last executing test programs:

2.552962479s ago: executing program 0 (id=876):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000900)='./bus\x00', 0x0, &(0x7f0000004080), 0x1, 0x76f, &(0x7f0000002080)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='percpu_free_percpu\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x18, &(0x7f0000000040)={&(0x7f0000001a80)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021100011800c000100636f756e74657200500000000c0a01010000000000000000070000000900020073797a31000000000900010073797a300000000024000380200000800800034000000002"], 0xe4}, 0x1, 0x0, 0x0, 0x8040}, 0x4000)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]})
utime(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0)={0x2, 0x1})

2.274813874s ago: executing program 0 (id=878):
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x10, &(0x7f00000004c0)={[{@i_version}, {@nodiscard}, {@commit={'commit', 0x3d, 0xd68}}]}, 0x1, 0x3f7, &(0x7f0000003080)="$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")
pwritev2(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r2=>0x0})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r3 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_bp={0x0, 0x13}, 0x400, 0xffffffff, 0x6, 0x6, 0x0, 0x1, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x5, 0x3, &(0x7f0000000300)=ANY=[@ANYRES8=r3, @ANYRESOCT, @ANYRES32=r0, @ANYRES64=r2], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xffffff94, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
ioprio_get$pid(0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x70bd2a, 0x8000000, {0x0, 0x0, 0x0, r2, {0x1f, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x20008040}, 0x4000000)

2.024986028s ago: executing program 0 (id=883):
r0 = eventfd(0x0)
write$eventfd(r0, &(0x7f00000000c0)=0xfffffffffffffffe, 0x8)
unshare(0x20400)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x128)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmmsg$unix(r2, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40002020, 0x0)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(r3, 0x0)
write$selinux_load(0xffffffffffffffff, 0x0, 0x202d)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])

1.87014372s ago: executing program 4 (id=887):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0xffffffffffffff5e, &(0x7f0000000400)={&(0x7f0000000380)=@bridge_delneigh={0x30, 0x1d, 0x409, 0x70bd2d, 0x25dfdbfc, {0xa, 0x0, 0x0, 0x0, 0x31, 0xbd, 0x7}, [@NDA_DST_IPV6={0x14, 0x1, @remote}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x40090)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0x4}, {0x6}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x10, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r2, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r3 = socket$nl_sock_diag(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f00000012c0)=0x7, 0x4)
sendmsg$netlink(r3, &(0x7f0000001280)={&(0x7f0000000000)=@kern={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001240)=[{&(0x7f0000000040)={0x10}, 0x10}, {&(0x7f0000000080)={0x10, 0x2a, 0x1}, 0x10}], 0x2}, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)

1.784164742s ago: executing program 2 (id=889):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x1018000, &(0x7f00000003c0)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES16=0x0, @ANYRESOCT, @ANYRES32, @ANYRESDEC], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
fdatasync(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mlock2(&(0x7f0000004000/0x4000)=nil, 0x40ef, 0x0)
mlock2(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x80000000000)

1.682906493s ago: executing program 1 (id=890):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.current\x00', 0x275a, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10000})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1.617134034s ago: executing program 1 (id=891):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000, @void, @value}, 0x94)
r2 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
mount(0x0, &(0x7f0000000100)='.\x00', &(0x7f00000001c0)='hugetlbfs\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000002240)=""/237, 0xed, 0x619)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
unlink(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18080000000000000000000000000002850000000f000000a50000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

1.509500326s ago: executing program 1 (id=892):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x44, 0x10, 0xffffff1f, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1900}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @private=0xa010102}]}}}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x44}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x60, 0x10, 0xf11, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x20, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x1b, 0x1f}}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x88a8}]}}}, @IFLA_LINK={0x8, 0x5, r6}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x60}}, 0x0)

1.438771848s ago: executing program 2 (id=893):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_open_dev$loop(&(0x7f0000000000), 0x1d, 0xe8000)
ioctl$BLKRESETZONE(r1, 0x40101283, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext2\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f0000000f00)={[{@jqfmt_vfsold}, {}, {@sysvgroups}, {@errors_remount}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@orlov}, {@bh}, {@grpjquota_path={'grpjquota', 0x3d, './file0/file0'}}, {@nomblk_io_submit}], [{@uid_gt}, {@fowner_gt}, {@euid_lt}, {@fsuuid={'fsuuid', 0x3d, {[0x32, 0x37, 0x36, 0x32, 0x62, 0x30, 0x31, 0x65], 0x2d, [0x36, 0x39, 0x35, 0x35], 0x2d, [0x63, 0x39, 0x32, 0x38], 0x2d, [0x9c6f12566a07da1b, 0x63, 0x65, 0x36], 0x2d, [0x62, 0x32, 0x34, 0x64, 0x0, 0x64, 0x33, 0x39]}}}, {@context={'context', 0x3d, 'unconfined_u'}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}, {@fsmagic={'fsmagic', 0x3d, 0xd01}}]}, 0x3, 0x57c, &(0x7f0000000840)="$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")
rename(0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0/file0/file0\x00', 0x81c0, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x10, &(0x7f0000000680), 0x1, 0x254, &(0x7f00000006c0)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r2, 0x400, 0x1)
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')

1.368357738s ago: executing program 3 (id=894):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0xc0189436, &(0x7f0000000000)={'xfrm0\x00', @local})
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
set_mempolicy(0x3, &(0x7f0000000040)=0xfff, 0x5)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
r3 = syz_open_dev$vcsa(&(0x7f0000000080), 0x5f71, 0x80000)
poll(&(0x7f00000003c0)=[{0xffffffffffffffff, 0x508}, {r2, 0xd}, {r3, 0x100}, {r2, 0x270}, {}, {r0, 0xd0b4}, {0xffffffffffffffff, 0x41}, {0xffffffffffffffff, 0xa062}, {r0, 0x3002}], 0x9, 0x8)
pread64(r2, &(0x7f0000001240)=""/102400, 0x200000, 0x0)
keyctl$get_security(0x11, 0x0, 0x0, 0x0)

1.274159359s ago: executing program 2 (id=895):
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r4 = dup3(r1, r0, 0x80000)
recvmmsg$unix(r0, &(0x7f0000000ec0)=[{{0x0, 0x0, &(0x7f0000000f80)=[{&(0x7f0000000740)=""/128, 0x80}], 0x1}}], 0x1, 0x2101, 0x0)
recvmmsg(r4, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

1.209536761s ago: executing program 1 (id=896):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r4, &(0x7f0000004200)='t', 0x1)
sendfile(r4, r3, 0x0, 0x7ffff000)
fallocate(r2, 0x0, 0x0, 0x1001f0)

1.142651862s ago: executing program 0 (id=897):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000900)='./bus\x00', 0x0, &(0x7f0000004080), 0x1, 0x76f, &(0x7f0000002080)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='percpu_free_percpu\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x18, &(0x7f0000000040)={&(0x7f0000001a80)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021100011800c000100636f756e74657200500000000c0a01010000000000000000070000000900020073797a31000000000900010073797a300000000024000380200000800800034000000002"], 0xe4}, 0x1, 0x0, 0x0, 0x8040}, 0x4000)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]})
utime(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0)={0x2, 0x1})

916.389856ms ago: executing program 1 (id=898):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r2, @ANYBLOB="0000400000000002280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="2800000014002101000000000000000002200000", @ANYRES32=r2, @ANYBLOB="08000400ffffffff08000200e0"], 0x28}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400210100000000000000000200"], 0x28}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x20, 0x0, 0x0, r5}}, 0x18}, 0x1, 0x0, 0x0, 0x11}, 0x0)

916.175336ms ago: executing program 2 (id=899):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x8205, &(0x7f0000000e00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@data_err_abort}, {@bsdgroups}, {@errors_remount}, {@discard}, {@noblock_validity}, {@barrier}, {@journal_dev={'journal_dev', 0x3d, 0xf35}}]}, 0x1, 0x618, &(0x7f0000000640)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=@newqdisc={0x48, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xffe0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x14, 0x2, [@TCA_FQ_CODEL_CE_THRESHOLD={0x8, 0x7, 0x4}, @TCA_FQ_CODEL_CE_THRESHOLD_SELECTOR={0x5, 0xa, 0x3}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

915.933326ms ago: executing program 4 (id=900):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040), 0x10)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r2}, 0x18)
listen(r0, 0x0)
r3 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r3, &(0x7f0000000080), 0x10)
setsockopt$sock_linger(r3, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x5}, 0x8)
sendmmsg(r3, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094)

915.778385ms ago: executing program 0 (id=908):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x1000401, &(0x7f0000000100)={[{@user_xattr}, {@data_err_ignore}, {@noblock_validity}]}, 0x84, 0x497, &(0x7f0000000240)="$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")
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, 0x0, 0x0, 0x737)
open(&(0x7f0000000100)='./file0\x00', 0x109042, 0x21)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x80)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x103300, 0x98)
fcntl$setlease(r2, 0x400, 0x1)
open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
getdents64(r1, 0x0, 0x0)

844.157896ms ago: executing program 4 (id=901):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x1000002, &(0x7f0000000780)={[{@noblock_validity}, {}, {@sysvgroups}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x1, 0x56a, &(0x7f00000015c0)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180300000005000000000000000000001801000011af000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000d5030000020000838500000071000000180100002020752500000000806020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='ext4_mb_release_inode_pa\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
write$cgroup_int(r1, &(0x7f0000000200), 0x43451)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='ext4_mb_release_inode_pa\x00', r2}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)

501.295442ms ago: executing program 1 (id=902):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8})
fcntl$lock(r3, 0x26, &(0x7f0000000080)={0x1, 0x0, 0x2007, 0x1fd})
fcntl$lock(r3, 0x7, &(0x7f0000000280)={0x1, 0x0, 0x2f, 0x9})

442.598313ms ago: executing program 3 (id=903):
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000005c0)={[{@nogrpid}, {@min_batch_time}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8000)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = open(&(0x7f00000001c0)='./file2\x00', 0x86442, 0x0)
dup3(r1, r0, 0x0)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
io_setup(0x2, &(0x7f0000000400)=<r2=>0x0)
io_submit(r2, 0x3f0a, &(0x7f0000000540)=[&(0x7f00000000c0)={0xf04aef, 0x3d8, 0x4, 0x0, 0x0, r0, &(0x7f0000000000), 0x200a00}])
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x4850, 0x0, 0x0)

366.397704ms ago: executing program 2 (id=904):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x40640, 0x61)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000000)={0x1})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x26, &(0x7f0000000380)={0x0, 0x1, 0x78, 0x1})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000140)={0x1, 0x0, 0x78, 0x10})
close_range(r0, 0xffffffffffffffff, 0x0)

363.606354ms ago: executing program 4 (id=905):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="04000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r4, &(0x7f0000004200)='t', 0x1)
sendfile(r4, r3, 0x0, 0x7ffff000)
fallocate(r2, 0x0, 0x0, 0x1001f0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)

362.474844ms ago: executing program 0 (id=906):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0xf)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_bp={0x0, 0x13}, 0x2, 0xffffffff, 0x6, 0x6, 0x4, 0x1, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="458d", 0x2}], 0x1)
r4 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmsg(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x22}], 0x1}, 0x4c2103a0)

224.829116ms ago: executing program 2 (id=907):
unshare(0x20000400)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000340)={@local, @broadcast, @void, {@ipv4={0x4305, @icmp={{0x5, 0x4, 0x0, 0xa, 0x30, 0x0, 0x0, 0x0, 0x21, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @redirect={0x5, 0x0, 0x0, @remote={0x5}, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @dev}}}}}}, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$lock(r2, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r2, 0x26, &(0x7f00000031c0))

224.531987ms ago: executing program 3 (id=909):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0a0000000400000008000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

144.960398ms ago: executing program 4 (id=910):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.current\x00', 0x275a, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10000})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

128.437918ms ago: executing program 3 (id=911):
r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xb, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$cgroup_procs(r0, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000080), 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000040)=ANY=[@ANYBLOB='+pid'], 0x6)

95.788389ms ago: executing program 4 (id=912):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4, 0x0, 0x7}, 0x18)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000b40)=@raw={'raw\x00', 0x3c1, 0x3, 0x520, 0x0, 0x9403, 0x0, 0x340, 0x2c0, 0x450, 0x3d8, 0x3d8, 0x450, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@hashlimit3={{0x158}, {'syz_tun\x00', {0xffffffffffffffff, 0x7, 0xa, 0x0, 0x0, 0x1, 0x6}}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@TCPOPTSTRIP={0x40}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x580)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000200), 0x4)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

95.007369ms ago: executing program 3 (id=922):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r2}, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000100)={'vlan0\x00', 0x400})

0s ago: executing program 3 (id=913):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

kernel console output (not intermixed with test programs):

 T3302] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.546281][ T3300] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   31.576477][   T29] audit: type=1400 audit(1742751891.230:119): avc:  denied  { read write } for  pid=3300 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   31.577814][ T3299] veth0_macvtap: entered promiscuous mode
[   31.618836][ T3441] syz.3.4 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   31.637512][ T3299] veth1_macvtap: entered promiscuous mode
[   31.667800][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   31.678343][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.688237][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   31.698689][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.708623][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   31.719076][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.728936][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   31.739429][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.750116][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_0
[   31.759006][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   31.769631][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.779568][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   31.790079][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.799940][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   31.810556][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.820510][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   31.831066][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.847930][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_1
[   31.905127][ T3299] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.913874][ T3299] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.922689][ T3299] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.925107][    C1] hrtimer: interrupt took 49823 ns
[   31.931410][ T3299] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.044564][ T3461] syz.0.7 (3461) used greatest stack depth: 10856 bytes left
[   32.103560][ T3478] veth1_to_team: entered promiscuous mode
[   32.119534][ T3478] team0: Port device team_slave_1 removed
[   32.181355][ T3490] loop1: detected capacity change from 0 to 1024
[   32.188023][ T3490] =======================================================
[   32.188023][ T3490] WARNING: The mand mount option has been deprecated and
[   32.188023][ T3490]          and is ignored by this kernel. Remove the mand
[   32.188023][ T3490]          option from the mount to silence this warning.
[   32.188023][ T3490] =======================================================
[   32.228044][ T3490] EXT4-fs: Ignoring removed nobh option
[   32.233739][ T3490] EXT4-fs: inline encryption not supported
[   32.239678][ T3490] EXT4-fs: Ignoring removed bh option
[   32.256220][ T3490] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   32.281227][ T3490] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm syz.1.17: Allocating blocks 497-513 which overlap fs metadata
[   32.295614][ T3490] EXT4-fs (loop1): Remounting filesystem read-only
[   32.304911][ T3489] EXT4-fs (loop1): pa ffff88810709d070: logic 128, phys. 273, len 15
[   32.323039][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.426569][ T3498] syz.1.19 (3498) used greatest stack depth: 10800 bytes left
[   32.653318][ T3504] loop1: detected capacity change from 0 to 256
[   32.660314][ T3504] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   32.726565][ T3511] loop3: detected capacity change from 0 to 1024
[   32.732333][ T3513] loop1: detected capacity change from 0 to 512
[   32.740585][ T3513] ext4: Unknown parameter 'fowner<00000000000000000000'
[   32.749519][ T3511] EXT4-fs: Invalid want_extra_isize 1610612736
[   33.104724][ T3528] pim6reg1: entered promiscuous mode
[   33.110111][ T3528] pim6reg1: entered allmulticast mode
[   33.194952][ T3532] loop4: detected capacity change from 0 to 2048
[   33.208204][ T3532] EXT4-fs: Ignoring removed mblk_io_submit option
[   33.255347][ T3532] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.345370][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.582000][ T3546] Zero length message leads to an empty skb
[   33.685945][ T3552] loop4: detected capacity change from 0 to 1024
[   33.693168][ T3552] EXT4-fs: Ignoring removed bh option
[   33.730902][ T3552] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.783292][ T1856] bond0: (slave bond_slave_0): interface is now down
[   33.790087][ T1856] bond0: (slave bond_slave_1): interface is now down
[   33.804992][ T3558] netlink: 'syz.2.44': attribute type 10 has an invalid length.
[   33.816858][ T1856] bond0: (slave bond_slave_0): interface is now down
[   33.823585][ T1856] bond0: (slave bond_slave_1): interface is now down
[   33.843408][ T3558] syz_tun: entered promiscuous mode
[   33.849751][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.852463][ T3558] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   33.874872][ T1856] bond0: (slave bond_slave_0): interface is now down
[   33.881629][ T1856] bond0: (slave bond_slave_1): interface is now down
[   33.888461][ T1856] bond0: (slave syz_tun): interface is now down
[   33.931532][ T1856] bond0: now running without any active interface!
[   34.014147][ T3568] loop1: detected capacity change from 0 to 1024
[   34.033152][ T3568] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   34.044259][ T3568] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   34.064313][ T3568] JBD2: no valid journal superblock found
[   34.070228][ T3568] EXT4-fs (loop1): Could not load journal inode
[   34.100579][ T3568] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[   34.160188][ T3541] syz.0.37 (3541) used greatest stack depth: 9920 bytes left
[   34.194892][ T3579] netlink: 28 bytes leftover after parsing attributes in process `syz.0.54'.
[   34.207390][ T3579] netlink: 28 bytes leftover after parsing attributes in process `syz.0.54'.
[   34.283707][ T3587] syz.1.58 uses obsolete (PF_INET,SOCK_PACKET)
[   34.309767][ T3589] netlink: 4 bytes leftover after parsing attributes in process `syz.3.59'.
[   34.359414][ T3593] loop0: detected capacity change from 0 to 2048
[   34.382665][ T3595] loop3: detected capacity change from 0 to 2048
[   34.412796][ T3595] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.426957][ T3593]  loop0: p3 p4 < >
[   34.442251][ T3602] netlink: 24 bytes leftover after parsing attributes in process `syz.2.64'.
[   34.501754][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.505752][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.518156][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.525813][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.533605][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.541104][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.548664][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.556149][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.563584][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.571376][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.578816][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.586249][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.593645][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.601220][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.608781][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.618138][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.625670][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.633067][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.640524][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.647956][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.655372][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.662766][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.670195][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.677723][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.679887][ T3616] loop3: detected capacity change from 0 to 128
[   34.685313][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.698898][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.706356][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.713755][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.721223][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.729746][   T36] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   34.754622][ T3617] syz.3.68: attempt to access beyond end of device
[   34.754622][ T3617] loop3: rw=2049, sector=153, nr_sectors = 8 limit=128
[   34.776928][ T3617] syz.3.68: attempt to access beyond end of device
[   34.776928][ T3617] loop3: rw=2049, sector=169, nr_sectors = 8 limit=128
[   34.798351][ T3617] syz.3.68: attempt to access beyond end of device
[   34.798351][ T3617] loop3: rw=2049, sector=185, nr_sectors = 8 limit=128
[   34.821983][ T3617] syz.3.68: attempt to access beyond end of device
[   34.821983][ T3617] loop3: rw=2049, sector=201, nr_sectors = 8 limit=128
[   34.822259][ T3621] loop2: detected capacity change from 0 to 512
[   34.859064][ T3617] syz.3.68: attempt to access beyond end of device
[   34.859064][ T3617] loop3: rw=2049, sector=217, nr_sectors = 8 limit=128
[   34.878845][ T3617] syz.3.68: attempt to access beyond end of device
[   34.878845][ T3617] loop3: rw=2049, sector=233, nr_sectors = 8 limit=128
[   34.892390][ T3617] syz.3.68: attempt to access beyond end of device
[   34.892390][ T3617] loop3: rw=2049, sector=249, nr_sectors = 8 limit=128
[   34.906101][ T3617] syz.3.68: attempt to access beyond end of device
[   34.906101][ T3617] loop3: rw=2049, sector=265, nr_sectors = 8 limit=128
[   34.919787][ T3617] syz.3.68: attempt to access beyond end of device
[   34.919787][ T3617] loop3: rw=2049, sector=281, nr_sectors = 8 limit=128
[   34.920163][ T3621] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   34.933449][ T3617] syz.3.68: attempt to access beyond end of device
[   34.933449][ T3617] loop3: rw=2049, sector=297, nr_sectors = 8 limit=128
[   34.970831][ T3621] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.991136][ T3625] process 'syz.4.72' launched 'kmem_cache_free' with NULL argv: empty string added
[   35.083187][ T3631] loop3: detected capacity change from 0 to 2048
[   35.103675][ T3631] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.143240][ T3631] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   35.267874][ T3644] loop4: detected capacity change from 0 to 8192
[   35.582745][ T3645] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.75: bg 0: block 345: padding at end of block bitmap is not set
[   35.623203][ T3645] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[   35.635808][ T3645] EXT4-fs (loop3): This should not happen!! Data will be lost
[   35.635808][ T3645] 
[   35.692704][ T3658] infiniband syz!: set active
[   35.697465][ T3658] infiniband syz!: added team_slave_0
[   35.709610][ T3645] syz.3.75 (3645) used greatest stack depth: 9152 bytes left
[   35.735956][   T31] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[   35.748680][   T31] EXT4-fs (loop3): This should not happen!! Data will be lost
[   35.748680][   T31] 
[   35.756915][ T3658] RDS/IB: syz!: added
[   35.762516][ T3658] smc: adding ib device syz! with port count 1
[   35.769818][ T3658] smc:    ib device syz! port 1 has pnetid 
[   35.913022][   T31] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[   35.925792][   T31] EXT4-fs (loop3): This should not happen!! Data will be lost
[   35.925792][   T31] 
[   35.935637][   T31] EXT4-fs (loop3): Total free blocks count 0
[   35.941626][   T31] EXT4-fs (loop3): Free/Dirty block details
[   35.947578][   T31] EXT4-fs (loop3): free_blocks=0
[   36.057260][ T3662] netlink: 56 bytes leftover after parsing attributes in process `syz.4.86'.
[   36.179069][ T3670] loop4: detected capacity change from 0 to 512
[   36.206967][ T3670] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   36.230643][   T29] kauditd_printk_skb: 239 callbacks suppressed
[   36.230660][   T29] audit: type=1400 audit(1742751895.880:359): avc:  denied  { setopt } for  pid=3675 comm="syz.3.91" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   36.261988][ T3674] netlink: 28 bytes leftover after parsing attributes in process `syz.2.92'.
[   36.270831][ T3674] netlink: 28 bytes leftover after parsing attributes in process `syz.2.92'.
[   36.272125][ T3670] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.295556][ T3670] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   36.310801][ T3680] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3680 comm=syz.1.93
[   36.334979][   T29] audit: type=1400 audit(1742751895.960:360): avc:  denied  { bind } for  pid=3675 comm="syz.3.91" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   36.354052][   T29] audit: type=1400 audit(1742751895.990:361): avc:  denied  { setattr } for  pid=3669 comm="syz.4.89" name="file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   36.387402][ T3680] netlink: 'syz.1.93': attribute type 1 has an invalid length.
[   36.400675][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.439974][ T3680] vlan2: entered promiscuous mode
[   36.445511][ T3680] macvlan0: entered promiscuous mode
[   36.446951][   T29] audit: type=1400 audit(1742751896.090:362): avc:  denied  { mount } for  pid=3685 comm="syz.4.94" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   36.451209][ T3680] vlan2: entered allmulticast mode
[   36.477707][ T3680] macvlan0: entered allmulticast mode
[   36.483153][ T3680] veth1_vlan: entered allmulticast mode
[   36.490118][   T29] audit: type=1400 audit(1742751896.140:363): avc:  denied  { unmount } for  pid=3302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   36.562130][   T29] audit: type=1326 audit(1742751896.190:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3653 comm="syz.0.83" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   36.585442][   T29] audit: type=1326 audit(1742751896.190:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3653 comm="syz.0.83" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   36.628961][ T3693] loop4: detected capacity change from 0 to 1024
[   36.642322][   T29] audit: type=1400 audit(1742751896.270:366): avc:  denied  { connect } for  pid=3690 comm="syz.1.97" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   36.661744][   T29] audit: type=1400 audit(1742751896.270:367): avc:  denied  { write } for  pid=3690 comm="syz.1.97" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   36.699749][ T3693] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.732194][   T29] audit: type=1326 audit(1742751896.380:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3653 comm="syz.0.83" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   36.735376][ T3693] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[   36.891804][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.976953][ T3723] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   36.991965][ T3723] ip6gretap0: entered promiscuous mode
[   36.998232][ T3723] vlan2: entered promiscuous mode
[   37.028857][ T3723] ip6gretap0: left promiscuous mode
[   37.734235][ T3746] netlink: 20 bytes leftover after parsing attributes in process `syz.4.112'.
[   38.142504][ T3748] vlan2: entered allmulticast mode
[   38.199483][ T3749] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   38.219107][ T3749] vhci_hcd: invalid port number 186
[   38.224401][ T3749] vhci_hcd: default hub control req: 4014 v0008 i00ba l0
[   38.253876][ T3751] loop4: detected capacity change from 0 to 128
[   38.372991][ T3762] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   38.441566][ T3768] mmap: syz.1.124 (3768) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   38.463502][ T3768] loop1: detected capacity change from 0 to 1024
[   38.478192][ T3768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.519112][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.556414][ T3781] netlink: 8 bytes leftover after parsing attributes in process `syz.0.129'.
[   38.584864][ T3783] tun0: tun_chr_ioctl cmd 1074025678
[   38.590266][ T3783] tun0: group set to 0
[   38.612469][ T3785] netlink: 140 bytes leftover after parsing attributes in process `syz.4.130'.
[   38.645669][ T3791] netlink: 'syz.3.133': attribute type 1 has an invalid length.
[   38.670005][ T3791] gretap1: entered promiscuous mode
[   38.692330][ T3796] netlink: 'syz.0.137': attribute type 7 has an invalid length.
[   38.732100][ T3800] vlan2: entered promiscuous mode
[   38.796137][ T3798] pim6reg1: entered promiscuous mode
[   38.801591][ T3798] pim6reg1: entered allmulticast mode
[   38.811936][ T3808] loop1: detected capacity change from 0 to 512
[   38.846143][ T3808] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.860198][ T3808] ext4 filesystem being mounted at /36/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   38.920119][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.986117][ T3821] loop1: detected capacity change from 0 to 512
[   39.007429][ T3821] EXT4-fs (loop1): orphan cleanup on readonly fs
[   39.065746][ T3821] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.145: bg 0: block 248: padding at end of block bitmap is not set
[   39.080390][ T3821] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.145: Failed to acquire dquot type 1
[   39.119460][ T3821] EXT4-fs (loop1): 1 truncate cleaned up
[   39.125888][ T3821] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   39.151520][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.252865][ T3836] pim6reg1: entered promiscuous mode
[   39.258291][ T3836] pim6reg1: entered allmulticast mode
[   39.449864][ T3863] __nla_validate_parse: 2 callbacks suppressed
[   39.449882][ T3863] netlink: 4 bytes leftover after parsing attributes in process `syz.2.164'.
[   39.520521][ T3869] ref_ctr_offset mismatch. inode: 0xae offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x6
[   39.851232][ T3905] bond_slave_0: entered promiscuous mode
[   39.856986][ T3905] bond_slave_1: entered promiscuous mode
[   39.865467][ T3905] bond_slave_0: left promiscuous mode
[   39.870949][ T3905] bond_slave_1: left promiscuous mode
[   40.683845][ T3975] netlink: 8 bytes leftover after parsing attributes in process `syz.2.212'.
[   40.696950][ T3975] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.752266][ T3975] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.818078][ T3975] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.877543][ T3975] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.932406][ T3975] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.943557][ T3975] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.954518][ T3975] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.966012][ T3975] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.010733][ T3977] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   41.019758][ T3977] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   41.090400][ T3983] 7BՍ֕: renamed from syzkaller0
[   41.144256][ T3987] netlink: 'syz.3.218': attribute type 6 has an invalid length.
[   41.157738][   T10] IPVS: starting estimator thread 0...
[   41.227909][ T3994] loop4: detected capacity change from 0 to 1024
[   41.243984][   T29] kauditd_printk_skb: 211 callbacks suppressed
[   41.244001][   T29] audit: type=1326 audit(1742751900.890:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3993 comm="syz.4.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f2e44fbbdca code=0x7ffc0000
[   41.247099][ T3994] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.251924][   T29] audit: type=1326 audit(1742751900.890:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3993 comm="syz.4.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f2e44fbbdca code=0x7ffc0000
[   41.311626][ T3992] IPVS: using max 2544 ests per chain, 127200 per kthread
[   41.336849][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.337484][   T29] audit: type=1326 audit(1742751900.890:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3993 comm="syz.4.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f2e44fbb9d7 code=0x7ffc0000
[   41.369130][   T29] audit: type=1326 audit(1742751900.890:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3993 comm="syz.4.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f2e44fbe90a code=0x7ffc0000
[   41.392437][   T29] audit: type=1326 audit(1742751900.930:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3993 comm="syz.4.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2e44fbbad0 code=0x7ffc0000
[   41.415844][   T29] audit: type=1326 audit(1742751900.930:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3993 comm="syz.4.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f2e44fbbeb7 code=0x7ffc0000
[   41.439019][   T29] audit: type=1326 audit(1742751900.930:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3993 comm="syz.4.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2e44fbbad0 code=0x7ffc0000
[   41.462466][   T29] audit: type=1326 audit(1742751900.930:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3993 comm="syz.4.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e44fbd169 code=0x7ffc0000
[   41.485809][   T29] audit: type=1326 audit(1742751900.930:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3993 comm="syz.4.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f2e44fbd169 code=0x7ffc0000
[   41.509028][   T29] audit: type=1326 audit(1742751900.930:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3993 comm="syz.4.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e44fbd169 code=0x7ffc0000
[   41.647059][ T4017] netlink: 8 bytes leftover after parsing attributes in process `syz.0.230'.
[   41.675472][ T4017] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.763108][ T4017] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.866995][ T4017] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.957074][ T4017] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.050777][ T4017] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   42.089477][ T4017] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   42.117987][ T4017] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   42.137830][ T4017] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   42.226764][ T4039] SELinux:  Context Ü is not valid (left unmapped).
[   42.319827][ T4047] SELinux: syz.4.240 (4047) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   42.428602][ T4058] netlink: 'syz.3.246': attribute type 4 has an invalid length.
[   42.532987][ T4061] infiniband syz0: set active
[   42.537797][ T4061] infiniband syz0: added bond0
[   42.593476][ T4064] loop4: detected capacity change from 0 to 1024
[   42.607825][ T4064] EXT4-fs: Ignoring removed nobh option
[   42.613525][ T4064] EXT4-fs: Ignoring removed bh option
[   42.619840][ T4061] RDS/IB: syz0: added
[   42.623922][ T4061] smc: adding ib device syz0 with port count 1
[   42.644587][ T4061] smc:    ib device syz0 port 1 has pnetid 
[   42.707043][ T4064] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.738205][ T4064] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   42.747882][ T4064] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   42.778477][ T4075] capability: warning: `syz.2.253' uses 32-bit capabilities (legacy support in use)
[   43.079663][ T4100] netlink: 24 bytes leftover after parsing attributes in process `syz.1.262'.
[   43.200381][ T4078] smc: removing ib device syz!
[   43.464221][ T4117] netlink: 'syz.0.269': attribute type 4 has an invalid length.
[   43.532775][ T4119] loop0: detected capacity change from 0 to 1024
[   43.540686][ T4119] EXT4-fs: Ignoring removed orlov option
[   43.546597][ T4119] EXT4-fs: Ignoring removed nomblk_io_submit option
[   43.578599][ T4119] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.598467][ T4123] loop1: detected capacity change from 0 to 128
[   43.604485][ T4119] netlink: 12 bytes leftover after parsing attributes in process `syz.0.270'.
[   43.628617][ T4119] netlink: 12 bytes leftover after parsing attributes in process `syz.0.270'.
[   43.674492][ T4125] Falling back ldisc for ttyS3.
[   43.699038][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.775364][ T4123] bio_check_eod: 100 callbacks suppressed
[   43.775404][ T4123] syz.1.271: attempt to access beyond end of device
[   43.775404][ T4123] loop1: rw=2049, sector=153, nr_sectors = 8 limit=128
[   43.799768][ T4133] bridge0: entered promiscuous mode
[   43.807953][ T4133] bridge0: port 3(macsec1) entered blocking state
[   43.814475][ T4133] bridge0: port 3(macsec1) entered disabled state
[   43.824195][ T4133] macsec1: entered allmulticast mode
[   43.829550][ T4133] bridge0: entered allmulticast mode
[   43.836512][ T4123] syz.1.271: attempt to access beyond end of device
[   43.836512][ T4123] loop1: rw=2049, sector=169, nr_sectors = 8 limit=128
[   43.850364][ T4133] macsec1: left allmulticast mode
[   43.855570][ T4133] bridge0: left allmulticast mode
[   43.862711][ T4133] bridge0: left promiscuous mode
[   43.888933][ T4123] syz.1.271: attempt to access beyond end of device
[   43.888933][ T4123] loop1: rw=2049, sector=185, nr_sectors = 8 limit=128
[   43.902731][ T4123] syz.1.271: attempt to access beyond end of device
[   43.902731][ T4123] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[   43.918118][ T4123] syz.1.271: attempt to access beyond end of device
[   43.918118][ T4123] loop1: rw=2049, sector=217, nr_sectors = 8 limit=128
[   43.939217][ T4123] syz.1.271: attempt to access beyond end of device
[   43.939217][ T4123] loop1: rw=2049, sector=233, nr_sectors = 8 limit=128
[   43.952804][ T4123] syz.1.271: attempt to access beyond end of device
[   43.952804][ T4123] loop1: rw=2049, sector=249, nr_sectors = 8 limit=128
[   43.967683][ T4123] syz.1.271: attempt to access beyond end of device
[   43.967683][ T4123] loop1: rw=2049, sector=265, nr_sectors = 8 limit=128
[   43.996621][ T4123] syz.1.271: attempt to access beyond end of device
[   43.996621][ T4123] loop1: rw=2049, sector=281, nr_sectors = 8 limit=128
[   44.010862][ T4123] syz.1.271: attempt to access beyond end of device
[   44.010862][ T4123] loop1: rw=2049, sector=297, nr_sectors = 8 limit=128
[   44.061953][ T4141] netlink: 8 bytes leftover after parsing attributes in process `syz.3.279'.
[   44.100823][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.111655][ T4143] netlink: 4 bytes leftover after parsing attributes in process `syz.2.278'.
[   44.122716][ T4143] netlink: 12 bytes leftover after parsing attributes in process `syz.2.278'.
[   44.182740][ T4149] ip6gre1: entered allmulticast mode
[   44.247918][ T4156] loop4: detected capacity change from 0 to 512
[   44.274865][ T4157] netlink: 16 bytes leftover after parsing attributes in process `syz.3.283'.
[   44.315160][ T4156] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[   45.034936][ T4200] serio: Serial port ptm0
[   45.160867][ T4210] loop2: detected capacity change from 0 to 128
[   45.260724][ T4217] loop3: detected capacity change from 0 to 2048
[   45.289107][ T4219] loop2: detected capacity change from 0 to 512
[   45.304921][ T4219] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.311: bg 0: block 35: padding at end of block bitmap is not set
[   45.320140][ T4217]  loop3: p1 < > p4
[   45.328052][ T4217] loop3: p4 size 8388608 extends beyond EOD, truncated
[   45.339425][ T4219] EXT4-fs (loop2): Remounting filesystem read-only
[   45.348840][ T4219] EXT4-fs (loop2): 1 truncate cleaned up
[   45.359859][ T4219] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.376658][ T4219] SELinux: (dev loop2, type ext4) getxattr errno 5
[   45.392640][ T3002]  loop3: p1 < > p4
[   45.397187][ T4219] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.408343][ T3002] loop3: p4 size 8388608 extends beyond EOD, truncated
[   45.421380][ T4219] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4219 comm=syz.2.311
[   45.434000][ T4219] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4219 comm=syz.2.311
[   45.469662][ T3479] udevd[3479]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   45.470592][ T3618] udevd[3618]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   45.534684][ T4227] Falling back ldisc for ttyS3.
[   46.385125][ T4256] 9pnet: p9_errstr2errno: server reported unknown error �@í
[   46.423250][   T29] kauditd_printk_skb: 523 callbacks suppressed
[   46.423269][   T29] audit: type=1326 audit(1742751906.070:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4260 comm="syz.1.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   46.455445][   T29] audit: type=1326 audit(1742751906.070:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4260 comm="syz.1.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   46.484740][   T29] audit: type=1326 audit(1742751906.110:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4260 comm="syz.1.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   46.516431][ T4264] loop1: detected capacity change from 0 to 512
[   46.672108][   T29] audit: type=1326 audit(1742751906.180:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4265 comm="syz.2.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5971ad169 code=0x7ffc0000
[   46.695611][   T29] audit: type=1326 audit(1742751906.180:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4265 comm="syz.2.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5971ad169 code=0x7ffc0000
[   46.718965][   T29] audit: type=1326 audit(1742751906.180:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4265 comm="syz.2.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fa5971ad169 code=0x7ffc0000
[   46.742233][   T29] audit: type=1326 audit(1742751906.180:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4265 comm="syz.2.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5971ad169 code=0x7ffc0000
[   46.765655][   T29] audit: type=1326 audit(1742751906.180:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4265 comm="syz.2.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fa5971ad169 code=0x7ffc0000
[   46.788984][   T29] audit: type=1400 audit(1742751906.180:1119): avc:  denied  { mount } for  pid=4265 comm="syz.2.330" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   46.810845][   T29] audit: type=1326 audit(1742751906.180:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4265 comm="syz.2.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5971ad169 code=0x7ffc0000
[   46.896607][ T4264] EXT4-fs (loop1): orphan cleanup on readonly fs
[   46.903221][ T4264] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13
[   46.916080][ T4264] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[   46.990725][ T4285] loop4: detected capacity change from 0 to 128
[   47.084297][ T4264] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.328: attempt to clear invalid blocks 2 len 1
[   47.151537][ T4264] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.328: invalid indirect mapped block 1819239214 (level 0)
[   47.191779][ T4264] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.328: invalid indirect mapped block 1819239214 (level 1)
[   47.207470][ T4264] EXT4-fs (loop1): 1 truncate cleaned up
[   47.213703][ T4264] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   47.238197][ T4291] loop4: detected capacity change from 0 to 2048
[   47.269582][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.303902][ T4297] loop1: detected capacity change from 0 to 512
[   47.326074][ T4291] Alternate GPT is invalid, using primary GPT.
[   47.332537][ T4291]  loop4: p1 p2 p3
[   47.338111][ T4297] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.360640][ T3002] Alternate GPT is invalid, using primary GPT.
[   47.367116][ T3002]  loop4: p1 p2 p3
[   47.377474][ T4297] ext4 filesystem being mounted at /78/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.449980][ T4297] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #18: comm syz.1.340: corrupted inode contents
[   47.469622][ T4297] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #18: comm syz.1.340: mark_inode_dirty error
[   47.499809][ T4297] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #18: comm syz.1.340: corrupted inode contents
[   47.512194][ T4297] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3006: inode #18: comm syz.1.340: mark_inode_dirty error
[   47.525971][ T4297] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3009: inode #18: comm syz.1.340: mark inode dirty (error -117)
[   47.539078][ T4297] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -117)
[   47.560414][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.629505][ T4304] netlink: 8 bytes leftover after parsing attributes in process `syz.4.343'.
[   47.638743][ T4304] IPVS: Error joining to the multicast group
[   47.716401][ T4310] SELinux: ebitmap: truncated map
[   47.723748][ T4310] SELinux: failed to load policy
[   47.796744][ T4318] bridge_slave_0: left allmulticast mode
[   47.802536][ T4318] bridge_slave_0: left promiscuous mode
[   47.808308][ T4318] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.828483][ T4318] bridge_slave_1: left allmulticast mode
[   47.834306][ T4318] bridge_slave_1: left promiscuous mode
[   47.839978][ T4318] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.852800][ T4321] netlink: 12 bytes leftover after parsing attributes in process `syz.4.350'.
[   47.879745][ T4318] bond0: (slave bond_slave_0): Releasing backup interface
[   47.898641][ T4318] bond0: (slave bond_slave_1): Releasing backup interface
[   47.919835][ T4330] loop2: detected capacity change from 0 to 512
[   47.928257][ T4318] team0: Port device team_slave_0 removed
[   47.928585][ T4330] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   47.947128][ T4330] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   47.962287][ T4318] team0: Port device team_slave_1 removed
[   47.983037][ T4318] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   47.990519][ T4318] batman_adv: batadv0: Removing interface: batadv_slave_0
[   48.017509][ T4318] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   48.025102][ T4318] batman_adv: batadv0: Removing interface: batadv_slave_1
[   48.034268][ T4330] EXT4-fs (loop2): 1 truncate cleaned up
[   48.040537][ T4330] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.081016][ T3299] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.114679][ T4339] netlink: 36 bytes leftover after parsing attributes in process `syz.0.358'.
[   48.123695][ T4339] netlink: 16 bytes leftover after parsing attributes in process `syz.0.358'.
[   48.132829][ T4339] netlink: 36 bytes leftover after parsing attributes in process `syz.0.358'.
[   48.171213][ T4339] netlink: 36 bytes leftover after parsing attributes in process `syz.0.358'.
[   48.231228][ T4349] netlink: 96 bytes leftover after parsing attributes in process `syz.1.363'.
[   48.261748][ T4353] bond_slave_1: mtu less than device minimum
[   48.269211][ T4351] loop0: detected capacity change from 0 to 2048
[   48.298658][ T4351] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.536373][ T4374] loop1: detected capacity change from 0 to 1024
[   48.543347][ T4374] EXT4-fs: Ignoring removed orlov option
[   48.549089][ T4374] EXT4-fs: Ignoring removed bh option
[   48.555704][ T4374] EXT4-fs: quotafile must be on filesystem root
[   48.566546][ T4374] loop1: detected capacity change from 0 to 128
[   48.574509][ T4374] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   48.593383][ T4374] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.626968][ T3303] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   48.643969][ T4380] loop4: detected capacity change from 0 to 512
[   48.667311][ T4380] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.680313][ T4380] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.707141][ T4386] loop2: detected capacity change from 0 to 128
[   48.725513][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.775780][ T4390] netlink: 8 bytes leftover after parsing attributes in process `syz.2.377'.
[   48.798636][ T4394] SELinux:  Context system_u:object_r:net_conf_t:s0 is not valid (left unmapped).
[   48.872751][ T4405] loop4: detected capacity change from 0 to 512
[   48.899049][ T4405] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   48.923767][ T4405] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   48.954068][ T4405] EXT4-fs (loop4): 1 truncate cleaned up
[   48.960294][ T4405] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.976894][ T4405] netlink: 4 bytes leftover after parsing attributes in process `syz.4.384'.
[   48.990413][ T4415] loop2: detected capacity change from 0 to 512
[   49.012151][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.035334][ T4415] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   49.077388][ T4415] EXT4-fs (loop2): orphan cleanup on readonly fs
[   49.094098][ T4415] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   49.118567][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.127973][ T4415] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   49.135412][ T4415] ------------[ cut here ]------------
[   49.140990][ T4415] bad length passed for symlink [
[   49.140990][ T4415] ó
] (got 9000, expected 3)
[   49.141283][ T4415] WARNING: CPU: 1 PID: 4415 at ./include/linux/fs.h:803 inode_set_cached_link+0xc4/0xd0
[   49.160622][ T4415] Modules linked in:
[   49.164603][ T4415] CPU: 1 UID: 0 PID: 4415 Comm: syz.2.389 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[   49.175289][ T4415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   49.185403][ T4415] RIP: 0010:inode_set_cached_link+0xc4/0xd0
[   49.191381][ T4415] Code: ff 48 c7 c7 5f f7 b2 86 e8 79 58 c4 ff c6 05 11 5a 0b 05 01 90 48 c7 c7 db 47 1b 86 4c 89 f6 89 ea 44 89 f9 e8 4d ac 8c ff 90 <0f> 0b 90 90 eb 84 66 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90
[   49.211104][ T4415] RSP: 0018:ffffc900013bfa00 EFLAGS: 00010246
[   49.217239][ T4415] RAX: 1c82d8b715c8b300 RBX: ffff8881070fee28 RCX: 0000000000080000
[   49.225258][ T4415] RDX: ffffc9000414e000 RSI: 00000000000064b0 RDI: 00000000000064b1
[   49.233253][ T4415] RBP: 0000000000002328 R08: ffffffff81344b17 R09: 0000000000000000
[   49.241282][ T4415] R10: 0001ffffffffffff R11: ffff888119195280 R12: ffff8881070fee28
[   49.249345][ T4415] R13: ffff8881070fee50 R14: ffff8881070fed00 R15: 0000000000000003
[   49.257357][ T4415] FS:  00007fa5958176c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000
[   49.266370][ T4415] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   49.272973][ T4415] CR2: 0000200000c09000 CR3: 0000000119e3e000 CR4: 00000000003506f0
[   49.280996][ T4415] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   49.289021][ T4415] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
[   49.297138][ T4415] Call Trace:
[   49.300427][ T4415]  <TASK>
[   49.303523][ T4415]  ? __warn+0x141/0x350
[   49.307752][ T4415]  ? report_bug+0x315/0x420
[   49.312360][ T4415]  ? inode_set_cached_link+0xc4/0xd0
[   49.317741][ T4415]  ? handle_bug+0x60/0x90
[   49.322107][ T4415]  ? exc_invalid_op+0x1a/0x50
[   49.326958][ T4415]  ? asm_exc_invalid_op+0x1a/0x20
[   49.332070][ T4415]  ? __warn_printk+0x167/0x1b0
[   49.336889][ T4415]  ? inode_set_cached_link+0xc4/0xd0
[   49.342304][ T4415]  __ext4_iget+0x1bb5/0x1e20
[   49.346977][ T4415]  ext4_orphan_get+0x140/0x3e0
[   49.351818][ T4415]  ext4_orphan_cleanup+0x5df/0x9e0
[   49.357074][ T4415]  ? ext4_register_li_request+0xf2/0x660
[   49.362749][ T4415]  ext4_fill_super+0x32ec/0x3630
[   49.367770][ T4415]  ? set_blocksize+0x196/0x270
[   49.372638][ T4415]  ? sb_set_blocksize+0x95/0xb0
[   49.377560][ T4415]  ? setup_bdev_super+0x318/0x370
[   49.382709][ T4415]  ? __pfx_ext4_fill_super+0x10/0x10
[   49.388256][ T4415]  get_tree_bdev_flags+0x29f/0x310
[   49.393407][ T4415]  ? __pfx_ext4_fill_super+0x10/0x10
[   49.398760][ T4415]  get_tree_bdev+0x1f/0x30
[   49.403211][ T4415]  ext4_get_tree+0x1c/0x30
[   49.407711][ T4415]  vfs_get_tree+0x56/0x1e0
[   49.412332][ T4415]  do_new_mount+0x227/0x690
[   49.417024][ T4415]  path_mount+0x49b/0xb30
[   49.421474][ T4415]  __se_sys_mount+0x27f/0x2d0
[   49.426346][ T4415]  __x64_sys_mount+0x67/0x80
[   49.430968][ T4415]  x64_sys_call+0x2c84/0x2dc0
[   49.435783][ T4415]  do_syscall_64+0xc9/0x1c0
[   49.440346][ T4415]  ? clear_bhb_loop+0x55/0xb0
[   49.445149][ T4415]  ? clear_bhb_loop+0x55/0xb0
[   49.449980][ T4415]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.456053][ T4415] RIP: 0033:0x7fa5971ae90a
[   49.460504][ T4415] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.480203][ T4415] RSP: 002b:00007fa595816e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   49.488725][ T4415] RAX: ffffffffffffffda RBX: 00007fa595816ef0 RCX: 00007fa5971ae90a
[   49.496754][ T4415] RDX: 0000200000000080 RSI: 0000200000000000 RDI: 00007fa595816eb0
[   49.504778][ T4415] RBP: 0000200000000080 R08: 00007fa595816ef0 R09: 000000000200801f
[   49.512885][ T4415] R10: 000000000200801f R11: 0000000000000246 R12: 0000200000000000
[   49.521094][ T4415] R13: 00007fa595816eb0 R14: 00000000000004fb R15: 00002000000002c0
[   49.529317][ T4415]  </TASK>
[   49.532440][ T4415] ---[ end trace 0000000000000000 ]---
[   49.538968][ T4415] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2977: inode #16: comm syz.2.389: corrupted xattr block 31: invalid header
[   49.554256][ T4415] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -117)
[   49.563359][ T4415] EXT4-fs (loop2): 1 orphan inode deleted
[   49.570090][ T4415] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   49.616099][ T4415] unsupported nla_type 32759
[   49.632146][ T3299] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.787212][ T4451] sch_fq: defrate 2048 ignored.
[   49.846713][ T4453] netlink: 4 bytes leftover after parsing attributes in process `syz.4.403'.
[   49.856013][ T4453] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   49.863447][ T4453] batman_adv: batadv0: Removing interface: batadv_slave_0
[   49.872911][ T4453] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   49.880891][ T4453] batman_adv: batadv0: Removing interface: batadv_slave_1
[   50.139623][ T4457] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[   50.217506][ T4461] loop4: detected capacity change from 0 to 512
[   50.230286][ T4462] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.286644][ T4461] EXT4-fs (loop4): 1 orphan inode deleted
[   50.293064][ T4461] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.306212][   T41] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:2: Failed to release dquot type 1
[   50.306816][ T4461] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.332087][ T4462] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.363318][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.403172][ T4462] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.457627][ T4462] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.511568][ T4462] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.523773][ T4462] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   50.536497][ T4462] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   50.545353][ T4470] netlink: 'syz.4.408': attribute type 13 has an invalid length.
[   50.570142][ T4472] loop0: detected capacity change from 0 to 512
[   50.600504][ T4472] loop0: detected capacity change from 0 to 512
[   50.619435][ T4470] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.626668][ T4470] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.696445][ T4470] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   50.705529][ T4470] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   50.714563][ T4470] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   50.723501][ T4470] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   50.735847][ T4472] EXT4-fs (loop0): orphan cleanup on readonly fs
[   50.742213][ T4472] EXT4-fs error (device loop0): ext4_quota_enable:7097: comm syz.0.409: Bad quota inum: 5, type: 1
[   50.770874][ T4462] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   50.776890][ T4472] EXT4-fs warning (device loop0): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=5). Please run e2fsck to fix.
[   50.800338][ T4472] EXT4-fs (loop0): Cannot turn on quotas: error -117
[   50.816500][ T4472] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   50.869729][ T4480] loop2: detected capacity change from 0 to 512
[   50.887972][ T4480] EXT4-fs: Ignoring removed mblk_io_submit option
[   50.896721][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.909993][ T4480] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.911720][ T4483] syzkaller0: entered allmulticast mode
[   51.060018][ T4492] loop3: detected capacity change from 0 to 2048
[   51.504422][   T29] kauditd_printk_skb: 131 callbacks suppressed
[   51.504437][   T29] audit: type=1326 audit(1742751911.160:1251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4513 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   51.534379][   T29] audit: type=1326 audit(1742751911.160:1252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4513 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   51.557845][   T29] audit: type=1326 audit(1742751911.160:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4513 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   51.581296][   T29] audit: type=1326 audit(1742751911.160:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4513 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   51.604671][   T29] audit: type=1326 audit(1742751911.160:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4513 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   51.637077][   T29] audit: type=1326 audit(1742751911.190:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4513 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   51.660491][   T29] audit: type=1326 audit(1742751911.190:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4513 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   51.684090][   T29] audit: type=1326 audit(1742751911.190:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4513 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   51.707575][   T29] audit: type=1326 audit(1742751911.190:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4513 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   51.731034][   T29] audit: type=1326 audit(1742751911.190:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4513 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   51.758696][ T3299] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.843275][ T4525] loop0: detected capacity change from 0 to 1024
[   51.855743][ T4525] EXT4-fs: Ignoring removed orlov option
[   51.861573][ T4525] EXT4-fs: Ignoring removed nomblk_io_submit option
[   51.912327][ T4525] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.990677][ T4532] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[   52.010060][ T3439] IPVS: starting estimator thread 0...
[   52.120843][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.131024][ T4537] IPVS: using max 2592 ests per chain, 129600 per kthread
[   52.306028][ T4549] loop2: detected capacity change from 0 to 128
[   52.887525][ T4581] loop1: detected capacity change from 0 to 512
[   52.913065][ T4581] EXT4-fs: Ignoring removed i_version option
[   53.006194][ T4581] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.029313][ T4581] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.086925][ T4581] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.454: corrupted inode contents
[   53.099135][ T4581] EXT4-fs (loop1): Remounting filesystem read-only
[   53.145764][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.214567][ T4602] netlink: 'syz.2.463': attribute type 1 has an invalid length.
[   53.228155][ T4602] 8021q: adding VLAN 0 to HW filter on device bond1
[   53.250899][ T4602] bond1: (slave veth3): Enslaving as an active interface with a down link
[   53.274544][ T4602] bond1: (slave gretap1): making interface the new active one
[   53.282924][ T4602] bond1: (slave gretap1): Enslaving as an active interface with an up link
[   53.338276][ T4609] loop2: detected capacity change from 0 to 1024
[   53.345853][ T4609] EXT4-fs: Ignoring removed orlov option
[   53.351546][ T4609] EXT4-fs: Ignoring removed nomblk_io_submit option
[   53.376362][ T4609] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.432017][ T3299] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.485895][ T4622] loop2: detected capacity change from 0 to 512
[   53.506080][ T4622] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.553678][ T4622] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.638448][ T3299] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.674023][ T4628] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.785602][ T4628] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.875888][ T4628] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.933977][ T4646] __nla_validate_parse: 6 callbacks suppressed
[   53.933995][ T4646] netlink: 8 bytes leftover after parsing attributes in process `syz.1.478'.
[   53.952787][ T4646] netlink: 8 bytes leftover after parsing attributes in process `syz.1.478'.
[   53.968739][ T4646] netlink: 8 bytes leftover after parsing attributes in process `syz.1.478'.
[   53.978027][ T4646] netlink: 8 bytes leftover after parsing attributes in process `syz.1.478'.
[   53.988241][ T4628] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.036211][ T4650] loop1: detected capacity change from 0 to 2048
[   54.054058][ T4650] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.057800][ T4628] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.079694][ T4628] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.091659][ T4628] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.103334][ T4628] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.126155][ T4650] netlink: 20 bytes leftover after parsing attributes in process `syz.1.480'.
[   54.135079][ T4650] netlink: 20 bytes leftover after parsing attributes in process `syz.1.480'.
[   54.174795][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.215241][ T4663] loop0: detected capacity change from 0 to 1024
[   54.231649][ T4663] netlink: 277 bytes leftover after parsing attributes in process `syz.0.485'.
[   54.262929][ T4666] loop3: detected capacity change from 0 to 164
[   54.279175][ T4666] Unable to read rock-ridge attributes
[   54.296337][ T4666] Unable to read rock-ridge attributes
[   54.403285][ T4687] netlink: 'syz.3.495': attribute type 4 has an invalid length.
[   54.428275][ T4687] netlink: 'syz.3.495': attribute type 4 has an invalid length.
[   54.519859][ T4693] loop0: detected capacity change from 0 to 512
[   54.547464][ T4693] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.565093][ T4693] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.666118][ T4705] hub 9-0:1.0: USB hub found
[   54.674093][ T4705] hub 9-0:1.0: 8 ports detected
[   54.738286][ T4712] netlink: 4 bytes leftover after parsing attributes in process `syz.1.505'.
[   54.747756][ T4712] netlink: 12 bytes leftover after parsing attributes in process `syz.1.505'.
[   54.761992][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.797305][ T4714] tipc: Started in network mode
[   54.802408][ T4714] tipc: Node identity ac14140f, cluster identity 4711
[   54.843282][ T4714] tipc: New replicast peer: 255.255.255.255
[   54.849791][ T4714] tipc: Enabled bearer <udp:s>, priority 10
[   54.927522][ T4726] loop1: detected capacity change from 0 to 1024
[   54.944899][ T4726] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   54.954716][ T4726] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   54.957429][ T4728] loop3: detected capacity change from 0 to 1024
[   54.985337][ T4728] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   54.985818][ T4726] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   55.006394][ T4726] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: inode #5: comm syz.1.512: unexpected bad inode w/o EXT4_IGET_BAD
[   55.020502][ T4726] EXT4-fs (loop1): no journal found
[   55.020793][ T4728] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   55.025756][ T4726] EXT4-fs (loop1): can't get journal size
[   55.027647][ T4726] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   55.043927][ T4728] EXT4-fs (loop3): orphan cleanup on readonly fs
[   55.072013][ T4728] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5838: Corrupt filesystem
[   55.089983][ T4728] EXT4-fs (loop3): Remounting filesystem read-only
[   55.097223][ T4728] EXT4-fs (loop3): 1 orphan inode deleted
[   55.103489][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.113733][ T4728] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   55.147306][ T4728] SELinux: (dev loop3, type ext4) getxattr errno 5
[   55.154576][ T4728] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.438225][ T4752] loop4: detected capacity change from 0 to 1764
[   55.603406][ T4758] loop3: detected capacity change from 0 to 2048
[   55.617841][ T4758] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.617923][ T4758] ext4 filesystem being mounted at /89/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.701889][ T4767] loop4: detected capacity change from 0 to 512
[   55.713727][ T4769] tls_set_device_offload_rx: netdev not found
[   55.730955][ T4767] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   55.743786][ T4767] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.778356][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   55.833295][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.883253][ T4781] netlink: 28 bytes leftover after parsing attributes in process `syz.3.532'.
[   55.892281][ T4781] netlink: 'syz.3.532': attribute type 7 has an invalid length.
[   55.892297][ T4781] netlink: 'syz.3.532': attribute type 8 has an invalid length.
[   55.893266][ T4781] netlink: 'syz.3.532': attribute type 7 has an invalid length.
[   55.893293][ T4781] netlink: 'syz.3.532': attribute type 8 has an invalid length.
[   55.956482][ T4783] loop3: detected capacity change from 0 to 1024
[   55.964263][ T3374] tipc: Node number set to 2886997007
[   55.976797][ T4783] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.003573][ T4783] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[   56.075692][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.118366][ T4791] loop4: detected capacity change from 0 to 4096
[   56.128560][ T4791] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.178990][ T4797] syzkaller0: entered promiscuous mode
[   56.179010][ T4797] syzkaller0: entered allmulticast mode
[   56.372232][ T4791] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.405434][ T4802] pim6reg1: entered promiscuous mode
[   56.410860][ T4802] pim6reg1: entered allmulticast mode
[   56.463107][ T4805] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   56.878366][ T4814] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   56.893319][ T4814] vhci_hcd: invalid port number 186
[   56.898606][ T4814] vhci_hcd: default hub control req: 4014 v0008 i00ba l0
[   56.927714][ T4817] loop4: detected capacity change from 0 to 1024
[   56.941125][ T4817] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.958053][ T4820] loop2: detected capacity change from 0 to 164
[   56.966333][ T4820] Unable to read rock-ridge attributes
[   56.972901][ T4820] Unable to read rock-ridge attributes
[   57.035112][ T4825] bridge_slave_1: left allmulticast mode
[   57.040822][ T4825] bridge_slave_1: left promiscuous mode
[   57.046657][ T4825] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.054782][ T4825] bridge_slave_0: left allmulticast mode
[   57.060491][ T4825] bridge_slave_0: left promiscuous mode
[   57.066202][ T4825] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.324522][   T29] kauditd_printk_skb: 244 callbacks suppressed
[   57.324540][   T29] audit: type=1326 audit(1742751916.950:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff12debd169 code=0x7ffc0000
[   57.354075][   T29] audit: type=1326 audit(1742751916.960:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff12debd169 code=0x7ffc0000
[   57.377585][   T29] audit: type=1326 audit(1742751916.960:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7ff12debd169 code=0x7ffc0000
[   57.400816][   T29] audit: type=1326 audit(1742751916.960:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff12debd169 code=0x7ffc0000
[   57.424209][   T29] audit: type=1326 audit(1742751916.960:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff12debd169 code=0x7ffc0000
[   57.447614][   T29] audit: type=1326 audit(1742751916.960:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7ff12debd169 code=0x7ffc0000
[   57.470960][   T29] audit: type=1326 audit(1742751916.960:1506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff12debd169 code=0x7ffc0000
[   57.494276][   T29] audit: type=1326 audit(1742751916.960:1507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff12debd169 code=0x7ffc0000
[   57.517675][   T29] audit: type=1326 audit(1742751916.970:1508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7ff12debd169 code=0x7ffc0000
[   57.541042][   T29] audit: type=1326 audit(1742751916.970:1509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff12debd169 code=0x7ffc0000
[   57.924245][ T4847] loop4: detected capacity change from 0 to 128
[   57.986934][ T4852] loop3: detected capacity change from 0 to 2048
[   58.032476][ T4847] bio_check_eod: 189 callbacks suppressed
[   58.032493][ T4847] syz.4.558: attempt to access beyond end of device
[   58.032493][ T4847] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128
[   58.081642][ T4847] syz.4.558: attempt to access beyond end of device
[   58.081642][ T4847] loop4: rw=2049, sector=185, nr_sectors = 8 limit=128
[   58.130327][ T4847] syz.4.558: attempt to access beyond end of device
[   58.130327][ T4847] loop4: rw=2049, sector=201, nr_sectors = 8 limit=128
[   58.143756][ T4847] syz.4.558: attempt to access beyond end of device
[   58.143756][ T4847] loop4: rw=2049, sector=217, nr_sectors = 8 limit=128
[   58.157711][ T4847] syz.4.558: attempt to access beyond end of device
[   58.157711][ T4847] loop4: rw=2049, sector=233, nr_sectors = 8 limit=128
[   58.171156][ T4847] syz.4.558: attempt to access beyond end of device
[   58.171156][ T4847] loop4: rw=2049, sector=249, nr_sectors = 8 limit=128
[   58.185137][ T4847] syz.4.558: attempt to access beyond end of device
[   58.185137][ T4847] loop4: rw=2049, sector=265, nr_sectors = 8 limit=128
[   58.219640][ T4847] syz.4.558: attempt to access beyond end of device
[   58.219640][ T4847] loop4: rw=2049, sector=281, nr_sectors = 8 limit=128
[   58.233148][ T4847] syz.4.558: attempt to access beyond end of device
[   58.233148][ T4847] loop4: rw=2049, sector=297, nr_sectors = 8 limit=128
[   58.263497][ T4847] syz.4.558: attempt to access beyond end of device
[   58.263497][ T4847] loop4: rw=2049, sector=313, nr_sectors = 8 limit=128
[   58.398490][ T4870] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[   58.540424][ T4877] loop1: detected capacity change from 0 to 1024
[   58.722536][ T4883] capability: warning: `syz.2.571' uses deprecated v2 capabilities in a way that may be insecure
[   58.763780][ T4887] loop1: detected capacity change from 0 to 512
[   58.776855][ T4887] ext4 filesystem being mounted at /141/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   58.920663][ T4907] loop4: detected capacity change from 0 to 128
[   59.123792][ T4919] loop0: detected capacity change from 0 to 8192
[   59.202452][ T4935] loop1: detected capacity change from 0 to 2048
[   59.570690][ T4958] loop4: detected capacity change from 0 to 512
[   59.579656][ T4958] EXT4-fs: Ignoring removed i_version option
[   59.586835][ T4958] EXT4-fs (loop4): can't mount with commit=3432, fs mounted w/o journal
[   59.642527][ T4958] __nla_validate_parse: 7 callbacks suppressed
[   59.642544][ T4958] netlink: 4 bytes leftover after parsing attributes in process `syz.4.598'.
[   59.697498][ T4970] netlink: 'syz.3.602': attribute type 12 has an invalid length.
[   59.879308][ T4979] loop1: detected capacity change from 0 to 512
[   59.896644][ T4977] SELinux: ebitmap: truncated map
[   59.918344][ T4977] SELinux: failed to load policy
[   59.936335][ T4979] EXT4-fs (loop1): orphan cleanup on readonly fs
[   59.950381][ T4979] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.606: bg 0: block 248: padding at end of block bitmap is not set
[   59.974931][ T4979] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.606: Failed to acquire dquot type 1
[   59.989718][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   59.997301][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.004815][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.011650][ T4979] EXT4-fs (loop1): 1 truncate cleaned up
[   60.012591][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.025244][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.032642][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.040105][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.047527][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.054946][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.062367][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.069808][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.077250][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.084785][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.092187][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.099719][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.107176][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.114638][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.122061][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.129506][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.136927][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.144352][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.144375][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.144399][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.144444][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.144462][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.144481][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.144505][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.144591][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.144668][ T1078] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.160072][ T1078] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   60.336576][ T5005] netlink: 8 bytes leftover after parsing attributes in process `syz.0.617'.
[   60.345467][ T5005] netlink: 4 bytes leftover after parsing attributes in process `syz.0.617'.
[   60.359792][ T4989] pim6reg1: entered promiscuous mode
[   60.365144][ T4989] pim6reg1: entered allmulticast mode
[   60.401234][ T5013] loop1: detected capacity change from 0 to 1024
[   60.411845][ T5013] EXT4-fs: Ignoring removed bh option
[   60.421986][ T5013] EXT4-fs: inline encryption not supported
[   60.428017][ T5013] EXT4-fs: Ignoring removed i_version option
[   60.445763][ T5013] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   60.472077][ T5013] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #3: block 2: comm syz.1.621: lblock 2 mapped to illegal pblock 2 (length 1)
[   60.520232][ T5016] SELinux: ebitmap: truncated map
[   60.525559][ T5013] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #3: block 48: comm syz.1.621: lblock 0 mapped to illegal pblock 48 (length 1)
[   60.540179][ T5016] SELinux: failed to load policy
[   60.551224][ T5013] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.621: Failed to acquire dquot type 0
[   60.597513][ T5013] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5838: Corrupt filesystem
[   60.657414][ T5013] EXT4-fs error (device loop1): ext4_evict_inode:256: inode #11: comm syz.1.621: mark_inode_dirty error
[   60.678720][ T5037] netlink: 4 bytes leftover after parsing attributes in process `syz.0.630'.
[   60.687588][ T5037] netlink: 4 bytes leftover after parsing attributes in process `syz.0.630'.
[   60.696555][ T5013] EXT4-fs warning (device loop1): ext4_evict_inode:259: couldn't mark inode dirty (err -117)
[   60.697831][ T5037] netlink: 4 bytes leftover after parsing attributes in process `syz.0.630'.
[   60.726361][ T5013] EXT4-fs (loop1): 1 orphan inode deleted
[   60.726368][ T5037] netlink: 4 bytes leftover after parsing attributes in process `syz.0.630'.
[   60.726389][ T5037] netlink: 4 bytes leftover after parsing attributes in process `syz.0.630'.
[   60.753715][ T5037] netlink: 4 bytes leftover after parsing attributes in process `syz.0.630'.
[   60.763122][   T41] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[   60.785446][   T41] EXT4-fs error (device loop1): ext4_release_dquot:6950: comm kworker/u8:2: Failed to release dquot type 0
[   60.798108][ T5013] EXT4-fs error (device loop1): __ext4_get_inode_loc:4435: comm syz.1.621: Invalid inode table block 1 in block_group 0
[   60.810785][ T5037] netlink: 4 bytes leftover after parsing attributes in process `syz.0.630'.
[   60.812014][ T5013] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5838: Corrupt filesystem
[   60.830103][ T5013] EXT4-fs error (device loop1): ext4_quota_off:7194: inode #3: comm syz.1.621: mark_inode_dirty error
[   60.861617][ T5044] netlink: 'syz.2.631': attribute type 4 has an invalid length.
[   60.866577][ T5046] rdma_rxe: rxe_newlink: failed to add bond0
[   60.973213][ T5052] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[   60.973213][ T5052]    program syz.1.635 not setting count and/or reply_len properly
[   61.000855][ T5058] siw: device registration error -23
[   61.053363][ T5065] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   61.065319][ T5064] IPVS: stopping master sync thread 5065 ...
[   61.149315][ T5078] loop7: detected capacity change from 0 to 16384
[   61.212082][ T5078] I/O error, dev loop7, sector 4352 op 0x0:(READ) flags 0x80700 phys_seg 17 prio class 0
[   61.225123][ T5078] I/O error, dev loop7, sector 4608 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[   61.265116][ T5078] I/O error, dev loop7, sector 4352 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   61.274626][ T5078] Buffer I/O error on dev loop7, logical block 544, async page read
[   61.313600][ T5077] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   61.323392][ T5077] Buffer I/O error on dev loop7, logical block 0, lost async page write
[   61.331787][ T5077] Buffer I/O error on dev loop7, logical block 1, lost async page write
[   61.340198][ T5077] Buffer I/O error on dev loop7, logical block 2, lost async page write
[   61.348612][ T5077] Buffer I/O error on dev loop7, logical block 3, lost async page write
[   61.356995][ T5077] Buffer I/O error on dev loop7, logical block 4, lost async page write
[   61.365385][ T5077] Buffer I/O error on dev loop7, logical block 5, lost async page write
[   61.373747][ T5077] Buffer I/O error on dev loop7, logical block 6, lost async page write
[   61.382139][ T5077] Buffer I/O error on dev loop7, logical block 7, lost async page write
[   61.390506][ T5077] Buffer I/O error on dev loop7, logical block 8, lost async page write
[   61.426398][ T5077] I/O error, dev loop7, sector 1024 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   61.432603][ T5097] syzkaller0: entered promiscuous mode
[   61.441881][ T5097] syzkaller0: entered allmulticast mode
[   61.477506][ T5077] I/O error, dev loop7, sector 2048 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   61.488027][ T5102] hub 1-0:1.0: USB hub found
[   61.491684][ T5077] I/O error, dev loop7, sector 3072 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   61.503984][ T5102] hub 1-0:1.0: 8 ports detected
[   61.509342][ T5077] I/O error, dev loop7, sector 4096 op 0x1:(WRITE) flags 0x800 phys_seg 32 prio class 0
[   61.747485][ T5132] vlan2: entered allmulticast mode
[   61.767406][ T5137] loop3: detected capacity change from 0 to 1024
[   61.779064][ T5137] EXT4-fs: Ignoring removed nobh option
[   61.784788][ T5137] EXT4-fs: inline encryption not supported
[   61.790704][ T5137] EXT4-fs: Ignoring removed bh option
[   61.841439][ T5137] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.666: Allocating blocks 497-513 which overlap fs metadata
[   61.878262][ T5137] EXT4-fs (loop3): Remounting filesystem read-only
[   61.906190][ T5136] EXT4-fs (loop3): pa ffff88810709d5b0: logic 32, phys. 177, len 21
[   61.972917][ T5151] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5151 comm=syz.2.669
[   62.014988][ T5156] rdma_op ffff888119fb8d80 conn xmit_rdma 0000000000000000
[   62.062437][ T5160] loop3: detected capacity change from 0 to 2048
[   62.086338][ T5110] xt_TPROXY: Can be used only with -p tcp or -p udp
[   62.128774][ T5168] loop4: detected capacity change from 0 to 2048
[   62.291863][ T5177] loop3: detected capacity change from 0 to 1024
[   62.303005][ T5177] EXT4-fs: Ignoring removed nobh option
[   62.308668][ T5177] EXT4-fs: Ignoring removed bh option
[   62.487855][ T5191] loop4: detected capacity change from 0 to 2048
[   62.503009][ T5193] loop2: detected capacity change from 0 to 2048
[   62.526401][ T5193] EXT4-fs: Ignoring removed mblk_io_submit option
[   62.535694][ T5191] ext4 filesystem being mounted at /151/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.760276][ T5206] loop2: detected capacity change from 0 to 2048
[   63.016712][   T29] kauditd_printk_skb: 170 callbacks suppressed
[   63.016794][   T29] audit: type=1326 audit(1742751922.670:1675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   63.107129][ T5212] loop0: detected capacity change from 0 to 2048
[   63.132289][   T29] audit: type=1326 audit(1742751922.700:1676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   63.155701][   T29] audit: type=1326 audit(1742751922.730:1677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f6c1022d169 code=0x7ffc0000
[   63.179276][   T29] audit: type=1326 audit(1742751922.730:1678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f6c1022d1a3 code=0x7ffc0000
[   63.202534][   T29] audit: type=1326 audit(1742751922.740:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f6c1022bc1f code=0x7ffc0000
[   63.225828][   T29] audit: type=1326 audit(1742751922.750:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f6c1022d1f7 code=0x7ffc0000
[   63.249186][   T29] audit: type=1326 audit(1742751922.760:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6c1022bad0 code=0x7ffc0000
[   63.272705][   T29] audit: type=1326 audit(1742751922.760:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6c1022cd6b code=0x7ffc0000
[   63.296011][   T29] audit: type=1326 audit(1742751922.770:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f6c1022bdca code=0x7ffc0000
[   63.319210][   T29] audit: type=1326 audit(1742751922.770:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f6c1022bdca code=0x7ffc0000
[   63.538539][ T3408] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:8: bg 0: block 345: padding at end of block bitmap is not set
[   63.570560][ T3408] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[   63.583287][ T3408] EXT4-fs (loop4): This should not happen!! Data will be lost
[   63.583287][ T3408] 
[   63.592138][ T5224] pim6reg1: entered promiscuous mode
[   63.598303][ T5224] pim6reg1: entered allmulticast mode
[   63.650793][  T377] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 1778 with error 28
[   63.650825][  T377] EXT4-fs (loop4): This should not happen!! Data will be lost
[   63.650825][  T377] 
[   63.650842][  T377] EXT4-fs (loop4): Total free blocks count 0
[   63.650856][  T377] EXT4-fs (loop4): Free/Dirty block details
[   63.650866][  T377] EXT4-fs (loop4): free_blocks=0
[   63.650934][  T377] EXT4-fs (loop4): dirty_blocks=1792
[   63.650947][  T377] EXT4-fs (loop4): Block reservation details
[   63.650960][  T377] EXT4-fs (loop4): i_reserved_data_blocks=112
[   63.900038][ T5243] smc: net device bond0 applied user defined pnetid SYZ0
[   63.900327][ T5243] smc: net device bond0 erased user defined pnetid SYZ0
[   64.491594][ T5254] loop3: detected capacity change from 0 to 2048
[   65.034879][ T5289] loop4: detected capacity change from 0 to 512
[   65.042127][ T5289] EXT4-fs: Ignoring removed mblk_io_submit option
[   65.485299][ T5367] hub 1-0:1.0: USB hub found
[   65.490005][ T5367] hub 1-0:1.0: 8 ports detected
[   65.517374][ T5370] loop3: detected capacity change from 0 to 512
[   65.526708][ T5371] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   65.540929][ T5370] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.719: bg 0: block 35: padding at end of block bitmap is not set
[   65.544989][ T5371] vhci_hcd: invalid port number 186
[   65.560419][ T5371] vhci_hcd: default hub control req: 4014 v0008 i00ba l0
[   65.562844][ T5370] EXT4-fs (loop3): Remounting filesystem read-only
[   65.575073][ T5370] EXT4-fs (loop3): 1 truncate cleaned up
[   65.581109][ T5370] SELinux: (dev loop3, type ext4) getxattr errno 5
[   65.600897][ T5370] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5370 comm=syz.3.719
[   65.613352][ T5370] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=5370 comm=syz.3.719
[   65.843861][ T5392] loop4: detected capacity change from 0 to 1024
[   65.850898][ T5392] EXT4-fs: Ignoring removed nobh option
[   65.856514][ T5392] EXT4-fs: inline encryption not supported
[   65.862350][ T5392] EXT4-fs: Ignoring removed bh option
[   65.887181][ T5392] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4115: comm syz.4.725: Allocating blocks 497-513 which overlap fs metadata
[   65.910487][ T5392] EXT4-fs (loop4): Remounting filesystem read-only
[   65.919470][ T5388] EXT4-fs (loop4): pa ffff8881070a9150: logic 128, phys. 273, len 15
[   65.941068][ T5396] loop3: detected capacity change from 0 to 8192
[   65.980051][ T5398] SELinux: ebitmap: truncated map
[   65.990766][ T5398] SELinux: failed to load policy
[   66.140562][ T5404] bridge_slave_0: left allmulticast mode
[   66.146311][ T5404] bridge_slave_0: left promiscuous mode
[   66.152030][ T5404] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.161055][ T5404] bridge_slave_1: left allmulticast mode
[   66.166856][ T5404] bridge_slave_1: left promiscuous mode
[   66.172509][ T5404] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.183620][ T5404] bond0: (slave bond_slave_0): Releasing backup interface
[   66.195271][ T5404] bond0: (slave bond_slave_1): Releasing backup interface
[   66.209221][ T5404] team0: Port device team_slave_0 removed
[   66.222975][ T5404] team0: Port device team_slave_1 removed
[   66.230855][ T5404] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   66.238326][ T5404] batman_adv: batadv0: Removing interface: batadv_slave_0
[   66.248609][ T5404] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   66.256081][ T5404] batman_adv: batadv0: Removing interface: batadv_slave_1
[   66.347142][ T5410] loop1: detected capacity change from 0 to 512
[   66.366464][ T5410] EXT4-fs (loop1): 1 orphan inode deleted
[   66.372786][ T5410] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.384567][  T377] EXT4-fs error (device loop1): ext4_release_dquot:6950: comm kworker/u8:5: Failed to release dquot type 1
[   66.408382][ T5414] __nla_validate_parse: 5 callbacks suppressed
[   66.408395][ T5414] netlink: 24 bytes leftover after parsing attributes in process `syz.2.733'.
[   66.426598][ T3303] EXT4-fs unmount: 38 callbacks suppressed
[   66.426611][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.495908][ T5420] netlink: 'syz.1.737': attribute type 10 has an invalid length.
[   66.503925][ T5420] syz_tun: entered promiscuous mode
[   66.526565][ T5420] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   66.554398][ T3408] bond0: (slave syz_tun): interface is now down
[   66.575715][ T3408] bond0: (slave syz_tun): interface is now down
[   66.594221][  T377] bond0: (slave syz_tun): interface is now down
[   66.600751][  T377] bond0: now running without any active interface!
[   66.655896][ T5425] loop1: detected capacity change from 0 to 512
[   66.677711][ T5431] smc: net device bond0 applied user defined pnetid SYZ0
[   66.685017][ T5425] EXT4-fs: Ignoring removed mblk_io_submit option
[   66.690364][ T5431] smc: net device bond0 erased user defined pnetid SYZ0
[   66.719912][ T5425] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.850077][ T5440] bridge_slave_0: left allmulticast mode
[   66.855851][ T5440] bridge_slave_0: left promiscuous mode
[   66.861865][ T5440] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.870974][ T5440] bridge_slave_1: left allmulticast mode
[   66.876809][ T5440] bridge_slave_1: left promiscuous mode
[   66.882590][ T5440] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.892440][ T5440] bond0: (slave bond_slave_0): Releasing backup interface
[   66.902591][ T5440] bond0: (slave bond_slave_1): Releasing backup interface
[   66.918750][ T5440] team0: Port device team_slave_0 removed
[   66.926370][ T5440] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   66.934064][ T5440] batman_adv: batadv0: Removing interface: batadv_slave_0
[   66.944325][ T5440] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   66.951810][ T5440] batman_adv: batadv0: Removing interface: batadv_slave_1
[   66.985495][ T5445] netlink: 24 bytes leftover after parsing attributes in process `syz.2.745'.
[   67.076015][ T5447] loop2: detected capacity change from 0 to 4096
[   67.094599][ T5447] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.243753][ T5456] loop7: detected capacity change from 0 to 16384
[   67.272196][ T5447] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.302358][ T5456] I/O error, dev loop7, sector 6656 op 0x0:(READ) flags 0x80700 phys_seg 9 prio class 0
[   67.314442][ T5456] I/O error, dev loop7, sector 6912 op 0x0:(READ) flags 0x80700 phys_seg 9 prio class 0
[   67.325191][ T5456] I/O error, dev loop7, sector 6656 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   67.334751][ T5456] buffer_io_error: 535 callbacks suppressed
[   67.334841][ T5456] Buffer I/O error on dev loop7, logical block 832, async page read
[   67.365269][ T5455] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   67.374970][ T5455] Buffer I/O error on dev loop7, logical block 0, lost async page write
[   67.383329][ T5455] Buffer I/O error on dev loop7, logical block 1, lost async page write
[   67.391719][ T5455] Buffer I/O error on dev loop7, logical block 2, lost async page write
[   67.400172][ T5455] Buffer I/O error on dev loop7, logical block 3, lost async page write
[   67.408615][ T5455] Buffer I/O error on dev loop7, logical block 4, lost async page write
[   67.417099][ T5455] Buffer I/O error on dev loop7, logical block 5, lost async page write
[   67.425472][ T5455] Buffer I/O error on dev loop7, logical block 6, lost async page write
[   67.433830][ T5455] Buffer I/O error on dev loop7, logical block 7, lost async page write
[   67.442232][ T5455] Buffer I/O error on dev loop7, logical block 8, lost async page write
[   67.454868][ T5455] I/O error, dev loop7, sector 1024 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   67.455646][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.468292][ T5455] I/O error, dev loop7, sector 2048 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   67.488193][ T5455] I/O error, dev loop7, sector 3072 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   67.502330][ T5455] I/O error, dev loop7, sector 4096 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   67.516991][ T5455] I/O error, dev loop7, sector 5120 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   67.530163][ T5455] I/O error, dev loop7, sector 6144 op 0x1:(WRITE) flags 0x800 phys_seg 64 prio class 0
[   67.583396][ T5465] loop7: detected capacity change from 0 to 16384
[   67.593586][ T5462] netlink: 'syz.3.751': attribute type 10 has an invalid length.
[   67.606494][ T5462] syz_tun: entered promiscuous mode
[   67.617206][ T5462] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   67.634753][ T5346] bond0: (slave syz_tun): interface is now down
[   67.641967][ T5346] bond0: now running without any active interface!
[   68.082995][   T29] kauditd_printk_skb: 58 callbacks suppressed
[   68.083011][   T29] audit: type=1326 audit(1742751927.730:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.2.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5971ad169 code=0x7ffc0000
[   68.167296][   T29] audit: type=1326 audit(1742751927.770:1743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.2.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5971ad169 code=0x7ffc0000
[   68.190799][   T29] audit: type=1326 audit(1742751927.770:1744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.2.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5971ad169 code=0x7ffc0000
[   68.378438][ T5490] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   68.388299][ T5490] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   68.411525][ T5491] netlink: 36 bytes leftover after parsing attributes in process `syz.2.759'.
[   68.420580][ T5491] netlink: 16 bytes leftover after parsing attributes in process `syz.2.759'.
[   68.429489][ T5491] netlink: 36 bytes leftover after parsing attributes in process `syz.2.759'.
[   68.439069][ T5491] netlink: 36 bytes leftover after parsing attributes in process `syz.2.759'.
[   68.480944][ T5496] pim6reg1: entered promiscuous mode
[   68.486315][ T5496] pim6reg1: entered allmulticast mode
[   68.576416][   T29] audit: type=1326 audit(1742751928.230:1745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5499 comm="syz.1.765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   68.704209][   T29] audit: type=1326 audit(1742751928.230:1746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5499 comm="syz.1.765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   68.727678][   T29] audit: type=1326 audit(1742751928.260:1747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5499 comm="syz.1.765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   68.751074][   T29] audit: type=1326 audit(1742751928.260:1748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5499 comm="syz.1.765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   68.774479][   T29] audit: type=1326 audit(1742751928.260:1749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5499 comm="syz.1.765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   68.797861][   T29] audit: type=1326 audit(1742751928.260:1750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5499 comm="syz.1.765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   68.821300][   T29] audit: type=1326 audit(1742751928.260:1751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5499 comm="syz.1.765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   68.947416][ T5511] bond0: (slave syz_tun): Releasing backup interface
[   69.150036][ T5523] syzkaller0: entered promiscuous mode
[   69.155605][ T5523] syzkaller0: entered allmulticast mode
[   69.372500][ T5536] xt_CT: No such helper "syz1"
[   69.762170][ T5553] bridge_slave_0: left allmulticast mode
[   69.768081][ T5553] bridge_slave_0: left promiscuous mode
[   69.773827][ T5553] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.783341][ T5552] loop0: detected capacity change from 0 to 164
[   69.792292][ T5552] Unable to read rock-ridge attributes
[   69.799085][ T5552] Unable to read rock-ridge attributes
[   69.864852][ T5553] bridge_slave_1: left allmulticast mode
[   69.870582][ T5553] bridge_slave_1: left promiscuous mode
[   69.876533][ T5553] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.885636][ T5553] bond0: (slave bond_slave_0): Releasing backup interface
[   69.894669][ T5553] bond0: (slave bond_slave_1): Releasing backup interface
[   69.913492][ T5553] team0: Port device team_slave_0 removed
[   69.923965][ T5553] team0: Port device team_slave_1 removed
[   70.042527][ T5571] loop2: detected capacity change from 0 to 764
[   70.158687][ T5578] loop3: detected capacity change from 0 to 512
[   70.186990][ T5578] EXT4-fs: Ignoring removed nomblk_io_submit option
[   70.259463][ T5578] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8843e02c, mo2=0002]
[   70.304405][ T5578] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.791: invalid indirect mapped block 2683928664 (level 1)
[   70.346753][ T5578] EXT4-fs (loop3): Remounting filesystem read-only
[   70.385296][ T5578] EXT4-fs (loop3): 1 truncate cleaned up
[   70.391613][ T5578] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.396126][ T5588] netlink: 1768 bytes leftover after parsing attributes in process `syz.2.794'.
[   70.403802][ T5578] SELinux: (dev loop3, type ext4) getxattr errno 5
[   70.412744][ T5588] netlink: 24 bytes leftover after parsing attributes in process `syz.2.794'.
[   70.457805][ T5578] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.585062][ T5593] netlink: 4 bytes leftover after parsing attributes in process `syz.3.799'.
[   70.670373][ T5577] Set syz1 is full, maxelem 65536 reached
[   70.712572][ T5597] loop0: detected capacity change from 0 to 2048
[   70.725422][ T5599] loop1: detected capacity change from 0 to 1024
[   70.732334][ T5599] EXT4-fs: Ignoring removed orlov option
[   70.738149][ T5599] EXT4-fs: Ignoring removed nomblk_io_submit option
[   70.756489][ T5599] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.757470][ T5597] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.791669][ T5597] netlink: 20 bytes leftover after parsing attributes in process `syz.0.800'.
[   70.828252][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.829798][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.997271][ T5618] siw: device registration error -23
[   71.046222][ T5623] loop3: detected capacity change from 0 to 512
[   71.073860][ T5620] team0: Mode changed to "loadbalance"
[   71.091503][ T5623] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.108217][ T5623] ext4 filesystem being mounted at /152/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.150419][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.180427][ T5635] loop0: detected capacity change from 0 to 512
[   71.187152][ T5634] loop3: detected capacity change from 0 to 128
[   71.189259][ T5635] EXT4-fs: Ignoring removed nomblk_io_submit option
[   71.228381][ T5638] loop2: detected capacity change from 0 to 2048
[   71.240054][ T5635] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8843e02c, mo2=0002]
[   71.248735][ T5635] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.811: invalid indirect mapped block 2683928664 (level 1)
[   71.269041][ T5635] EXT4-fs (loop0): Remounting filesystem read-only
[   71.277398][ T5635] EXT4-fs (loop0): 1 truncate cleaned up
[   71.283720][ T5635] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.291563][ T5634] bio_check_eod: 95 callbacks suppressed
[   71.291597][ T5634] syz.3.814: attempt to access beyond end of device
[   71.291597][ T5634] loop3: rw=2049, sector=153, nr_sectors = 8 limit=128
[   71.298655][ T5638] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.301672][ T5634] syz.3.814: attempt to access beyond end of device
[   71.301672][ T5634] loop3: rw=2049, sector=169, nr_sectors = 8 limit=128
[   71.316446][ T5635] SELinux: (dev loop0, type ext4) getxattr errno 5
[   71.330933][ T5634] syz.3.814: attempt to access beyond end of device
[   71.330933][ T5634] loop3: rw=2049, sector=185, nr_sectors = 8 limit=128
[   71.340699][ T5635] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.369304][ T5634] syz.3.814: attempt to access beyond end of device
[   71.369304][ T5634] loop3: rw=2049, sector=201, nr_sectors = 8 limit=128
[   71.382731][ T5634] syz.3.814: attempt to access beyond end of device
[   71.382731][ T5634] loop3: rw=2049, sector=217, nr_sectors = 8 limit=128
[   71.396107][ T5634] syz.3.814: attempt to access beyond end of device
[   71.396107][ T5634] loop3: rw=2049, sector=233, nr_sectors = 8 limit=128
[   71.409535][ T5634] syz.3.814: attempt to access beyond end of device
[   71.409535][ T5634] loop3: rw=2049, sector=249, nr_sectors = 8 limit=128
[   71.423156][ T5634] syz.3.814: attempt to access beyond end of device
[   71.423156][ T5634] loop3: rw=2049, sector=265, nr_sectors = 8 limit=128
[   71.436665][ T5634] syz.3.814: attempt to access beyond end of device
[   71.436665][ T5634] loop3: rw=2049, sector=281, nr_sectors = 8 limit=128
[   71.450442][ T5634] syz.3.814: attempt to access beyond end of device
[   71.450442][ T5634] loop3: rw=2049, sector=297, nr_sectors = 8 limit=128
[   71.486310][ T5638] __nla_validate_parse: 1 callbacks suppressed
[   71.486327][ T5638] netlink: 20 bytes leftover after parsing attributes in process `syz.2.815'.
[   71.501425][ T5638] netlink: 20 bytes leftover after parsing attributes in process `syz.2.815'.
[   71.542118][ T3299] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.575964][ T5645] loop3: detected capacity change from 0 to 512
[   71.595821][ T5645] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.608542][ T5645] ext4 filesystem being mounted at /154/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.630446][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.895809][ T5661] loop0: detected capacity change from 0 to 764
[   71.923913][ T5652] loop2: detected capacity change from 0 to 8192
[   72.208165][ T5652]  loop2: p2 p3 p4
[   72.234055][ T5652] loop2: p2 size 64053 extends beyond EOD, truncated
[   72.285529][ T5652] loop2: p3 start 65280 is beyond EOD, truncated
[   72.291948][ T5652] loop2: p4 size 50331904 extends beyond EOD, truncated
[   72.322076][ T5680] loop1: detected capacity change from 0 to 512
[   72.375405][ T5674] syzkaller0: entered promiscuous mode
[   72.380989][ T5674] syzkaller0: entered allmulticast mode
[   72.412377][ T5680] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.492404][ T5680] ext4 filesystem being mounted at /182/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   72.556532][ T3618] udevd[3618]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   72.660596][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.675473][ T5690] rdma_rxe: rxe_newlink: failed to add bond0
[   72.703304][ T5690] loop0: detected capacity change from 0 to 1024
[   72.719929][ T5690] EXT4-fs: Ignoring removed nobh option
[   72.725648][ T5690] EXT4-fs: Ignoring removed bh option
[   72.758116][ T5690] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.780972][ T5690] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   72.806295][ T5690] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   72.902372][ T5696] netlink: 24 bytes leftover after parsing attributes in process `syz.4.830'.
[   72.931039][ T5698] loop1: detected capacity change from 0 to 128
[   73.105390][   T29] kauditd_printk_skb: 304 callbacks suppressed
[   73.105406][   T29] audit: type=1400 audit(1742751932.760:2056): avc:  denied  { setopt } for  pid=5713 comm="syz.4.837" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   73.543899][   T29] audit: type=1326 audit(1742751933.160:2057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5724 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   73.567442][   T29] audit: type=1326 audit(1742751933.160:2058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5724 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   73.590879][   T29] audit: type=1326 audit(1742751933.170:2059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5724 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   73.614297][   T29] audit: type=1326 audit(1742751933.170:2060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5724 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   73.637278][   T29] audit: type=1326 audit(1742751933.170:2061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5724 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   73.660319][   T29] audit: type=1326 audit(1742751933.170:2062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5724 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   73.683401][   T29] audit: type=1326 audit(1742751933.170:2063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5724 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   73.706501][   T29] audit: type=1326 audit(1742751933.180:2064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5724 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   73.729567][   T29] audit: type=1326 audit(1742751933.180:2065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5724 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f476460d169 code=0x7ffc0000
[   73.762491][ T5727] loop3: detected capacity change from 0 to 2048
[   74.113312][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.122991][ T5727] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.166931][ T5745] netlink: 24 bytes leftover after parsing attributes in process `syz.0.843'.
[   74.183771][ T5748] ip6gre1: entered allmulticast mode
[   74.196894][ T5727] netlink: 20 bytes leftover after parsing attributes in process `syz.3.841'.
[   74.205874][ T5727] netlink: 20 bytes leftover after parsing attributes in process `syz.3.841'.
[   74.240273][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.381405][ T5763] pim6reg1: entered promiscuous mode
[   74.386829][ T5763] pim6reg1: entered allmulticast mode
[   74.396036][ T5765] loop1: detected capacity change from 0 to 512
[   74.420455][ T5765] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.433251][ T5765] ext4 filesystem being mounted at /188/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.448139][ T5765] EXT4-fs (loop1): shut down requested (1)
[   74.466211][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.494869][ T5771] rdma_rxe: rxe_newlink: failed to add bond0
[   74.505190][ T5769] loop3: detected capacity change from 0 to 1024
[   74.508282][ T5771] loop1: detected capacity change from 0 to 1024
[   74.518915][ T5771] EXT4-fs: Ignoring removed nobh option
[   74.524667][ T5771] EXT4-fs: Ignoring removed bh option
[   74.535857][ T5769] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   74.545723][ T5769] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   74.552534][ T5771] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.555471][ T5769] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   74.578358][ T5769] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: inode #5: comm syz.3.854: unexpected bad inode w/o EXT4_IGET_BAD
[   74.581727][ T5771] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   74.592403][ T5769] EXT4-fs (loop3): no journal found
[   74.601236][ T5771] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   74.605046][ T5769] EXT4-fs (loop3): can't get journal size
[   74.620335][ T5769] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.663838][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.986045][ T5777] loop2: detected capacity change from 0 to 2048
[   74.986198][ T5779] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.024876][ T5777]  loop2: p1 < > p4
[   75.029583][ T5779] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.029826][ T5777] loop2: p4 size 8388608 extends beyond EOD, truncated
[   75.050962][ T3002]  loop2: p1 < > p4
[   75.055622][ T3002] loop2: p4 size 8388608 extends beyond EOD, truncated
[   75.086511][ T5779] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.127223][ T3479] udevd[3479]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   75.138985][ T3618] udevd[3618]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   75.151143][ T5779] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.166215][ T5784] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   75.175187][ T5784] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.220548][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.248577][ T5779] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.263299][ T5779] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.278000][ T5779] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.290229][ T5779] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.713788][ T5791] loop0: detected capacity change from 0 to 512
[   75.721905][ T5791] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   75.724237][ T5788] loop4: detected capacity change from 0 to 2048
[   75.746188][ T5791] EXT4-fs (loop0): 1 truncate cleaned up
[   75.752202][ T5791] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.755674][ T5788] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.785502][ T5788] netlink: 20 bytes leftover after parsing attributes in process `syz.4.860'.
[   75.794586][ T5788] netlink: 20 bytes leftover after parsing attributes in process `syz.4.860'.
[   75.815166][ T5799] ip6gre1: entered allmulticast mode
[   75.827845][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.869428][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.089155][ T5821] loop4: detected capacity change from 0 to 2048
[   76.135930][ T5821]  loop4: p1 < > p4
[   76.147261][ T5821] loop4: p4 size 8388608 extends beyond EOD, truncated
[   76.202175][ T3002]  loop4: p1 < > p4
[   76.211800][ T3002] loop4: p4 size 8388608 extends beyond EOD, truncated
[   76.273511][ T3618] udevd[3618]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   76.285853][ T3479] udevd[3479]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   76.378213][ T5840] loop0: detected capacity change from 0 to 2048
[   76.420841][ T5840] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.487692][ T5840] netlink: 20 bytes leftover after parsing attributes in process `syz.0.876'.
[   76.496680][ T5840] netlink: 20 bytes leftover after parsing attributes in process `syz.0.876'.
[   76.530242][ T5845] loop4: detected capacity change from 0 to 1024
[   76.579366][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.586653][ T5845] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   76.598161][ T5845] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   76.609143][ T5845] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   76.622890][ T5849] loop0: detected capacity change from 0 to 512
[   76.629945][ T5849] EXT4-fs: Ignoring removed i_version option
[   76.638766][ T5849] EXT4-fs (loop0): can't mount with commit=3432, fs mounted w/o journal
[   76.648244][ T5845] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: inode #5: comm syz.4.877: unexpected bad inode w/o EXT4_IGET_BAD
[   76.668004][ T5845] EXT4-fs (loop4): no journal found
[   76.673257][ T5845] EXT4-fs (loop4): can't get journal size
[   76.686832][ T5849] netlink: 4 bytes leftover after parsing attributes in process `syz.0.878'.
[   76.696512][ T5845] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   76.742378][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.847455][ T5858] loop1: detected capacity change from 0 to 512
[   76.855509][ T5858] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   76.869642][ T5858] EXT4-fs (loop1): 1 truncate cleaned up
[   76.876866][ T5858] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.918138][ T5865] loop2: detected capacity change from 0 to 1024
[   76.927033][ T5865] EXT4-fs: Ignoring removed orlov option
[   76.932818][ T5865] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.954041][ T5865] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.999975][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.029555][ T5875] loop1: detected capacity change from 0 to 2048
[   77.070705][ T3299] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.074590][ T5875]  loop1: p1 < > p4
[   77.085216][ T5875] loop1: p4 size 8388608 extends beyond EOD, truncated
[   77.092141][ T5877] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=5877 comm=syz.4.887
[   77.092163][ T5877] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=42 sclass=netlink_tcpdiag_socket pid=5877 comm=syz.4.887
[   77.122422][ T5879] loop2: detected capacity change from 0 to 128
[   77.161678][ T3002]  loop1: p1 < > p4
[   77.172777][ T3002] loop1: p4 size 8388608 extends beyond EOD, truncated
[   77.205689][ T3479] udevd[3479]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   77.217809][ T3479] udevd[3479]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   77.239466][ T5882] bio_check_eod: 185 callbacks suppressed
[   77.239523][ T5882] syz.2.889: attempt to access beyond end of device
[   77.239523][ T5882] loop2: rw=2049, sector=153, nr_sectors = 8 limit=128
[   77.259925][ T5882] syz.2.889: attempt to access beyond end of device
[   77.259925][ T5882] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[   77.273452][ T5882] syz.2.889: attempt to access beyond end of device
[   77.273452][ T5882] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[   77.287432][ T5882] syz.2.889: attempt to access beyond end of device
[   77.287432][ T5882] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[   77.303773][ T5882] syz.2.889: attempt to access beyond end of device
[   77.303773][ T5882] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[   77.317595][ T5882] syz.2.889: attempt to access beyond end of device
[   77.317595][ T5882] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[   77.331578][ T5882] syz.2.889: attempt to access beyond end of device
[   77.331578][ T5882] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[   77.346273][ T5882] syz.2.889: attempt to access beyond end of device
[   77.346273][ T5882] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[   77.360433][ T5882] syz.2.889: attempt to access beyond end of device
[   77.360433][ T5882] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[   77.361870][ T5886] netlink: 'syz.1.892': attribute type 1 has an invalid length.
[   77.375645][ T5882] syz.2.889: attempt to access beyond end of device
[   77.375645][ T5882] loop2: rw=2049, sector=297, nr_sectors = 8 limit=128
[   77.397717][ T5886] 8021q: adding VLAN 0 to HW filter on device bond1
[   77.433504][ T5889] loop2: detected capacity change from 0 to 1024
[   77.441129][ T5886] gretap1: entered promiscuous mode
[   77.441325][ T5889] EXT4-fs: Ignoring removed orlov option
[   77.452067][ T5889] EXT4-fs: Ignoring removed bh option
[   77.453228][ T5886] bond1: (slave gretap1): making interface the new active one
[   77.466053][ T5886] bond1: (slave gretap1): Enslaving as an active interface with an up link
[   77.488512][ T5889] EXT4-fs: quotafile must be on filesystem root
[   77.492464][ T5886] vlan4: entered promiscuous mode
[   77.501905][ T5889] loop2: detected capacity change from 0 to 128
[   77.510757][ T5886] bond1: entered promiscuous mode
[   77.516557][ T5886] bond1: (slave vlan4): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[   77.523048][ T5889] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   77.544496][ T5886] bond1: left promiscuous mode
[   77.549834][ T5889] ext4 filesystem being mounted at /171/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.582983][ T3299] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   77.662765][ T5899] loop1: detected capacity change from 0 to 2048
[   77.718084][ T5899] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.751033][ T5904] loop0: detected capacity change from 0 to 2048
[   77.791548][ T5904] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.819670][ T5904] netlink: 20 bytes leftover after parsing attributes in process `syz.0.897'.
[   77.828611][ T5904] netlink: 20 bytes leftover after parsing attributes in process `syz.0.897'.
[   77.882242][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.947874][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.974397][ T5911] loop2: detected capacity change from 0 to 1024
[   77.980869][ T5913] loop0: detected capacity change from 0 to 512
[   77.992043][ T5911] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   78.020198][ T5911] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   78.032089][ T5913] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   78.036522][ T5919] netlink: 24 bytes leftover after parsing attributes in process `syz.1.898'.
[   78.053046][ T5918] loop4: detected capacity change from 0 to 1024
[   78.055385][ T5911] EXT4-fs (loop2): orphan cleanup on readonly fs
[   78.064482][ T5913] EXT4-fs warning (device loop0): dx_probe:869: inode #2: comm syz.0.908: Unimplemented hash flags: 0x0001
[   78.077252][ T5913] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.908: Corrupt directory, running e2fsck is recommended
[   78.091335][ T5911] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5838: Corrupt filesystem
[   78.091754][ T5918] EXT4-fs: Ignoring removed orlov option
[   78.106491][ T5918] EXT4-fs: Ignoring removed nomblk_io_submit option
[   78.111006][ T5911] EXT4-fs (loop2): Remounting filesystem read-only
[   78.121274][ T5913] EXT4-fs warning (device loop0): dx_probe:869: inode #2: comm syz.0.908: Unimplemented hash flags: 0x0001
[   78.126812][ T5918] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.132725][ T5913] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.908: Corrupt directory, running e2fsck is recommended
[   78.150813][ T5911] __quota_error: 589 callbacks suppressed
[   78.150831][ T5911] Quota error (device loop2): write_blk: dquota write failed
[   78.159007][   T29] audit: type=1400 audit(1742751937.810:2655): avc:  denied  { unlink } for  pid=2984 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   78.163177][ T5911] Quota error (device loop2): write_blk: dquota write failed
[   78.177780][ T5913] EXT4-fs warning (device loop0): dx_probe:869: inode #2: comm syz.0.908: Unimplemented hash flags: 0x0001
[   78.193076][ T5911] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[   78.200454][ T5913] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.908: Corrupt directory, running e2fsck is recommended
[   78.235493][ T5911] Quota error (device loop2): v2_write_file_info: Can't write info structure
[   78.244384][ T5911] EXT4-fs (loop2): 1 orphan inode deleted
[   78.251231][ T5924] EXT4-fs warning (device loop0): dx_probe:869: inode #2: comm syz.0.908: Unimplemented hash flags: 0x0001
[   78.262679][ T5924] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.908: Corrupt directory, running e2fsck is recommended
[   78.291117][ T5913] EXT4-fs warning (device loop0): dx_probe:869: inode #2: comm syz.0.908: Unimplemented hash flags: 0x0001
[   78.302568][ T5913] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.908: Corrupt directory, running e2fsck is recommended
[   78.319043][ T5913] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 3: comm syz.0.908: path /163/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0
[   78.347718][ T5911] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   78.383162][ T5911] SELinux: (dev loop2, type ext4) getxattr errno 5
[   78.396854][ T5911] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.428642][ T5928] loop3: detected capacity change from 0 to 512
[   78.474646][ T5928] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   78.495820][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.505639][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.508978][ T5928] EXT4-fs (loop3): 1 truncate cleaned up
[   78.521387][ T5928] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.562646][ T5937] loop4: detected capacity change from 0 to 2048
[   78.576110][ T5937] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.606095][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.711643][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.769320][ T5952] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[   78.777554][   T29] audit: type=1326 audit(1742751938.430:2656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5951 comm="syz.4.912" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2e44fbd169 code=0x0
[   78.863072][ T5957] loop3: detected capacity change from 0 to 1024
[   78.873645][ T5957] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.167338][ T5959] ==================================================================
[   79.175464][ T5959] BUG: KCSAN: data-race in __writeback_single_inode / generic_buffers_fsync_noflush
[   79.184872][ T5959] 
[   79.187219][ T5959] read-write to 0xffff888107199cb8 of 4 bytes by task 5957 on cpu 1:
[   79.195292][ T5959]  __writeback_single_inode+0x1f4/0x850
[   79.200907][ T5959]  writeback_single_inode+0x16c/0x3f0
[   79.206299][ T5959]  sync_inode_metadata+0x5c/0x90
[   79.211255][ T5959]  generic_buffers_fsync_noflush+0xd8/0x120
[   79.217178][ T5959]  ext4_sync_file+0x1ff/0x6c0
[   79.221890][ T5959]  vfs_fsync_range+0x116/0x130
[   79.226687][ T5959]  ext4_buffered_write_iter+0x358/0x3c0
[   79.232269][ T5959]  ext4_file_write_iter+0x383/0xf20
[   79.237500][ T5959]  iter_file_splice_write+0x5f1/0x980
[   79.242916][ T5959]  direct_splice_actor+0x160/0x2c0
[   79.248052][ T5959]  splice_direct_to_actor+0x302/0x670
[   79.253445][ T5959]  do_splice_direct+0xd7/0x150
[   79.258229][ T5959]  do_sendfile+0x398/0x660
[   79.262653][ T5959]  __x64_sys_sendfile64+0x110/0x150
[   79.267881][ T5959]  x64_sys_call+0xfbd/0x2dc0
[   79.272488][ T5959]  do_syscall_64+0xc9/0x1c0
[   79.277037][ T5959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.282954][ T5959] 
[   79.285282][ T5959] read to 0xffff888107199cb8 of 4 bytes by task 5959 on cpu 0:
[   79.292833][ T5959]  generic_buffers_fsync_noflush+0x83/0x120
[   79.298753][ T5959]  ext4_sync_file+0x1ff/0x6c0
[   79.303449][ T5959]  vfs_fsync_range+0x116/0x130
[   79.308231][ T5959]  ext4_buffered_write_iter+0x358/0x3c0
[   79.313809][ T5959]  ext4_file_write_iter+0x383/0xf20
[   79.319044][ T5959]  iter_file_splice_write+0x5f1/0x980
[   79.324439][ T5959]  direct_splice_actor+0x160/0x2c0
[   79.329571][ T5959]  splice_direct_to_actor+0x302/0x670
[   79.334986][ T5959]  do_splice_direct+0xd7/0x150
[   79.339775][ T5959]  do_sendfile+0x398/0x660
[   79.344202][ T5959]  __x64_sys_sendfile64+0x110/0x150
[   79.349460][ T5959]  x64_sys_call+0xfbd/0x2dc0
[   79.354078][ T5959]  do_syscall_64+0xc9/0x1c0
[   79.358622][ T5959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.364556][ T5959] 
[   79.366888][ T5959] value changed: 0x00000022 -> 0x00000000
[   79.372610][ T5959] 
[   79.374941][ T5959] Reported by Kernel Concurrency Sanitizer on:
[   79.381104][ T5959] CPU: 0 UID: 0 PID: 5959 Comm: syz.3.913 Tainted: G        W          6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[   79.393214][ T5959] Tainted: [W]=WARN
[   79.397040][ T5959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   79.407114][ T5959] ==================================================================
[   79.774611][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.