at_empty+0x161/0x1c0
[   62.873092][ T1898]  __se_sys_mount+0x318/0x380
[   62.877822][ T1898]  ? do_mkdirat+0x459/0x4c0
[   62.882362][ T1898]  ? __x64_sys_mount+0xd0/0xd0
[   62.887177][ T1898]  ? do_user_addr_fault+0x9ac/0x1050
[   62.892514][ T1898]  __x64_sys_mount+0xbf/0xd0
[   62.897254][ T1898]  x64_sys_call+0x65d/0x9a0
[   62.901793][ T1898]  do_syscall_64+0x4c/0xa0
[   62.906271][ T1898]  ? clear_bhb_loop+0x30/0x80
[   62.911014][ T1898]  ? clear_bhb_loop+0x30/0x80
[   62.915740][ T1898]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   62.921673][ T1898] RIP: 0033:0x7f8fc4590eea
[   62.926144][ T1898] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.946170][ T1898] RSP: 002b:00007f8fc5480e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   62.954721][ T1898] RAX: ffffffffffffffda RBX: 00007f8fc5480ef0 RCX: 00007f8fc4590eea
[   62.962766][ T1898] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f8fc5480eb0
[   62.970905][ T1898] RBP: 0000200000000180 R08: 00007f8fc5480ef0 R09: 0000000000800718
[   62.979030][ T1898] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[   62.987052][ T1898] R13: 00007f8fc5480eb0 R14: 000000000000046f R15: 0000200000000200
[   62.995165][ T1898]  </TASK>
[   62.998203][ T1898] ---[ end trace 0000000000000000 ]---
[   63.010246][ T1898] EXT4-fs (loop3): 1 orphan inode deleted
[   63.025325][ T1898] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   63.087044][   T28] kauditd_printk_skb: 530 callbacks suppressed
[   63.087059][   T28] audit: type=1400 audit(1765346158.363:1452): avc:  denied  { mounton } for  pid=1915 comm="syz.1.572" path="/119/bus" dev="tmpfs" ino=643 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   63.087523][ T1916] 9pnet: Could not find request transport: rdma
[   63.115719][  T285] EXT4-fs (loop3): unmounting filesystem.
[   63.451446][ T1924] loop3: detected capacity change from 0 to 1024
[   63.481480][ T1924] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   63.498303][   T28] audit: type=1326 audit(1765346158.773:1453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1929 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[   63.523669][   T28] audit: type=1326 audit(1765346158.773:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1929 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[   63.546014][ T1924] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   63.549070][   T28] audit: type=1326 audit(1765346158.773:1455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1929 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[   63.580565][   T28] audit: type=1326 audit(1765346158.773:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1929 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[   63.582867][  T285] EXT4-fs (loop3): unmounting filesystem.
[   63.605551][   T28] audit: type=1326 audit(1765346158.773:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1929 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[   63.633518][   T28] audit: type=1326 audit(1765346158.773:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1929 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[   63.657178][   T28] audit: type=1326 audit(1765346158.773:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1929 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[   63.674306][ T1935] netlink: 4 bytes leftover after parsing attributes in process `syz.3.579'.
[   63.689736][   T28] audit: type=1326 audit(1765346158.773:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1929 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[   63.713653][   T28] audit: type=1326 audit(1765346158.773:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1929 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[   63.716933][ T1935] netlink: 4 bytes leftover after parsing attributes in process `syz.3.579'.
[   64.744119][  T404] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   64.962289][ T1947] netlink: 232 bytes leftover after parsing attributes in process `syz.3.584'.
[   65.021426][ T1951] loop1: detected capacity change from 0 to 8192
[   65.027622][ T1960] netlink: 4 bytes leftover after parsing attributes in process `syz.2.590'.
[   65.038140][ T1960] netlink: 4 bytes leftover after parsing attributes in process `syz.2.590'.
[   65.130861][ T1965] loop3: detected capacity change from 0 to 2048
[   65.189585][ T1965] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   65.501804][ T1976] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   65.575811][ T1976] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 178 with error 28
[   65.594211][ T1976] EXT4-fs (loop3): This should not happen!! Data will be lost
[   65.594211][ T1976] 
[   65.604358][ T1976] EXT4-fs (loop3): Total free blocks count 0
[   65.610622][ T1976] EXT4-fs (loop3): Free/Dirty block details
[   65.617038][ T1976] EXT4-fs (loop3): free_blocks=2415919104
[   65.622867][ T1976] EXT4-fs (loop3): dirty_blocks=192
[   65.628451][ T1976] EXT4-fs (loop3): Block reservation details
[   65.634518][ T1976] EXT4-fs (loop3): i_reserved_data_blocks=12
[   65.645855][ T1980] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[   66.110366][ T1992] netlink: 4 bytes leftover after parsing attributes in process `syz.2.602'.
[   66.126819][ T1992] netlink: 4 bytes leftover after parsing attributes in process `syz.2.602'.
[   66.154000][ T2001] loop2: detected capacity change from 0 to 512
[   66.175414][ T2001] EXT4-fs: Ignoring removed orlov option
[   66.225183][ T2001] EXT4-fs: Ignoring removed i_version option
[   66.817177][  T438] Bluetooth: hci0: Frame reassembly failed (-84)
[   66.827188][ T2001] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.853687][ T2001] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   66.861888][ T2001] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e118, mo2=0002]
[   66.871381][ T2001] EXT4-fs (loop2): orphan cleanup on readonly fs
[   66.877973][ T2001] EXT4-fs warning (device loop2): ext4_enable_quotas:7055: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   66.892902][ T2001] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   66.901097][ T2001] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.605: bg 0: block 40: padding at end of block bitmap is not set
[   66.915567][ T2001] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6165: Corrupt filesystem
[   67.082200][ T2001] EXT4-fs (loop2): 1 truncate cleaned up
[   67.106138][ T2001] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   67.296884][ T2001] EXT4-fs (loop2): shut down requested (1)
[   67.303100][ T2001] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=16
[   67.312396][ T2001] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=16
[   67.329494][  T288] EXT4-fs (loop2): unmounting filesystem.
[   67.731238][ T2027] loop2: detected capacity change from 0 to 8192
[   68.809422][ T2070] Driver unsupported XDP return value 0 on prog  (id 317) dev N/A, expect packet loss!
[   68.834848][  T404] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   68.834915][  T782] Bluetooth: hci0: command 0x1003 tx timeout
[   68.897293][ T2075] xt_CT: You must specify a L4 protocol and not use inversions on it
[   68.939117][   T28] kauditd_printk_skb: 274 callbacks suppressed
[   68.939132][   T28] audit: type=1400 audit(1765346164.213:1735): avc:  denied  { write } for  pid=2076 comm="syz.2.635" name="rtc0" dev="devtmpfs" ino=263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   69.602063][   T28] audit: type=1400 audit(1765346164.873:1736): avc:  denied  { map } for  pid=2089 comm="syz.3.641" path="socket:[20032]" dev="sockfs" ino=20032 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[   69.642820][   T28] audit: type=1400 audit(1765346164.913:1737): avc:  denied  { listen } for  pid=2089 comm="syz.3.641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   69.663513][   T28] audit: type=1400 audit(1765346164.933:1738): avc:  denied  { accept } for  pid=2089 comm="syz.3.641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   69.710298][ T2095] loop4: detected capacity change from 0 to 1024
[   69.719078][ T2095] EXT4-fs: Ignoring removed bh option
[   69.731163][ T2095] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   69.753868][   T28] audit: type=1326 audit(1765346165.023:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2097 comm="syz.1.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   69.784627][   T28] audit: type=1326 audit(1765346165.053:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2097 comm="syz.1.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   69.820408][   T28] audit: type=1326 audit(1765346165.053:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2097 comm="syz.1.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   69.857762][   T28] audit: type=1326 audit(1765346165.053:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2097 comm="syz.1.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   69.888610][   T28] audit: type=1326 audit(1765346165.053:1743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2097 comm="syz.1.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   69.926419][ T2106] netlink: 4 bytes leftover after parsing attributes in process `syz.0.646'.
[   69.943213][   T28] audit: type=1326 audit(1765346165.053:1744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2097 comm="syz.1.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[   69.995324][ T2095] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   70.088752][ T2094] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3836: comm syz.4.642: Allocating blocks 385-513 which overlap fs metadata
[   70.156634][ T2093] EXT4-fs (loop4): pa ffff8881190dbe70: logic 16, phys. 129, len 24
[   70.164753][ T2093] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 8
[   70.177508][ T2120] loop2: detected capacity change from 0 to 1024
[   70.219769][ T2120] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   70.302680][ T2120] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   70.341797][ T2120] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.652: Allocating blocks 385-513 which overlap fs metadata
[   70.406360][  T286] EXT4-fs (loop4): unmounting filesystem.
[   70.417302][ T2120] EXT4-fs (loop2): pa ffff8881190dba80: logic 16, phys. 129, len 24
[   70.425526][ T2120] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 8
[   70.518024][  T288] EXT4-fs (loop2): unmounting filesystem.
[   70.601524][ T2134] loop4: detected capacity change from 0 to 128
[   70.613685][ T2134] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   70.624267][ T2134] ext4 filesystem being mounted at /110/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   70.644985][  T286] EXT4-fs (loop4): unmounting filesystem.
[   70.696819][ T2153] capability: warning: `syz.0.665' uses deprecated v2 capabilities in a way that may be insecure
[   71.811942][ T2162] netlink: 8 bytes leftover after parsing attributes in process `syz.1.668'.
[   71.824972][ T2162] netlink: 76 bytes leftover after parsing attributes in process `syz.1.668'.
[   71.844982][ T2168] 9pnet: Could not find request transport: rdma
[   71.857228][ T2162] device bridge3 entered promiscuous mode
[   71.909332][ T2172] loop4: detected capacity change from 0 to 1024
[   71.922850][ T2177] loop2: detected capacity change from 0 to 512
[   71.931273][ T2172] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   71.952978][ T2172] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   71.969565][ T2177] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   71.984259][ T2151] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3836: comm syz.4.664: Allocating blocks 385-513 which overlap fs metadata
[   72.002467][ T2151] EXT4-fs (loop4): pa ffff8881190db150: logic 16, phys. 129, len 24
[   72.010609][ T2151] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 8
[   72.108985][  T286] EXT4-fs (loop4): unmounting filesystem.
[   72.764995][ T2300] loop1: detected capacity change from 0 to 1024
[   72.775262][ T2300] EXT4-fs: Ignoring removed orlov option
[   72.822588][ T2300] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e800c018, mo2=0002]
[   72.831160][ T2300] System zones: 0-1, 3-12
[   72.836981][ T2300] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   72.868433][  T287] EXT4-fs (loop1): unmounting filesystem.
[   73.010731][ T2318] loop4: detected capacity change from 0 to 128
[   73.031924][ T2321] loop3: detected capacity change from 0 to 512
[   73.049722][ T2321] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   73.061032][ T2321] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   73.099052][ T2321] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3836: comm syz.3.688: Allocating blocks 41-42 which overlap fs metadata
[   73.113637][ T2321] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3836: comm syz.3.688: Allocating blocks 41-42 which overlap fs metadata
[   73.131985][ T2321] EXT4-fs error (device loop3): ext4_acquire_dquot:6803: comm syz.3.688: Failed to acquire dquot type 1
[   73.143713][ T2321] EXT4-fs error (device loop3): mb_free_blocks:1810: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[   73.158659][ T2321] EXT4-fs error (device loop3): ext4_do_update_inode:5270: inode #12: comm syz.3.688: corrupted inode contents
[   73.174491][ T2321] EXT4-fs error (device loop3): ext4_dirty_inode:6135: inode #12: comm syz.3.688: mark_inode_dirty error
[   73.188143][ T2321] EXT4-fs error (device loop3): ext4_do_update_inode:5270: inode #12: comm syz.3.688: corrupted inode contents
[   73.193018][ T2337] loop4: detected capacity change from 0 to 512
[   73.200764][ T2321] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #12: comm syz.3.688: mark_inode_dirty error
[   73.219093][ T2321] EXT4-fs error (device loop3): ext4_do_update_inode:5270: inode #12: comm syz.3.688: corrupted inode contents
[   73.231282][ T2321] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem
[   73.243271][ T2321] EXT4-fs error (device loop3): ext4_do_update_inode:5270: inode #12: comm syz.3.688: corrupted inode contents
[   73.255752][ T2321] EXT4-fs error (device loop3): ext4_truncate:4320: inode #12: comm syz.3.688: mark_inode_dirty error
[   73.257442][ T2337] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   73.271544][ T2321] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem
[   73.278720][ T2337] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.695: bg 0: block 104: invalid block bitmap
[   73.284568][ T2321] EXT4-fs (loop3): 1 truncate cleaned up
[   73.297785][ T2337] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6165: Corrupt filesystem
[   73.302201][ T2321] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   73.311351][ T2337] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.695: invalid indirect mapped block 1 (level 1)
[   73.335757][ T2337] EXT4-fs (loop4): 1 truncate cleaned up
[   73.341693][ T2337] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   73.764561][ T2321] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3836: comm syz.3.688: Allocating blocks 41-42 which overlap fs metadata
[   73.778872][ T2321] EXT4-fs error (device loop3): ext4_acquire_dquot:6803: comm syz.3.688: Failed to acquire dquot type 1
[   73.779296][  T286] EXT4-fs (loop4): unmounting filesystem.
[   73.809733][  T285] EXT4-fs (loop3): unmounting filesystem.
[   74.041466][ T2361] loop4: detected capacity change from 0 to 128
[   74.065283][   T28] kauditd_printk_skb: 201 callbacks suppressed
[   74.065397][   T28] audit: type=1326 audit(1765346169.293:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2352 comm="syz.2.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[   74.313705][   T28] audit: type=1326 audit(1765346169.293:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2352 comm="syz.2.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[   74.338725][   T28] audit: type=1326 audit(1765346169.293:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2352 comm="syz.2.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[   74.372089][   T28] audit: type=1326 audit(1765346169.303:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2352 comm="syz.2.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[   74.395717][   T28] audit: type=1326 audit(1765346169.303:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2352 comm="syz.2.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[   74.419435][   T28] audit: type=1326 audit(1765346169.303:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2352 comm="syz.2.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[   74.422300][ T2376] loop4: detected capacity change from 0 to 128
[   74.443356][   T28] audit: type=1326 audit(1765346169.303:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2352 comm="syz.2.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[   74.479939][   T28] audit: type=1326 audit(1765346169.303:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2352 comm="syz.2.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[   74.601612][   T28] audit: type=1326 audit(1765346169.873:1948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2383 comm="syz.0.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[   74.631343][   T28] audit: type=1326 audit(1765346169.873:1949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2383 comm="syz.0.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[   74.745336][ T2400] loop4: detected capacity change from 0 to 128
[   75.317741][ T2410] loop1: detected capacity change from 0 to 1024
[   75.327905][ T2410] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   75.342350][ T2410] EXT4-fs (loop1): orphan cleanup on readonly fs
[   75.350260][ T2410] EXT4-fs warning (device loop1): ext4_enable_quotas:7055: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   75.378262][ T2410] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   75.386165][ T2410] EXT4-fs error (device loop1): ext4_free_blocks:6205: comm syz.1.725: Freeing blocks not in datazone - block = 0, count = 4096
[   75.393153][ T2413] netlink: 16 bytes leftover after parsing attributes in process `syz.3.726'.
[   75.400490][ T2410] EXT4-fs (loop1): 1 orphan inode deleted
[   75.413515][ T2413] netlink: 4 bytes leftover after parsing attributes in process `syz.3.726'.
[   75.415410][ T2410] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   75.493616][  T287] EXT4-fs (loop1): unmounting filesystem.
[   75.630696][ T2436] loop2: detected capacity change from 0 to 1024
[   75.639027][ T2436] journal_path: Lookup failure for './file1'
[   75.645283][ T2436] EXT4-fs: error: could not find journal device path
[   76.030374][ T2446] loop2: detected capacity change from 0 to 1024
[   76.049668][ T2446] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   76.062987][ T2446] EXT4-fs (loop2): orphan cleanup on readonly fs
[   76.071400][ T2446] EXT4-fs warning (device loop2): ext4_enable_quotas:7055: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   76.086277][ T2446] EXT4-fs (loop2): Cannot turn on quotas: error -117
[   76.093181][ T2446] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz.2.739: Freeing blocks not in datazone - block = 0, count = 4096
[   76.108798][ T2446] EXT4-fs (loop2): 1 orphan inode deleted
[   76.114716][ T2446] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   76.138901][  T288] EXT4-fs (loop2): unmounting filesystem.
[   76.379100][ T2470] process 'syz.4.750' launched '/dev/fd/7' with NULL argv: empty string added
[   76.499461][ T2483] tmpfs: Unsupported parameter 'mpol'
[   76.518496][ T2485] IPv6: addrconf: prefix option has invalid lifetime
[   76.530324][ T2487] netlink: 20 bytes leftover after parsing attributes in process `syz.4.757'.
[   76.549463][ T2487] netlink: 4 bytes leftover after parsing attributes in process `syz.4.757'.
[   76.634079][ T2505] @: renamed from vlan0
[   77.297699][ T2536] netlink: 12 bytes leftover after parsing attributes in process `syz.3.779'.
[   77.604906][  T572] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   77.769717][ T2565] loop4: detected capacity change from 0 to 1024
[   77.779425][ T2565] journal_path: Lookup failure for './file1'
[   77.785753][ T2565] EXT4-fs: error: could not find journal device path
[   77.795055][  T572] usb 4-1: Using ep0 maxpacket: 32
[   77.801347][  T572] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[   77.809959][  T572] usb 4-1: config 0 has no interface number 0
[   77.817082][  T572] usb 4-1: config 0 interface 184 has no altsetting 0
[   77.827089][  T572] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[   77.836360][  T572] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   77.844426][  T572] usb 4-1: Product: syz
[   77.848919][  T572] usb 4-1: Manufacturer: syz
[   77.853604][  T572] usb 4-1: SerialNumber: syz
[   77.860675][  T572] usb 4-1: config 0 descriptor??
[   77.866763][  T572] smsc75xx v1.0.0
[   78.048048][ T2570] loop4: detected capacity change from 0 to 1024
[   78.056628][ T2570] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   78.079255][ T2570] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   78.090696][ T2570] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3836: comm syz.4.792: Allocating blocks 385-513 which overlap fs metadata
[   78.108147][ T2570] EXT4-fs (loop4): pa ffff8881191683f0: logic 16, phys. 129, len 24
[   78.116354][ T2570] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 8
[   78.164243][ T2576] device veth2 entered promiscuous mode
[   78.174293][  T286] EXT4-fs (loop4): unmounting filesystem.
[   78.213842][ T2580] loop2: detected capacity change from 0 to 1024
[   78.226719][ T2580] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   78.280081][ T2580] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   78.307916][  T288] EXT4-fs (loop2): unmounting filesystem.
[   78.323837][ T2592] loop1: detected capacity change from 0 to 512
[   78.352422][ T2592] EXT4-fs: Ignoring removed oldalloc option
[   78.366825][ T2592] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   78.431639][  T287] EXT4-fs (loop1): unmounting filesystem.
[   78.495212][  T572] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[   78.513223][  T572] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[   78.556006][ T2617] loop1: detected capacity change from 0 to 512
[   78.563795][ T2617] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   78.581431][ T2617] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #16: comm syz.1.809: invalid indirect mapped block 4294967295 (level 0)
[   78.595778][ T2617] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #16: comm syz.1.809: invalid indirect mapped block 4294967295 (level 1)
[   78.617502][ T2617] EXT4-fs (loop1): 1 orphan inode deleted
[   78.623313][ T2617] EXT4-fs (loop1): 1 truncate cleaned up
[   78.629206][ T2617] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   78.653089][  T287] EXT4-fs (loop1): unmounting filesystem.
[   78.683669][ T2630] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   78.849626][ T2639] netlink: 4 bytes leftover after parsing attributes in process `syz.1.819'.
[   78.862771][ T2639] netlink: 4 bytes leftover after parsing attributes in process `syz.1.819'.
[   78.986345][ T2643] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   79.013032][ T2645] device veth2 entered promiscuous mode
[   79.087488][   T28] kauditd_printk_skb: 712 callbacks suppressed
[   79.087504][   T28] audit: type=1400 audit(1765346174.363:2660): avc:  denied  { module_request } for  pid=2652 comm="syz.1.826" kmod="act_tunnel_key" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   79.116405][   T28] audit: type=1400 audit(1765346174.393:2661): avc:  denied  { execute } for  pid=2654 comm="syz.1.827" name="file1" dev="tmpfs" ino=900 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   79.139215][   T28] audit: type=1400 audit(1765346174.393:2662): avc:  denied  { execute_no_trans } for  pid=2654 comm="syz.1.827" path="/168/file1" dev="tmpfs" ino=900 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   79.262787][ T2660] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   79.303050][   T28] audit: type=1400 audit(1765346174.573:2663): avc:  denied  { create } for  pid=2663 comm="syz.1.829" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   79.342527][   T28] audit: type=1400 audit(1765346174.603:2664): avc:  denied  { write } for  pid=2663 comm="syz.1.829" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   79.380885][   T28] audit: type=1400 audit(1765346174.653:2665): avc:  denied  { read write } for  pid=288 comm="syz-executor" name="loop2" dev="devtmpfs" ino=120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   79.414026][   T28] audit: type=1400 audit(1765346174.653:2666): avc:  denied  { read write } for  pid=287 comm="syz-executor" name="loop1" dev="devtmpfs" ino=119 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   79.439713][   T28] audit: type=1400 audit(1765346174.653:2667): avc:  denied  { open } for  pid=288 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   79.465690][   T28] audit: type=1400 audit(1765346174.653:2668): avc:  denied  { ioctl } for  pid=288 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=120 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   79.491798][   T28] audit: type=1400 audit(1765346174.713:2669): avc:  denied  { create } for  pid=2679 comm="syz.1.838" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   79.778976][  T572] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[   79.789917][  T572] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -32
[   79.799647][  T572] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -32
[   79.809170][  T572] smsc75xx: probe of 4-1:0.184 failed with error -32
[   80.292298][ T2706] netlink: 4 bytes leftover after parsing attributes in process `syz.0.858'.
[   80.302256][ T2707] loop2: detected capacity change from 0 to 512
[   80.306174][ T2706] netlink: 4 bytes leftover after parsing attributes in process `syz.0.858'.
[   80.320011][ T2707] EXT4-fs: Ignoring removed oldalloc option
[   80.329216][ T2707] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   80.356617][  T288] EXT4-fs (loop2): unmounting filesystem.
[   80.789945][  T344] usb 4-1: USB disconnect, device number 2
[   81.064879][ T2768] serio: Serial port ptm0
[   81.434439][ T2783] loop1: detected capacity change from 0 to 2048
[   81.478523][ T2783] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   81.558367][ T2783] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   81.573744][ T2783] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1822 with error 28
[   81.586725][ T2783] EXT4-fs (loop1): This should not happen!! Data will be lost
[   81.586725][ T2783] 
[   81.596580][ T2783] EXT4-fs (loop1): Total free blocks count 0
[   81.603736][ T2783] EXT4-fs (loop1): Free/Dirty block details
[   81.609992][ T2783] EXT4-fs (loop1): free_blocks=2415919104
[   81.616046][ T2783] EXT4-fs (loop1): dirty_blocks=1824
[   81.621493][ T2783] EXT4-fs (loop1): Block reservation details
[   81.627674][ T2783] EXT4-fs (loop1): i_reserved_data_blocks=114
[   81.659965][  T460] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[   81.847058][   T19] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   81.857768][   T19] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   81.871386][ T2830] loop3: detected capacity change from 0 to 2048
[   81.907527][  T341] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   81.942358][ T2833] fido_id[2833]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   81.989785][ T2839] netlink: 4 bytes leftover after parsing attributes in process `syz.3.896'.
[   82.004449][ T2839] netlink: 4 bytes leftover after parsing attributes in process `syz.3.896'.
[   82.561944][ T2878] netlink: 8 bytes leftover after parsing attributes in process `syz.0.914'.
[   82.606743][ T2884] netlink: 12 bytes leftover after parsing attributes in process `syz.1.917'.
[   82.620757][ T2884] netlink: 40 bytes leftover after parsing attributes in process `syz.1.917'.
[   82.631664][ T2884] netlink: 40 bytes leftover after parsing attributes in process `syz.1.917'.
[   82.684042][ T2894] netlink: 300 bytes leftover after parsing attributes in process `syz.4.923'.
[   82.714000][ T2898] netlink: 4 bytes leftover after parsing attributes in process `syz.1.925'.
[   82.723298][ T2898] netlink: 12 bytes leftover after parsing attributes in process `syz.1.925'.
[   82.780430][ T2904] loop1: detected capacity change from 0 to 128
[   82.800167][ T2906] loop4: detected capacity change from 0 to 1024
[   82.831542][ T2906] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   82.853276][ T2906] EXT4-fs error (device loop4): ext4_get_journal_inode:5724: inode #32: comm syz.4.928: iget: special inode unallocated
[   82.878490][ T2906] EXT4-fs (loop4): no journal found
[   82.883895][ T2906] EXT4-fs (loop4): can't get journal size
[   82.896669][ T2906] EXT4-fs (loop4): filesystem is read-only
[   82.908014][ T2906] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   82.928136][ T2921] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   82.971622][  T286] EXT4-fs (loop4): unmounting filesystem.
[   84.127655][ T3083] loop1: detected capacity change from 0 to 128
[   84.139321][ T3083] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   84.148137][ T3083] ext4 filesystem being mounted at /195/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   84.191799][  T287] EXT4-fs (loop1): unmounting filesystem.
[   84.246087][   T28] kauditd_printk_skb: 317 callbacks suppressed
[   84.246105][   T28] audit: type=1326 audit(1765346179.523:2987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3088 comm="syz.3.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   84.254046][ T3090] serio: Serial port ptm0
[   84.284019][   T28] audit: type=1326 audit(1765346179.523:2988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3088 comm="syz.3.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   84.353754][   T28] audit: type=1326 audit(1765346179.553:2989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3088 comm="syz.3.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   84.433982][   T28] audit: type=1326 audit(1765346179.553:2990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3088 comm="syz.3.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   84.514197][   T28] audit: type=1326 audit(1765346179.553:2991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3088 comm="syz.3.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   84.542757][   T28] audit: type=1326 audit(1765346179.553:2992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3088 comm="syz.3.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   84.571923][   T28] audit: type=1326 audit(1765346179.553:2993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3088 comm="syz.3.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   84.597084][   T28] audit: type=1326 audit(1765346179.553:2994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3088 comm="syz.3.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   84.622372][   T28] audit: type=1326 audit(1765346179.553:2995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3088 comm="syz.3.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   84.664302][   T28] audit: type=1326 audit(1765346179.553:2996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3088 comm="syz.3.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   85.067622][ T3120] SELinux: ebitmap: truncated map
[   85.114676][ T3120] SELinux: failed to load policy
[   85.194765][ T3123] netlink: 'syz.3.984': attribute type 1 has an invalid length.
[   85.281083][ T3124] loop4: detected capacity change from 0 to 8192
[   85.400233][ T3138] loop4: detected capacity change from 0 to 1024
[   85.409486][ T3138] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   85.460117][ T3138] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   85.516565][  T286] EXT4-fs (loop4): unmounting filesystem.
[   86.037232][ T3193] xt_CT: No such helper "pptp"
[   86.240908][ T3198] loop3: detected capacity change from 0 to 1024
[   86.299048][ T3198] EXT4-fs: Ignoring removed oldalloc option
[   86.343210][ T3198] EXT4-fs: Ignoring removed bh option
[   86.386446][ T3198] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   86.462560][ T3198] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   86.749890][  T285] EXT4-fs (loop3): unmounting filesystem.
[   87.056097][ T3217] SELinux: ebitmap: truncated map
[   87.066972][ T3217] SELinux: failed to load policy
[   87.571068][ T3252] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1039'.
[   87.577906][ T3253] xt_CT: No such helper "pptp"
[   87.788197][ T3255] device veth4 entered promiscuous mode
[   88.406060][ T3265] SELinux: ebitmap: truncated map
[   88.440470][ T3277] loop4: detected capacity change from 0 to 1024
[   88.450478][ T3265] SELinux: failed to load policy
[   88.452553][ T3281] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1051'.
[   88.477515][ T3277] EXT4-fs: Ignoring removed oldalloc option
[   88.494299][ T3277] EXT4-fs: Ignoring removed bh option
[   88.503894][ T3277] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   88.520665][ T3281] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1051'.
[   88.520765][ T3288] syz.2.1055[3288] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.530840][ T3288] syz.2.1055[3288] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.546397][ T3288] loop2: detected capacity change from 0 to 512
[   88.548824][ T3277] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   88.559978][ T3288] EXT4-fs: Ignoring removed i_version option
[   88.590739][ T3288] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   88.594430][  T286] EXT4-fs (loop4): unmounting filesystem.
[   88.650463][  T288] EXT4-fs (loop2): unmounting filesystem.
[   88.719453][ T3308] tipc: New replicast peer: 255.255.255.255
[   88.726275][ T3308] tipc: Enabled bearer <udp:syz2>, priority 10
[   88.765080][   T58] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   88.944854][   T58] usb 2-1: Using ep0 maxpacket: 32
[   88.953905][   T58] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[   89.007641][   T58] usb 2-1: config 0 has no interface number 0
[   89.014700][   T58] usb 2-1: config 0 interface 184 has no altsetting 0
[   89.032913][   T58] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[   89.042480][   T58] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   89.054909][   T58] usb 2-1: Product: syz
[   89.059268][   T58] usb 2-1: Manufacturer: syz
[   89.064507][   T58] usb 2-1: SerialNumber: syz
[   89.071927][   T58] usb 2-1: config 0 descriptor??
[   89.079631][   T58] smsc75xx v1.0.0
[   89.185662][ T3327] loop2: detected capacity change from 0 to 8192
[   89.745353][  T572] tipc: Node number set to 2952588335
[   89.789654][   T58] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[   89.801733][   T58] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[   89.840825][ T3355] tmpfs: Unsupported parameter 'mpol'
[   90.393370][ T3358] loop3: detected capacity change from 0 to 512
[   90.724431][ T3362] tipc: Started in network mode
[   90.740291][ T3358] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   90.749307][ T3362] tipc: Node identity ac14140f, cluster identity 4711
[   90.765022][ T3362] tipc: New replicast peer: 255.255.255.255
[   90.795137][ T3362] tipc: Enabled bearer <udp:syz2>, priority 10
[   90.884992][   T28] kauditd_printk_skb: 137 callbacks suppressed
[   90.885008][   T28] audit: type=1400 audit(1765346186.163:3134): avc:  denied  { remount } for  pid=3354 comm="syz.3.1083" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   90.917104][ T3356] EXT4-fs (loop3): re-mounted. Quota mode: writeback.
[   90.973827][ T3356] EXT4-fs (loop3): re-mounted. Quota mode: writeback.
[   91.017312][   T28] audit: type=1326 audit(1765346186.293:3135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3376 comm="syz.4.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f919558f749 code=0x7ffc0000
[   91.017760][ T3375] loop2: detected capacity change from 0 to 1024
[   91.054187][ T3377] loop4: detected capacity change from 0 to 512
[   91.060812][   T28] audit: type=1326 audit(1765346186.313:3136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3376 comm="syz.4.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f919558f749 code=0x7ffc0000
[   91.068363][ T3377] ext3: Unknown parameter 'subj_type'
[   91.085176][   T28] audit: type=1326 audit(1765346186.313:3137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3376 comm="syz.4.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f919558f749 code=0x7ffc0000
[   91.089957][   T58] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61
[   91.113483][   T28] audit: type=1326 audit(1765346186.313:3138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3376 comm="syz.4.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f919558f749 code=0x7ffc0000
[   91.148754][   T58] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -61
[   91.159227][   T58] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -61
[   91.160463][   T28] audit: type=1326 audit(1765346186.313:3139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3376 comm="syz.4.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f919558f749 code=0x7ffc0000
[   91.169177][   T58] smsc75xx: probe of 2-1:0.184 failed with error -61
[   91.192778][   T28] audit: type=1326 audit(1765346186.313:3140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3376 comm="syz.4.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f919558f749 code=0x7ffc0000
[   91.202976][ T3375] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.1087: bad orphan inode 134217728
[   91.233434][   T28] audit: type=1326 audit(1765346186.313:3141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3376 comm="syz.4.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f919558f749 code=0x7ffc0000
[   91.236293][  T285] EXT4-fs (loop3): unmounting filesystem.
[   91.259595][  T341] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   91.272171][   T28] audit: type=1326 audit(1765346186.313:3142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3376 comm="syz.4.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f919558f749 code=0x7ffc0000
[   91.296373][ T3375] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   91.342831][   T28] audit: type=1326 audit(1765346186.313:3143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3376 comm="syz.4.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f919558f749 code=0x7ffc0000
[   91.562795][  T288] EXT4-fs (loop2): unmounting filesystem.
[   91.794864][  T344] tipc: Node number set to 2886997007
[   92.355843][   T19] usb 2-1: USB disconnect, device number 2
[   92.610219][ T3430] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1111'.
[   92.731851][ T3444] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1115'.
[   92.749354][ T3444] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1115'.
[   93.100906][ T3453] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1119'.
[   93.282785][ T3472] loop9: detected capacity change from 0 to 7
[   93.972392][ T3506] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1143'.
[   94.002050][ T3506] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1143'.
[   94.377732][ T3545] SELinux: failed to load policy
[   94.917395][ T3583] SELinux:  Context system_u:object_r:var_auth_t:s0 is not valid (left unmapped).
[   95.107018][ T3595] loop4: detected capacity change from 0 to 1024
[   95.157025][  T648] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   95.186905][ T3599] loop3: detected capacity change from 0 to 128
[   95.204659][ T3599] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   95.224072][ T3599] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.315179][ T3608] loop4: detected capacity change from 0 to 128
[   95.342476][  T285] EXT4-fs (loop3): unmounting filesystem.
[   95.391960][ T3608] syz.4.1187: attempt to access beyond end of device
[   95.391960][ T3608] loop4: rw=2049, sector=169, nr_sectors = 872 limit=128
[   95.942445][ T3637] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1198'.
[   95.988972][ T3637] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1198'.
[   96.209003][   T28] kauditd_printk_skb: 433 callbacks suppressed
[   96.209051][   T28] audit: type=1400 audit(1765346191.483:3577): avc:  denied  { mount } for  pid=3638 comm="syz.0.1199" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   96.328986][   T28] audit: type=1326 audit(1765346191.603:3578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3642 comm="syz.0.1201" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x0
[   96.464700][ T3644] loop2: detected capacity change from 0 to 1024
[   96.500513][ T3644] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.1200: bad orphan inode 134217728
[   96.515318][ T3644] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   96.662584][   T28] audit: type=1326 audit(1765346191.933:3579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3651 comm="syz.3.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   96.739081][   T28] audit: type=1326 audit(1765346191.933:3580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3651 comm="syz.3.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   96.763070][   T28] audit: type=1326 audit(1765346191.933:3581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3651 comm="syz.3.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   96.787140][   T28] audit: type=1326 audit(1765346191.933:3582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3651 comm="syz.3.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   96.811539][   T28] audit: type=1326 audit(1765346191.933:3583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3651 comm="syz.3.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   96.829221][ T3666] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1210'.
[   96.844090][   T28] audit: type=1326 audit(1765346191.933:3584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3651 comm="syz.3.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   96.874535][   T28] audit: type=1326 audit(1765346191.933:3585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3651 comm="syz.3.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   96.909764][ T3667] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1210'.
[   96.909858][   T28] audit: type=1326 audit(1765346191.933:3586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3651 comm="syz.3.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc458f749 code=0x7ffc0000
[   97.067100][ T3669] loop4: detected capacity change from 0 to 128
[   97.126049][ T3669] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   97.136970][ T3669] ext4 filesystem being mounted at /236/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.266916][ T3676] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   97.292723][  T288] EXT4-fs (loop2): unmounting filesystem.
[   97.453820][  T286] EXT4-fs (loop4): unmounting filesystem.
[   97.588902][  T286] syz-executor (286) used greatest stack depth: 20864 bytes left
[   97.597425][  T493] tipc: Disabling bearer <udp:syz2>
[   97.604288][  T493] tipc: Left network mode
[   98.474658][ T3714] tipc: Started in network mode
[   98.480246][ T3714] tipc: Node identity 26dbab60bb03, cluster identity 4711
[   98.487914][ T3714] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   98.598774][ T3723] tipc: Disabling bearer <eth:syzkaller0>
[   98.617538][  T493] device bridge_slave_1 left promiscuous mode
[   98.624597][  T493] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.633503][  T493] device bridge_slave_0 left promiscuous mode
[   98.640362][  T493] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.652633][  T493] device veth1_macvtap left promiscuous mode
[   98.658966][  T493] device veth0_vlan left promiscuous mode
[  100.043309][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x7
[  100.051499][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  100.064104][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  100.071637][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  100.079648][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  100.087119][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x2
[  100.094532][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  100.102592][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  100.110104][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  100.118544][ T3706] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.126245][ T3706] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.137316][ T3706] device bridge_slave_0 entered promiscuous mode
[  100.148638][ T3706] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.155925][ T3706] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.203953][ T3706] device bridge_slave_1 entered promiscuous mode
[  101.115121][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.122629][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.130097][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.137548][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.145234][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.152671][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.160157][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.167637][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.176602][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.184038][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.193245][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.200917][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.208386][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.215908][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.223335][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.230900][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.238447][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.245916][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.253330][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.260827][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  101.268322][  T378] hid-generic 0000:0000:0000.0002: unknown main item tag 0x1
[  101.277952][  T378] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v8.01 Device [syz0] on syz0
[  101.320385][ T3777] fido_id[3777]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  101.350762][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  101.362543][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  101.553090][   T28] kauditd_printk_skb: 14 callbacks suppressed
[  101.553727][   T28] audit: type=1326 audit(1765346196.783:3601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3773 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[  101.729265][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  101.772969][   T28] audit: type=1326 audit(1765346196.783:3602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3773 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[  101.787880][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  101.796882][   T28] audit: type=1326 audit(1765346196.793:3603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3773 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[  101.818284][  T501] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.834874][  T501] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.842736][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  101.851964][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  101.859430][   T28] audit: type=1326 audit(1765346196.793:3604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3773 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[  101.860879][  T501] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.890827][  T501] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.908191][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  101.915860][   T28] audit: type=1326 audit(1765346196.793:3605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3773 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[  101.940543][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  101.949168][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  101.965216][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  101.973293][   T28] audit: type=1326 audit(1765346196.793:3606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3773 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[  101.997950][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  102.021985][   T28] audit: type=1326 audit(1765346196.793:3607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3773 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[  102.024869][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  102.059101][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  102.062360][   T28] audit: type=1326 audit(1765346196.793:3608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3773 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b398f749 code=0x7ffc0000
[  102.070545][ T3795] loop2: detected capacity change from 0 to 512
[  102.095392][   T28] audit: type=1326 audit(1765346197.173:3609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3763 comm="syz.2.1251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[  102.121385][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  102.127600][   T28] audit: type=1326 audit(1765346197.173:3610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3763 comm="syz.2.1251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa20e78f749 code=0x7ffc0000
[  102.145251][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  102.161878][ T3706] device veth0_vlan entered promiscuous mode
[  102.168804][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  102.184595][ T3795] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  102.197776][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  102.212812][ T3706] device veth1_macvtap entered promiscuous mode
[  102.254601][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  102.270663][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  102.291498][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  102.292439][ T3806] 9pnet_virtio: no channels available for device 
[  102.305825][  T493] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  102.324653][  T493] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  102.333439][  T493] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  102.349008][  T493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  102.406137][ T3818] loop2: detected capacity change from 0 to 512
[  102.427233][ T3818] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  102.449214][ T3818] EXT4-fs (loop2): 1 orphan inode deleted
[  102.455931][ T3818] EXT4-fs (loop2): 1 truncate cleaned up
[  102.464497][ T3818] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  102.503418][ T3818] EXT4-fs error (device loop2): ext4_inlinedir_to_tree:1440: inode #12: block 7: comm syz.2.1270: path /253/file0/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  102.555249][ T3818] EXT4-fs (loop2): Remounting filesystem read-only
[  102.601310][  T288] EXT4-fs (loop2): unmounting filesystem.
[  102.644258][ T3836] hub 9-0:1.0: USB hub found
[  102.644374][ T3836] hub 9-0:1.0: 1 port detected
[  102.681443][ T3840] syz.2.1277 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  102.718195][  T501] Bluetooth: hci0: Frame reassembly failed (-84)
[  103.217107][ T3866] tmpfs: Unsupported parameter 'mpol'
[  103.850662][ T3883] IPv6: NLM_F_CREATE should be specified when creating new route
[  104.639189][ T3923] 9pnet: Could not find request transport: rdma
[  104.754985][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[  104.761063][ T2071] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  104.857057][ T3931] netlink: 'syz.3.1318': attribute type 13 has an invalid length.
[  104.865637][ T3931] netlink: 'syz.3.1318': attribute type 27 has an invalid length.
[  104.939350][ T3935] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1320'.
[  105.159990][ T3942] usb usb4: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  105.961875][ T3980] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1338'.
[  105.972229][ T3980] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1338'.
[  106.124665][ T3996] SELinux: ebitmap: truncated map
[  106.178389][ T3996] SELinux: failed to load policy
[  106.231686][ T4006] loop2: detected capacity change from 0 to 512
[  106.275633][ T4006] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  106.336403][ T4006] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  106.353232][ T4006] ext4 filesystem being mounted at /274/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  106.382108][ T4020] loop5: detected capacity change from 0 to 2048
[  106.416715][ T4020] Alternate GPT is invalid, using primary GPT.
[  106.424971][ T4020]  loop5: p2 p3 p7
[  106.463871][ T4027] loop3: detected capacity change from 0 to 1024
[  106.464394][  T341] udevd[341]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[  106.481639][  T338] udevd[338]: inotify_add_watch(7, /dev/loop5p7, 10) failed: No such file or directory
[  106.500277][  T648] udevd[648]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[  106.523980][ T4027] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  106.536631][  T288] EXT4-fs (loop2): unmounting filesystem.
[  106.614434][ T4027] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  106.637073][ T4047] loop5: detected capacity change from 0 to 512
[  106.645144][ T4047] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  106.942154][ T4047] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.1369: inode has both inline data and extents flags
[  106.959292][   T28] kauditd_printk_skb: 129 callbacks suppressed
[  106.959308][   T28] audit: type=1326 audit(1765346202.233:3740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4050 comm="syz.0.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[  106.996280][  T285] EXT4-fs (loop3): unmounting filesystem.
[  107.010173][ T4047] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.1369: couldn't read orphan inode 15 (err -117)
[  107.020670][   T28] audit: type=1326 audit(1765346202.263:3741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4050 comm="syz.0.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[  107.076960][   T28] audit: type=1326 audit(1765346202.263:3742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4050 comm="syz.0.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[  107.103897][ T4047] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  107.161837][ T4067] loop3: detected capacity change from 0 to 512
[  107.180745][ T4069] device veth0_to_team entered promiscuous mode
[  107.192131][ T4067] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  107.211631][ T4067] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  107.223402][ T3706] EXT4-fs (loop5): unmounting filesystem.
[  107.271725][ T4067] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3836: comm syz.3.1376: Allocating blocks 41-42 which overlap fs metadata
[  107.296769][ T4067] Quota error (device loop3): write_blk: dquota write failed
[  107.338702][ T4067] Quota error (device loop3): find_free_dqentry: Can't write quota data block 5
[  107.375657][   T28] audit: type=1400 audit(1765346202.643:3743): avc:  denied  { accept } for  pid=4081 comm="syz.5.1382" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  107.396864][ T4067] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  107.406927][ T4067] EXT4-fs error (device loop3): ext4_acquire_dquot:6803: comm syz.3.1376: Failed to acquire dquot type 1
[  107.423424][ T4067] EXT4-fs error (device loop3): mb_free_blocks:1810: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  107.439464][ T4067] EXT4-fs error (device loop3): ext4_do_update_inode:5270: inode #12: comm syz.3.1376: corrupted inode contents
[  107.462622][ T4067] EXT4-fs error (device loop3): ext4_dirty_inode:6135: inode #12: comm syz.3.1376: mark_inode_dirty error
[  107.537398][ T4067] EXT4-fs error (device loop3): ext4_do_update_inode:5270: inode #12: comm syz.3.1376: corrupted inode contents
[  107.554181][   T28] audit: type=1400 audit(1765346202.823:3744): avc:  denied  { write } for  pid=4094 comm="syz.1.1388" path="socket:[26168]" dev="sockfs" ino=26168 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  107.578279][ T4067] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #12: comm syz.3.1376: mark_inode_dirty error
[  107.608047][ T4067] EXT4-fs error (device loop3): ext4_do_update_inode:5270: inode #12: comm syz.3.1376: corrupted inode contents
[  107.633814][ T4067] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem
[  107.662704][ T4103] loop5: detected capacity change from 0 to 512
[  107.675027][ T4067] EXT4-fs error (device loop3): ext4_do_update_inode:5270: inode #12: comm syz.3.1376: corrupted inode contents
[  107.701953][ T4067] EXT4-fs error (device loop3): ext4_truncate:4320: inode #12: comm syz.3.1376: mark_inode_dirty error
[  107.721802][ T4103] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  107.731863][ T4103] EXT4-fs (loop5): orphan cleanup on readonly fs
[  107.743746][ T4067] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem
[  107.762679][ T4067] EXT4-fs (loop3): 1 truncate cleaned up
[  107.765257][ T4103] Quota error (device loop5): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  107.769186][ T4067] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  107.822007][ T4067] EXT4-fs (loop3): re-mounted. Quota mode: writeback.
[  107.823685][ T4103] EXT4-fs warning (device loop5): ext4_enable_quotas:7055: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  107.847885][   T28] audit: type=1400 audit(1765346203.123:3745): avc:  denied  { read } for  pid=4117 comm="syz.0.1399" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  107.868673][ T4103] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  107.887642][  T285] EXT4-fs (loop3): unmounting filesystem.
[  107.925190][ T4103] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1390: bg 0: block 40: padding at end of block bitmap is not set
[  107.954172][ T4128] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1402'.
[  107.972191][ T4103] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  107.988836][ T4103] EXT4-fs (loop5): 1 truncate cleaned up
[  107.996046][ T4103] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  108.006475][ T4124] loop3: detected capacity change from 0 to 8192
[  108.065650][ T4124]  loop3: p2 p3
[  108.170576][ T4152] loop3: detected capacity change from 0 to 512
[  108.174195][ T4154] loop2: detected capacity change from 0 to 512
[  108.185164][ T4154] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  108.194710][ T4152] EXT4-fs (loop3): orphan cleanup on readonly fs
[  108.203207][ T4152] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #11: block 1: comm syz.3.1417: lblock 0 mapped to illegal pblock 1 (length 1)
[  108.217931][ T4152] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2819: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  108.231346][ T4152] EXT4-fs error (device loop3): ext4_xattr_inode_update_ref:1001: inode #11: comm syz.3.1417: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[  108.231357][ T4154] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1416: bg 0: block 255: padding at end of block bitmap is not set
[  108.231550][ T4154] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  108.261484][ T4152] EXT4-fs warning (device loop3): ext4_xattr_inode_dec_ref_all:1190: inode #11: comm syz.3.1417: ea_inode dec ref err=-117
[  108.284262][ T4152] EXT4-fs (loop3): 1 orphan inode deleted
[  108.289085][ T4154] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1416: invalid indirect mapped block 1 (level 1)
[  108.290435][ T4152] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  108.315071][ T4154] EXT4-fs (loop2): 1 truncate cleaned up
[  108.321994][ T4154] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  108.350867][  T285] EXT4-fs (loop3): unmounting filesystem.
[  108.361160][  T288] EXT4-fs (loop2): unmounting filesystem.
[  108.431945][ T3706] EXT4-fs (loop5): unmounting filesystem.
[  108.440467][ T4173] loop3: detected capacity change from 0 to 512
[  108.462241][ T4173] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  108.474197][ T4173] EXT4-fs (loop3): orphan cleanup on readonly fs
[  108.485348][ T4173] EXT4-fs error (device loop3): ext4_acquire_dquot:6803: comm syz.3.1425: Failed to acquire dquot type 1
[  108.511087][ T4185] loop5: detected capacity change from 0 to 128
[  108.523457][ T4173] EXT4-fs (loop3): Remounting filesystem read-only
[  108.531358][ T4173] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1425: bg 0: block 40: padding at end of block bitmap is not set
[  108.546159][ T4173] EXT4-fs (loop3): Remounting filesystem read-only
[  108.552759][ T4173] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  108.562050][ T4173] EXT4-fs (loop3): Remounting filesystem read-only
[  108.569297][ T4173] EXT4-fs (loop3): 1 truncate cleaned up
[  108.577740][ T4173] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  108.592415][ T4192] loop2: detected capacity change from 0 to 128
[  108.599681][ T4185] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  108.609389][ T4185] ext4 filesystem being mounted at /24/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  108.612890][ T4192] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  108.628878][  T285] EXT4-fs (loop3): unmounting filesystem.
[  108.630875][ T4192] ext4 filesystem being mounted at /293/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  108.646017][ T3706] EXT4-fs (loop5): unmounting filesystem.
[  108.657414][ T4192] EXT4-fs warning (device loop2): verify_group_input:151: Cannot add at group 24 (only 1 groups)
[  108.675390][  T288] EXT4-fs (loop2): unmounting filesystem.
[  108.691893][ T4201] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1437'.
[  108.710715][ T4203] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1438'.
[  108.720052][ T4201] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1437'.
[  108.871131][ T4222] loop2: detected capacity change from 0 to 1024
[  108.895470][ T4222] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.1440: bad orphan inode 134217728
[  108.906591][ T4222] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  108.995716][ T4238] loop3: detected capacity change from 0 to 1024
[  109.002494][ T4238] EXT4-fs: Ignoring removed oldalloc option
[  109.010364][ T4238] EXT4-fs: Ignoring removed bh option
[  109.016356][ T4238] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  109.045156][ T4238] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  109.054512][ T4247] netlink: 272 bytes leftover after parsing attributes in process `syz.5.1455'.
[  109.078714][  T285] EXT4-fs (loop3): unmounting filesystem.
[  109.237752][  T288] EXT4-fs (loop2): unmounting filesystem.
[  109.258391][ T4266] lo: Caught tx_queue_len zero misconfig
[  109.326556][ T4276] netlink: 204 bytes leftover after parsing attributes in process `syz.2.1469'.
[  109.524058][ T4302] SELinux: ebitmap: truncated map
[  109.532682][ T4307] loop2: detected capacity change from 0 to 512
[  109.545915][ T4307] EXT4-fs: Ignoring removed nobh option
[  109.561451][ T4302] SELinux: failed to load policy
[  109.568410][ T4307] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  109.579185][ T4307] ext4 filesystem being mounted at /306/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  109.592271][ T4307] EXT4-fs error (device loop2): ext4_find_dest_de:2115: inode #2: block 3: comm syz.2.1482: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0
[  109.619059][  T288] EXT4-fs (loop2): unmounting filesystem.
[  109.643078][ T4312] ip6gre0: Caught tx_queue_len zero misconfig
[  109.653205][ T4312] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  109.706448][ T4321] device veth1_macvtap left promiscuous mode
[  109.712766][ T4321] device macsec0 entered promiscuous mode
[  109.716881][ T4319] loop2: detected capacity change from 0 to 2048
[  109.736132][ T4319] EXT4-fs (loop2): failed to initialize system zone (-117)
[  109.743564][ T4319] EXT4-fs (loop2): mount failed
[  110.320215][ T4349] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1500'.
[  110.913115][ T4390] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1517'.
[  110.923436][ T4390] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1517'.
[  110.933172][ T4390] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1517'.
[  111.293990][  T344] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  111.415457][ T4402] xt_CT: No such helper "pptp"
[  111.467282][ T4406] IPv6: NLM_F_CREATE should be specified when creating new route
[  111.475459][  T344] usb 2-1: Using ep0 maxpacket: 8
[  111.482142][  T344] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  111.493228][  T344] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  111.503124][  T344] usb 2-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice= 0.00
[  111.512504][  T344] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.521997][  T344] usb 2-1: config 0 descriptor??
[  111.595921][ T4417] SELinux:  Context system_u:object_r:run_init_exec_t:s0 is not valid (left unmapped).
[  111.729612][  T344] usbhid 2-1:0.0: can't add hid device: -71
[  111.736805][  T344] usbhid: probe of 2-1:0.0 failed with error -71
[  111.744337][  T344] usb 2-1: USB disconnect, device number 3
[  111.834520][ T4429] SELinux: ebitmap: truncated map
[  111.847064][ T4429] SELinux: failed to load policy
[  111.967031][   T28] kauditd_printk_skb: 158 callbacks suppressed
[  111.967048][   T28] audit: type=1400 audit(1765346207.243:3902): avc:  denied  { create } for  pid=4448 comm="syz.3.1544" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  112.039178][   T28] audit: type=1326 audit(1765346207.283:3903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1930d865e7 code=0x7ffc0000
[  112.120796][   T28] audit: type=1326 audit(1765346207.283:3904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1930d2b829 code=0x7ffc0000
[  112.158196][   T28] audit: type=1326 audit(1765346207.283:3905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1930d865e7 code=0x7ffc0000
[  112.246047][   T28] audit: type=1326 audit(1765346207.283:3906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1930d2b829 code=0x7ffc0000
[  112.309891][   T28] audit: type=1326 audit(1765346207.293:3907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[  112.689051][   T28] audit: type=1326 audit(1765346207.293:3908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[  112.712830][   T28] audit: type=1326 audit(1765346207.293:3909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[  112.756192][   T28] audit: type=1326 audit(1765346207.293:3910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[  112.790650][ T4463] ip6tnl0: Caught tx_queue_len zero misconfig
[  112.811413][   T28] audit: type=1326 audit(1765346207.293:3911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1930d8f749 code=0x7ffc0000
[  112.874439][ T4471] tmpfs: Unsupported parameter 'mpol'
[  112.911750][ T4477] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1555'.
[  112.928999][ T4480] usb usb7: usbfs: process 4480 (syz.5.1554) did not claim interface 0 before use
[  113.240937][ T4501] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1564'.
[  113.259650][ T4499] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1565'.
[  113.498946][ T4517] 9pnet_fd: Insufficient options for proto=fd
[  114.472220][ T4530] loop5: detected capacity change from 0 to 512
[  114.498381][ T4530] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  114.729732][ T4530] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2819: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  114.744144][ T4530] EXT4-fs (loop5): 1 truncate cleaned up
[  114.750864][ T4530] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  114.925562][ T3706] EXT4-fs (loop5): unmounting filesystem.
[  114.965525][    T6] kernel write not supported for file /uhid (pid: 6 comm: kworker/0:0)
[  115.530469][ T4572] loop5: detected capacity change from 0 to 512
[  115.551053][ T4572] EXT4-fs (loop5): 1 truncate cleaned up
[  115.563554][ T4572] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  115.584836][ T4572] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1593: bg 0: block 465: padding at end of block bitmap is not set
[  115.627641][ T4572] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 117
[  115.664838][ T4572] EXT4-fs (loop5): This should not happen!! Data will be lost
[  115.664838][ T4572] 
[  115.686480][ T4589] loop2: detected capacity change from 0 to 512
[  115.696405][ T3706] EXT4-fs (loop5): unmounting filesystem.
[  115.741140][ T4589] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  115.756129][ T4589] ext4 filesystem being mounted at /322/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.768236][ T4598] loop5: detected capacity change from 0 to 512
[  115.776204][ T4598] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  115.801286][ T4589] EXT4-fs error (device loop2): ext4_do_update_inode:5270: inode #2: comm syz.2.1601: corrupted inode contents
[  115.823267][ T4598] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=42c028, mo2=0002]
[  115.844331][ T4589] EXT4-fs error (device loop2): ext4_dirty_inode:6135: inode #2: comm syz.2.1601: mark_inode_dirty error
[  115.863110][ T4598] EXT4-fs (loop5): orphan cleanup on readonly fs
[  115.870950][ T4603] xt_CT: No such helper "pptp"
[  115.887269][ T4598] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:3836: comm syz.5.1605: Allocating blocks 41-42 which overlap fs metadata
[  115.911263][ T4589] EXT4-fs error (device loop2): ext4_do_update_inode:5270: inode #2: comm syz.2.1601: corrupted inode contents
[  115.943936][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  115.964072][ T4589] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.1601: mark_inode_dirty error
[  115.975614][ T4598] EXT4-fs error (device loop5): ext4_acquire_dquot:6803: comm syz.5.1605: Failed to acquire dquot type 0
[  116.015162][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.036864][ T4598] EXT4-fs error (device loop5): mb_free_blocks:1810: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  116.061297][  T288] EXT4-fs (loop2): unmounting filesystem.
[  116.074492][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.094535][ T4598] EXT4-fs error (device loop5): ext4_do_update_inode:5270: inode #12: comm syz.5.1605: corrupted inode contents
[  116.107249][ T4608] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  116.137813][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.144567][ T4598] EXT4-fs error (device loop5): ext4_dirty_inode:6135: inode #12: comm syz.5.1605: mark_inode_dirty error
[  116.175561][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.191182][ T4598] EXT4-fs error (device loop5): ext4_do_update_inode:5270: inode #12: comm syz.5.1605: corrupted inode contents
[  116.213480][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.232186][ T4598] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #12: comm syz.5.1605: mark_inode_dirty error
[  116.258557][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.282774][ T4616] loop2: detected capacity change from 0 to 1024
[  116.290522][ T4598] EXT4-fs error (device loop5): ext4_do_update_inode:5270: inode #12: comm syz.5.1605: corrupted inode contents
[  116.324518][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.331832][ T4616] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  116.350195][ T4598] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem
[  116.368873][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.379359][ T4616] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  116.393766][ T4598] EXT4-fs error (device loop5): ext4_do_update_inode:5270: inode #12: comm syz.5.1605: corrupted inode contents
[  116.422809][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.429806][ T4616] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #18: comm syz.2.1610: corrupted xattr block 113
[  116.441797][ T4598] EXT4-fs error (device loop5): ext4_truncate:4320: inode #12: comm syz.5.1605: mark_inode_dirty error
[  116.455260][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.461882][ T4616] EXT4-fs (loop2): Remounting filesystem read-only
[  116.468545][ T4598] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem
[  116.476382][ T4616] EXT4-fs error (device loop2): ext4_find_dest_de:2115: inode #2: block 16: comm syz.2.1610: bad entry in directory: directory entry overrun - offset=128, inode=18, rec_len=896, size=1012 fake=0
[  116.477741][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.503355][ T4598] EXT4-fs (loop5): 1 truncate cleaned up
[  116.509163][ T4598] EXT4-fs (loop5): pa ffff8881190db3f0: logic 1, phys. 41, len 23
[  116.517055][ T4598] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:4876: group 0, free 22, pa_free 23
[  116.527495][ T4598] EXT4-fs (loop5): Remounting filesystem read-only
[  116.534194][ T4598] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  116.543311][ T4616] EXT4-fs (loop2): Remounting filesystem read-only
[  116.575966][  T288] EXT4-fs (loop2): unmounting filesystem.
[  116.582304][ T3706] EXT4-fs (loop5): unmounting filesystem.
[  117.006751][   T28] kauditd_printk_skb: 120 callbacks suppressed
[  117.006769][   T28] audit: type=1400 audit(1765346212.283:4030): avc:  denied  { ioctl } for  pid=4639 comm="syz.3.1620" path="socket:[27461]" dev="sockfs" ino=27461 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  117.170572][ T4643] loop3: detected capacity change from 0 to 1024
[  117.187817][ T4643] EXT4-fs error (device loop3): ext4_orphan_get:1426: comm syz.3.1621: bad orphan inode 134217728
[  117.199112][ T4643] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  117.218229][   T28] audit: type=1400 audit(1765346212.493:4031): avc:  denied  { write } for  pid=4641 comm="syz.3.1621" name="bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  117.240340][  T344] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  117.351869][   T28] audit: type=1400 audit(1765346212.623:4032): avc:  denied  { create } for  pid=4641 comm="syz.3.1621" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  117.436028][  T344] usb 6-1: config 0 has no interfaces?
[  117.472286][  T344] usb 6-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5
[  117.496014][  T344] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.524839][  T344] usb 6-1: Product: syz
[  117.529075][  T344] usb 6-1: Manufacturer: syz
[  117.533909][  T344] usb 6-1: SerialNumber: syz
[  117.546229][  T344] usb 6-1: config 0 descriptor??
[  117.550639][ T4653] loop2: detected capacity change from 0 to 2048
[  117.561745][  T285] EXT4-fs (loop3): unmounting filesystem.
[  117.590310][ T4653] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  117.601541][ T4653] EXT4-fs error (device loop2): ext4_ext_precache:627: inode #2: comm syz.2.1625: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[  117.627696][  T288] EXT4-fs (loop2): unmounting filesystem.
[  117.647140][   T28] audit: type=1400 audit(1765346212.923:4033): avc:  denied  { setattr } for  pid=4657 comm="syz.1.1627" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  117.710560][   T28] audit: type=1400 audit(1765346212.963:4034): avc:  denied  { read } for  pid=4663 comm="syz.2.1629" name="binder0" dev="binder" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  117.739263][   T28] audit: type=1400 audit(1765346212.963:4035): avc:  denied  { open } for  pid=4663 comm="syz.2.1629" path="/dev/binderfs/binder0" dev="binder" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  117.780002][ T4666] loop2: detected capacity change from 0 to 2048
[  117.784941][   T28] audit: type=1400 audit(1765346212.963:4036): avc:  denied  { ioctl } for  pid=4663 comm="syz.2.1629" path="/dev/binderfs/binder0" dev="binder" ino=16 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  117.787185][    T6] usb 6-1: USB disconnect, device number 2
[  117.812479][   T28] audit: type=1400 audit(1765346212.963:4037): avc:  denied  { set_context_mgr } for  pid=4663 comm="syz.2.1629" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  117.838903][   T28] audit: type=1400 audit(1765346212.963:4038): avc:  denied  { write } for  pid=4663 comm="syz.2.1629" name="binder0" dev="binder" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  117.862106][   T28] audit: type=1400 audit(1765346212.963:4039): avc:  denied  { map } for  pid=4663 comm="syz.2.1629" path="/dev/binderfs/binder0" dev="binder" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  117.897544][ T4666] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  117.910666][ T4666] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  117.932836][  T288] EXT4-fs (loop2): unmounting filesystem.
[  117.954093][ T4682] loop3: detected capacity change from 0 to 1024
[  117.961193][ T4682] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  117.976652][ T4682] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  117.987607][ T4682] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #11: comm syz.3.1636: missing EA_INODE flag
[  117.999595][ T4682] EXT4-fs (loop3): Remounting filesystem read-only
[  118.006248][ T4682] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1636: error while reading EA inode 11 err=-117
[  118.018859][ T4682] EXT4-fs (loop3): Remounting filesystem read-only
[  118.033867][  T285] EXT4-fs (loop3): unmounting filesystem.
[  118.041867][ T4687] loop2: detected capacity change from 0 to 1024
[  118.050782][ T4687] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.1637: bad orphan inode 134217728
[  118.061570][ T4690] loop3: detected capacity change from 0 to 512
[  118.061668][ T4687] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  118.088526][ T4690] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  118.097736][ T4690] ext4 filesystem being mounted at /307/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.110716][ T4690] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #15: comm syz.3.1638: corrupted xattr block 33
[  118.123010][ T4690] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  118.132254][ T4690] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #15: comm syz.3.1638: corrupted xattr block 33
[  118.144412][ T4690] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  118.153775][ T4690] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #15: comm syz.3.1638: corrupted xattr block 33
[  118.166060][ T4690] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #15: comm syz.3.1638: corrupted xattr block 33
[  118.174832][  T969] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  118.185663][ T4690] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  118.194980][ T4690] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #15: comm syz.3.1638: corrupted xattr block 33
[  118.207132][ T4690] fscrypt (loop3, inode 15): Error -117 getting encryption context
[  118.222847][  T285] EXT4-fs (loop3): unmounting filesystem.
[  118.237311][ T4695] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  118.268863][  T288] EXT4-fs (loop2): unmounting filesystem.
[  118.300827][ T4701] loop2: detected capacity change from 0 to 16
[  118.307979][ T4701] erofs: (device loop2): mounted with root inode @ nid 36.
[  118.333274][ T4706] loop2: detected capacity change from 0 to 512
[  118.342665][ T4706] EXT4-fs (loop2): 1 orphan inode deleted
[  118.349035][ T4706] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  118.359113][ T4706] EXT4-fs (loop2): unmounting filesystem.
[  118.384863][  T969] usb 2-1: Using ep0 maxpacket: 32
[  118.391220][  T969] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[  118.399787][  T969] usb 2-1: config 0 has no interface number 0
[  118.406239][  T969] usb 2-1: config 0 interface 184 has no altsetting 0
[  118.414640][  T969] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  118.435688][  T969] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.443744][  T969] usb 2-1: Product: syz
[  118.460260][  T969] usb 2-1: Manufacturer: syz
[  118.472157][ T4713] loop2: detected capacity change from 0 to 512
[  118.480008][  T969] usb 2-1: SerialNumber: syz
[  118.486833][  T969] usb 2-1: config 0 descriptor??
[  118.498857][  T969] smsc75xx v1.0.0
[  118.502816][ T4713] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  118.520819][ T4713] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=42c028, mo2=0002]
[  118.526858][ T4717] loop5: detected capacity change from 0 to 256
[  118.528971][    T6] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  118.543238][ T4713] EXT4-fs (loop2): orphan cleanup on readonly fs
[  118.550875][ T4713] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.1647: Allocating blocks 41-42 which overlap fs metadata
[  118.570456][ T4717] FAT-fs (loop5): error, corrupted file size (i_pos 196, 2097152)
[  118.593944][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.603284][ T4713] EXT4-fs error (device loop2): ext4_acquire_dquot:6803: comm syz.2.1647: Failed to acquire dquot type 0
[  118.615093][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.621744][ T4713] EXT4-fs error (device loop2): mb_free_blocks:1810: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  118.636755][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.643340][ T4713] EXT4-fs error (device loop2): ext4_do_update_inode:5270: inode #12: comm syz.2.1647: corrupted inode contents
[  118.657966][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.664563][ T4713] EXT4-fs error (device loop2): ext4_dirty_inode:6135: inode #12: comm syz.2.1647: mark_inode_dirty error
[  118.677925][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.684508][ T4713] EXT4-fs error (device loop2): ext4_do_update_inode:5270: inode #12: comm syz.2.1647: corrupted inode contents
[  118.698824][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.705614][ T4713] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #12: comm syz.2.1647: mark_inode_dirty error
[  118.718014][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.724831][    T6] usb 4-1: Using ep0 maxpacket: 16
[  118.725120][ T4713] EXT4-fs error (device loop2): ext4_do_update_inode:5270: inode #12: comm syz.2.1647: corrupted inode contents
[  118.731284][    T6] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  118.743014][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.751112][    T6] usb 4-1: config 0 has no interface number 0
[  118.758022][ T4713] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem
[  118.762857][    T6] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  118.771839][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.782216][    T6] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  118.789042][ T4713] EXT4-fs error (device loop2): ext4_do_update_inode:5270: inode #12: comm syz.2.1647: corrupted inode contents
[  118.798725][    T6] usb 4-1: New USB device found, idVendor=04d9, idProduct=a081, bcdDevice= 0.00
[  118.811644][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.826358][ T4713] EXT4-fs error (device loop2): ext4_truncate:4320: inode #12: comm syz.2.1647: mark_inode_dirty error
[  118.831431][    T6] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.838195][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.852404][ T4713] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem
[  118.855638][    T6] usb 4-1: config 0 descriptor??
[  118.864496][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.874693][ T4713] EXT4-fs (loop2): 1 truncate cleaned up
[  118.880781][ T4713] EXT4-fs (loop2): pa ffff8881354332a0: logic 1, phys. 41, len 23
[  118.888679][ T4713] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 22, pa_free 23
[  118.899835][ T4713] EXT4-fs (loop2): Remounting filesystem read-only
[  118.907178][ T4713] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  118.962785][  T288] EXT4-fs (loop2): unmounting filesystem.
[  119.100270][  T969] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  119.111276][  T969] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  119.335628][    T6] usbhid 4-1:0.1: can't add hid device: -71
[  119.341699][    T6] usbhid: probe of 4-1:0.1 failed with error -71
[  119.350638][    T6] usb 4-1: USB disconnect, device number 3
[  119.458213][ T4742] binder_alloc: 4741: pid 4741 spamming oneway? 1 buffers allocated for a total size of 4096
[  119.621512][ T4754] loop5: detected capacity change from 0 to 256
[  119.859046][ T4760] loop2: detected capacity change from 0 to 1024
[  119.866279][ T4760] EXT4-fs: Ignoring removed mblk_io_submit option
[  119.873007][ T4760] EXT4-fs: Ignoring removed oldalloc option
[  119.879288][ T4760] EXT4-fs: Ignoring removed nomblk_io_submit option
[  119.880400][ T4762] loop3: detected capacity change from 0 to 1024
[  119.897550][ T4760] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  119.897599][ T4762] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  119.914973][ T4762] ext4 filesystem being mounted at /310/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.932288][ T4762] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.1667: inode has both inline data and extents flags
[  119.932507][  T288] EXT4-fs (loop2): unmounting filesystem.
[  119.961914][  T285] EXT4-fs (loop3): unmounting filesystem.
[  119.983203][ T4772] loop2: detected capacity change from 0 to 256
[  120.504049][ T4790] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1677'.
[  120.606908][ T4795] loop5: detected capacity change from 0 to 2048
[  120.616953][ T4795] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  120.628396][ T4795] EXT4-fs error (device loop5): ext4_ext_precache:627: inode #2: comm syz.5.1679: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[  120.653458][ T3706] EXT4-fs (loop5): unmounting filesystem.
[  120.707064][ T4803] loop5: detected capacity change from 0 to 1024
[  120.713934][ T4803] EXT4-fs: Ignoring removed nobh option
[  120.719945][ T4803] EXT4-fs: Ignoring removed bh option
[  120.725742][ T4803] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  120.787844][ T4807] loop5: detected capacity change from 0 to 128
[  120.794571][ T4807] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  120.806892][ T4807] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  120.871971][ T4812] loop3: detected capacity change from 0 to 128
[  120.977163][ T4812] ext4 filesystem being mounted at /314/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  121.237443][ T4812] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:477: comm syz.3.1685: Invalid block bitmap block 0 in block_group 0
[  121.324752][ T4812] EXT4-fs error (device loop3): __ext4_get_inode_loc:4515: comm syz.3.1685: Invalid inode table block 0 in block_group 0
[  121.405226][ T4812] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5931: Corrupt filesystem
[  121.503577][  T969] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -61
[  121.551048][ T4812] EXT4-fs error (device loop3): ext4_dirty_inode:6135: inode #12: comm syz.3.1685: mark_inode_dirty error
[  121.636880][ T4812] EXT4-fs error (device loop3): __ext4_get_inode_loc:4515: comm syz.3.1685: Invalid inode table block 0 in block_group 0
[  121.656754][  T969] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -61
[  121.670423][  T969] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -61
[  121.756834][  T969] smsc75xx: probe of 2-1:0.184 failed with error -61
[  121.768341][  T969] usb 2-1: USB disconnect, device number 4
[  221.914726][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  221.921772][    C0] 	(detected by 0, t=10002 jiffies, g=16365, q=528 ncpus=2)
[  221.929174][    C0] rcu: All QSes seen, last rcu_preempt kthread activity 9999 (4294959397-4294949398), jiffies_till_next_fqs=1, root ->qsmask 0x0
[  221.942473][    C0] rcu: rcu_preempt kthread starved for 10000 jiffies! g16365 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  221.953702][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  221.963785][    C0] rcu: RCU grace-period kthread stack dump:
[  221.969696][    C0] task:rcu_preempt     state:R  running task     stack:28064 pid:14    ppid:2      flags:0x00004000
[  221.980496][    C0] Call Trace:
[  221.983799][    C0]  <TASK>
[  221.986761][    C0]  __schedule+0xb87/0x14e0
[  221.991240][    C0]  ? __sched_text_start+0x8/0x8
[  221.996115][    C0]  ? preempt_schedule_irq+0xbb/0x110
[  222.001438][    C0]  schedule+0xbd/0x170
[  222.005541][    C0]  schedule_timeout+0x12c/0x2e0
[  222.010414][    C0]  ? __cfi_schedule_timeout+0x10/0x10
[  222.015808][    C0]  ? __cfi_process_timeout+0x10/0x10
[  222.021299][    C0]  ? prepare_to_swait_event+0x308/0x320
[  222.027015][    C0]  rcu_gp_fqs_loop+0x2d8/0x10a0
[  222.031909][    C0]  ? __cfi_rcu_implicit_dynticks_qs+0x10/0x10
[  222.037998][    C0]  ? rcu_gp_init+0xf10/0xf10
[  222.042627][    C0]  rcu_gp_kthread+0x95/0x370
[  222.047241][    C0]  ? __cfi_rcu_gp_kthread+0x10/0x10
[  222.052459][    C0]  ? __kasan_check_read+0x11/0x20
[  222.057505][    C0]  ? __kthread_parkme+0x142/0x180
[  222.062556][    C0]  kthread+0x281/0x320
[  222.066659][    C0]  ? __cfi_rcu_gp_kthread+0x10/0x10
[  222.071888][    C0]  ? __cfi_kthread+0x10/0x10
[  222.076511][    C0]  ret_from_fork+0x1f/0x30
[  222.080960][    C0]  </TASK>
[  222.084019][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  222.090532][    C0] CPU: 0 PID: 4814 Comm: syz.2.1686 Tainted: G        W          syzkaller #0
[  222.099745][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  222.109824][    C0] RIP: 0010:xfd_validate_state+0x4d/0x150
[  222.115577][    C0] Code: ff df e8 76 0d 41 00 48 c7 c7 c0 46 46 85 e8 9a aa be 03 65 4c 8b 3d 82 50 d3 7e 4d 8d 66 18 4c 89 e0 48 c1 e8 03 80 3c 18 00 <74> 08 4c 89 e7 e8 d9 86 85 00 4d 8b 2c 24 4c 89 ef 4c 89 fe e8 8a
[  222.135205][    C0] RSP: 0018:ffffc90003497c20 EFLAGS: 00000246
[  222.141297][    C0] RAX: 1ffffffff0c92a8b RBX: dffffc0000000000 RCX: 0006564b9dff5000
[  222.149378][    C0] RDX: ffffc9000220d000 RSI: ffffffff854646c0 RDI: ffffffff85aa19e0
[  222.157372][    C0] RBP: ffffc90003497c58 R08: 0000000000000000 R09: fffff52000692fc6
[  222.165457][    C0] R10: fffff52000692fc6 R11: 1ffff92000692fc0 R12: ffffffff86495458
[  222.173467][    C0] R13: 00007fa20f6a9a78 R14: ffffffff86495440 R15: 0000000000000000
[  222.181463][    C0] FS:  00007fa20f6aa6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  222.190427][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  222.197038][    C0] CR2: 000020000006b000 CR3: 0000000130977000 CR4: 00000000003506b0
[  222.205045][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  222.213050][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  222.221052][    C0] Call Trace:
[  222.224354][    C0]  <TASK>
[  222.227306][    C0]  ? fpu__clear_user_states+0x38/0x1f0
[  222.232801][    C0]  fpu__clear_user_states+0x117/0x1f0
[  222.238216][    C0]  arch_do_signal_or_restart+0x410/0x1030
[  222.243966][    C0]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  222.250167][    C0]  exit_to_user_mode_loop+0x7a/0xb0
[  222.255393][    C0]  exit_to_user_mode_prepare+0x87/0xd0
[  222.260875][    C0]  syscall_exit_to_user_mode+0x1a/0x30
[  222.266367][    C0]  do_syscall_64+0x58/0xa0
[  222.271011][    C0]  ? clear_bhb_loop+0x30/0x80
[  222.275725][    C0]  ? clear_bhb_loop+0x30/0x80
[  222.280433][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  222.286362][    C0] RIP: 0033:0x7fa20e7b7e80
[  222.290812][    C0] Code: 83 c0 16 83 e0 f7 74 12 50 48 8d 3d 8a 54 08 00 e8 05 8f f8 ff 0f 1f 44 00 00 c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 <83> ff 21 74 0b c3 66 2e 0f 1f 84 00 00 00 00 00 55 53 48 89 f3 48
[  222.310438][    C0] RSP: 002b:00007fa20f6a9a78 EFLAGS: 00000246
[  222.316529][    C0] RAX: 0000000000000000 RBX: 00007fa20e9e5fa0 RCX: 00007fa20e78f749
[  222.324531][    C0] RDX: 00007fa20f6a9a80 RSI: 00007fa20f6a9bb0 RDI: 0000000000000021
[  222.332542][    C0] RBP: 00007fa20e813f91 R08: 0000000000000007 R09: 0000000000000000
[  222.340547][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  222.348540][    C0] R13: 00007fa20e9e6038 R14: 00007fa20e9e5fa0 R15: 00007ffe0b388ee8
[  222.356542][    C0]  </TASK>
[  285.555099][    C0] BUG: workqueue lockup - pool cpus=1 node=0 flags=0x0 nice=0 stuck for 163s!
[  285.564501][    C0] BUG: workqueue lockup - pool cpus=1 node=0 flags=0x0 nice=-20 stuck for 163s!
[  285.573603][    C0] Showing busy workqueues and worker pools:
[  285.579523][    C0] workqueue events: flags=0x0
[  285.584211][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=3/256 refcnt=4
[  285.584264][    C0]     pending: psi_avgs_work, kfree_rcu_monitor, key_garbage_collector
[  285.584405][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=2/256 refcnt=3
[  285.584445][    C0]     pending: vmstat_shepherd, kfree_rcu_monitor
[  285.584602][    C0] workqueue events_unbound: flags=0x2
[  285.620019][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=2/512 refcnt=4
[  285.620072][    C0]     pending: toggle_allocation_gate, flush_memcg_stats_dwork
[  285.620201][    C0] workqueue events_power_efficient: flags=0x80
[  285.641136][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=2/256 refcnt=3
[  285.641186][    C0]     pending: wg_ratelimiter_gc_entries, check_lifetime
[  285.641241][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=5/256 refcnt=6
[  285.641281][    C0]     pending: neigh_managed_work, neigh_managed_work, gc_worker, neigh_periodic_work, neigh_periodic_work
[  285.641407][    C0] workqueue mm_percpu_wq: flags=0x8
[  285.680752][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  285.680801][    C0]     pending: vmstat_update
[  285.680838][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  285.680874][    C0]     pending: vmstat_update
[  285.680909][    C0] workqueue writeback: flags=0x4a
[  285.710413][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=4/256 refcnt=6
[  285.710458][    C0]     pending: wb_workfn, wb_workfn, wb_workfn, wb_workfn
[  285.710530][    C0] workqueue kblockd: flags=0x18
[  285.729721][    C0]   pwq 3: cpus=1 node=0 flags=0x0 nice=-20 active=2/256 refcnt=3
[  285.729769][    C0]     pending: blk_mq_timeout_work, blk_mq_timeout_work
[  285.729817][    C0]   pwq 1: cpus=0 node=0 flags=0x0 nice=-20 active=1/256 refcnt=2
[  285.729854][    C0]     pending: blk_mq_timeout_work
[  285.729881][    C0] workqueue usb_hub_wq: flags=0x4
[  285.762700][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=2/256 refcnt=3
[  285.762756][    C0]     in-flight: 969:hub_event hub_event
[  285.762922][    C0] workqueue dm_bufio_cache: flags=0x8
[  285.781619][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  285.781670][    C0]     pending: work_fn
[  285.781804][    C0] workqueue ipv6_addrconf: flags=0x40008
[  285.799193][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/1 refcnt=3
[  285.799247][    C0]     pending: addrconf_verify_work
[  285.799276][    C0]     inactive: addrconf_verify_work
[  285.799300][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/1 refcnt=5
[  285.799339][    C0]     pending: addrconf_verify_work
[  285.799363][    C0]     inactive: addrconf_verify_work, addrconf_verify_work, addrconf_verify_work
[  285.799787][    C0] workqueue wg-kex-wg0: flags=0x6
[  285.844600][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[  285.844651][    C0]     pending: wg_packet_handshake_send_worker
[  285.844685][    C0] workqueue wg-crypt-wg0: flags=0x28
[  285.863374][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  285.863425][    C0]     pending: wg_packet_encrypt_worker
[  285.863459][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  285.863498][    C0]     pending: wg_packet_encrypt_worker
[  285.863529][    C0] workqueue wg-crypt-wg1: flags=0x28
[  285.895247][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  285.895298][    C0]     pending: wg_packet_encrypt_worker
[  285.895331][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  285.895370][    C0]     pending: wg_packet_encrypt_worker
[  285.895400][    C0] workqueue wg-kex-wg2: flags=0x6
[  285.927201][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[  285.927247][    C0]     pending: wg_packet_handshake_send_worker
[  285.927281][    C0] workqueue wg-crypt-wg2: flags=0x28
[  285.945954][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  285.946006][    C0]     pending: wg_packet_encrypt_worker
[  285.946037][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  285.946077][    C0]     pending: wg_packet_encrypt_worker
[  285.946104][    C0] workqueue wg-kex-wg0: flags=0x6
[  285.977661][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[  285.977711][    C0]     pending: wg_packet_handshake_send_worker
[  285.977745][    C0] workqueue wg-crypt-wg0: flags=0x28
[  285.996434][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  285.996485][    C0]     pending: wg_packet_encrypt_worker
[  285.996517][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  285.996554][    C0]     pending: wg_packet_encrypt_worker
[  285.996584][    C0] workqueue wg-kex-wg1: flags=0x6
[  286.028058][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[  286.028106][    C0]     pending: wg_packet_handshake_send_worker
[  286.028138][    C0] workqueue wg-crypt-wg1: flags=0x28
[  286.046819][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  286.046870][    C0]     pending: wg_packet_encrypt_worker
[  286.046901][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  286.046941][    C0]     pending: wg_packet_encrypt_worker
[  286.046969][    C0] workqueue wg-crypt-wg2: flags=0x28
[  286.078658][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=2/256 refcnt=3
[  286.078708][    C0]     pending: wg_packet_decrypt_worker, wg_packet_encrypt_worker
[  286.078759][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  286.078801][    C0]     pending: wg_packet_encrypt_worker
[  286.078918][    C0] workqueue wg-crypt-wg0: flags=0x28
[  286.112897][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  286.112946][    C0]     pending: wg_packet_encrypt_worker
[  286.112986][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  286.113024][    C0]     pending: wg_packet_encrypt_worker
[  286.113184][    C0] workqueue wg-crypt-wg1: flags=0x28
[  286.144894][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  286.144945][    C0]     pending: wg_packet_encrypt_worker
[  286.144979][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  286.145017][    C0]     pending: wg_packet_encrypt_worker
[  286.145047][    C0] workqueue wg-kex-wg2: flags=0x6
[  286.177195][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[  286.177242][    C0]     pending: wg_packet_handshake_send_worker
[  286.177276][    C0] workqueue wg-crypt-wg2: flags=0x28
[  286.195961][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  286.196015][    C0]     pending: wg_packet_encrypt_worker
[  286.196047][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  286.196089][    C0]     pending: wg_packet_encrypt_worker
[  286.196121][    C0] pool 2: cpus=1 node=0 flags=0x0 nice=0 hung=164s workers=7 idle: 24 344 572 39 61 701