last executing test programs:

2m6.991359634s ago: executing program 3 (id=385):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000002c0), 0x88002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
pwritev(r0, &(0x7f0000000100)=[{0x0, 0x72}, {&(0x7f0000000140)="de", 0x1}], 0x2, 0x0, 0x0)

2m6.914132572s ago: executing program 3 (id=388):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x6}, 0x18)
r1 = memfd_secret(0x80000)
fchownat(r1, &(0x7f0000000040)='\x00', 0x0, 0x0, 0x1000)

2m6.802597282s ago: executing program 3 (id=393):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
setreuid(0x0, 0xee00)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="8000102e", 0x4}], 0x1, 0x0, 0x18}}], 0x1, 0x4000084)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r0])

2m6.731573059s ago: executing program 3 (id=396):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0xa007ca, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x483, &(0x7f0000001040)="$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")

2m6.42358123s ago: executing program 3 (id=409):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83)
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0xf0, 0x32, 0x205, 0x70bd2d, 0x25dfdbfc, {}, [{0xc9}]}, 0xf0}, 0x1, 0x0, 0x0, 0x85}, 0x8000)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000))
fstat(r0, &(0x7f0000000340))

2m6.317485171s ago: executing program 3 (id=416):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)

1m51.221155411s ago: executing program 32 (id=416):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)

1m48.521214024s ago: executing program 0 (id=979):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b000000080000000c0000000300000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000500)={0x14, 0x4, 0x8, 0x201, 0x0, 0x0, {0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40)

1m48.483916307s ago: executing program 0 (id=981):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x18, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x18)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r1, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)

1m48.424150413s ago: executing program 0 (id=984):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r0}, &(0x7f0000000300), &(0x7f0000000500)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
mincore(&(0x7f0000f0c000/0x3000)=nil, 0x0, &(0x7f0000afaf0a)=""/246)

1m48.374539868s ago: executing program 0 (id=987):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000005580)='./file0\x00', 0x0, &(0x7f0000000880)={[{@quota}, {@acl}]}, 0x1, 0x3d4, &(0x7f00000008c0)="$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")
mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)

1m48.258115839s ago: executing program 0 (id=991):
r0 = perf_event_open(&(0x7f00000010c0)={0x2, 0x80, 0xb9, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xc, 0x7}, 0x410, 0x2000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000580)='!pu<-0||!')

1m47.971643918s ago: executing program 0 (id=1005):
syz_mount_image$msdos(&(0x7f00000008c0), &(0x7f00000000c0)='./file0\x00', 0x1000480, &(0x7f0000000040)=ANY=[], 0x1, 0x11df, &(0x7f0000001f80)="$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")
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r0, &(0x7f0000000000)=""/60, 0x3c)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

1m47.971485997s ago: executing program 33 (id=1005):
syz_mount_image$msdos(&(0x7f00000008c0), &(0x7f00000000c0)='./file0\x00', 0x1000480, &(0x7f0000000040)=ANY=[], 0x1, 0x11df, &(0x7f0000001f80)="$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")
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r0, &(0x7f0000000000)=""/60, 0x3c)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

1m32.886180489s ago: executing program 1 (id=1614):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000380)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x33, 0x0, @private, @broadcast}, {0x0, 0x0, 0xfffffffffffffd15}}}}}, 0x0)

1m32.790878218s ago: executing program 1 (id=1618):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000340)={0xa, 0x5, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000080)=@gcm_128={{0x304}, "a6341a1a379332f5", "1fd33c81cf7995313c09de00fd6ded74", "62266bd8", "1e00040000000100"}, 0x28)

1m32.767526741s ago: executing program 1 (id=1620):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd2d, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0x0, 0x3000000}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8000, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x800000, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x4, 0x0, 0x8000000}, {}, {0x2, 0x0, 0x0, 0x0, 0x6, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x1, 0x0, 0xfff}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x20000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x60569add}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff, 0x9}, {0x0, 0x0, 0x0, 0x0, 0xfffff800}, {}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x9, 0x0, 0xffffffff, 0x0, 0x2}, {}, {0x80}, {0x80}, {0x0, 0x0, 0x0, 0x5, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x2, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0x0, 0x8510}, {0xffff}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x7}, {}, {0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x9}, {0x0, 0xfffffffc, 0x200}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x800}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x3}, {0x0, 0x0, 0x0, 0x4, 0x9}, {}, {0x0, 0x0, 0x0, 0x0, 0x1, 0x7}, {0x0, 0xb}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x56}, {0x0, 0x0, 0x0, 0xec33, 0x0, 0x4}, {}, {0xb, 0x0, 0x0, 0x0, 0x0, 0xfe1}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f}, {}, {0x0, 0x8, 0x0, 0x0, 0xfffffffe}, {0x0, 0x2, 0x0, 0x2, 0x0, 0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0xe9d, 0x58a}, {0x2}, {0x2, 0x9, 0x20000000}, {0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0xe600, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x7, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0xfffffffb, 0x0, 0x0, 0x0, 0x8000}, {0x6, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {0x2d}, {0x0, 0x0, 0x8000}, {0x0, 0x8000}, {0x0, 0x0, 0x10000}, {0x0, 0x80000000, 0x0, 0x7fff800, 0x4}, {0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0xd}], [{}, {}, {0x0, 0x1}, {0x1}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {0x5, 0x1}, {}, {0x4}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {0x4}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x5}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {}, {0x4}, {0x3}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)

1m32.680809719s ago: executing program 1 (id=1627):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount_setattr(r0, &(0x7f0000000080)='./file0/file0\x00', 0x8000, &(0x7f0000001dc0)={0x81, 0xc, 0x0, {r0}}, 0x20)

1m32.621961375s ago: executing program 1 (id=1629):
r0 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x8000, 0x400246}, &(0x7f0000000340)=<r1=>0x0, &(0x7f00000006c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x2})
io_uring_enter(r0, 0x4c6e, 0xc67a, 0x8, 0x0, 0x0)
io_uring_enter(r0, 0x627, 0x4c1, 0x43, 0x0, 0x0)

1m32.421118595s ago: executing program 1 (id=1644):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000007000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000300000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
time(0x0)

1m32.392575387s ago: executing program 34 (id=1644):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000007000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000300000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
time(0x0)

1m6.736307897s ago: executing program 5 (id=2618):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e000000000000000000180002801400038010"], 0x44}, 0x1, 0x0, 0x0, 0x20004080}, 0x0)

1m6.732461637s ago: executing program 5 (id=2621):
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="070000000400000008000000d9"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000001000080000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

1m6.685114432s ago: executing program 5 (id=2624):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2d00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000300)='kmem_cache_free\x00', r0, 0x0, 0x9}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x95255000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

1m6.145098535s ago: executing program 5 (id=2651):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000180)='./file0/../file0\x00')

1m6.077898491s ago: executing program 5 (id=2653):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), r0)
sendmsg$TIPC_CMD_SHOW_PORTS(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r2, 0xe01, 0x70bd2d, 0x25dfdbfc}, 0x1c}}, 0x24048800)

1m5.900711819s ago: executing program 5 (id=2657):
r0 = socket(0x10, 0x3, 0x6)
r1 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', <r2=>0x0})
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x90, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x2, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}, @TCA_RATE={0x6}]}, 0x90}}, 0x20008010)

1m5.849428454s ago: executing program 35 (id=2657):
r0 = socket(0x10, 0x3, 0x6)
r1 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', <r2=>0x0})
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x90, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x2, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}, @TCA_RATE={0x6}]}, 0x90}}, 0x20008010)

1.005662631s ago: executing program 4 (id=5233):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/dev\x00')
close_range(r2, r2, 0x0)

982.706564ms ago: executing program 4 (id=5234):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x10)
connect$vsock_stream(r1, &(0x7f0000000600)={0x28, 0x0, 0x0, @local}, 0x10)

929.215299ms ago: executing program 4 (id=5238):
dup(0xffffffffffffffff)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
readlinkat(0xffffffffffffffff, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0)

641.339987ms ago: executing program 7 (id=5246):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x4}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x19, 0x4, 0x4, 0x1ffff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)

622.006379ms ago: executing program 2 (id=5248):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6b}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x4}, 0x18)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x300, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)

568.540904ms ago: executing program 8 (id=5253):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c00000008001240000000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)

566.896444ms ago: executing program 2 (id=5254):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x404, 0x9}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0d00000003000000040000000108000001000000", @ANYRES32=r0], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r1}, &(0x7f0000000840), &(0x7f0000000880)=r0}, 0x20)
close(r0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000380)={r1, &(0x7f0000000900)}, 0x20)

516.097569ms ago: executing program 2 (id=5257):
perf_event_open(&(0x7f0000001000)={0x2, 0x80, 0x50, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x8000, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x189)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
pwrite64(r0, &(0x7f0000000880)='u', 0xf7d, 0x83)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000)

515.704939ms ago: executing program 8 (id=5258):
setitimer(0x1, &(0x7f0000000000)={{0x100, 0x5}, {0xb, 0x4}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_elf64(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="7f454c4600000007"], 0x78)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
setitimer(0x1, &(0x7f0000000000)={{0x0, 0x2710}, {0x77359400}}, 0x0)

509.07684ms ago: executing program 7 (id=5259):
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pselect6(0x40, &(0x7f0000000100)={0x2a, 0x803, 0x14, 0x3, 0x7fffffff, 0x2, 0x4baf, 0xd22}, 0x0, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100))
shutdown(r1, 0x1)

486.559433ms ago: executing program 8 (id=5261):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
mount$9p_rdma(&(0x7f00000013c0), &(0x7f0000001400)='.\x00', &(0x7f0000001440), 0x800, &(0x7f00000000c0)={'trans=rdma,', {'port', 0x3d, 0x4e20}})

455.915795ms ago: executing program 8 (id=5263):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0xffffffff)
open(&(0x7f00000003c0)='./file0\x00', 0x8060, 0x2c)
r0 = open$dir(&(0x7f0000000180)='./file0\x00', 0x7e, 0x0)
syz_io_uring_setup(0xbda, &(0x7f0000000100)={0x0, 0xec25, 0x8, 0x10000001, 0x40000333}, &(0x7f0000000dc0), &(0x7f00000001c0))
vmsplice(r0, 0x0, 0x0, 0x6)

390.932792ms ago: executing program 7 (id=5265):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ec0)={&(0x7f0000000bc0)='kfree\x00', r1, 0x0, 0xfffffffffffffff4}, 0x18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)

390.114992ms ago: executing program 7 (id=5266):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r0}, 0x18)
r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000200)='asymmetric\x00', &(0x7f00000002c0)=@chain)
add_key$keyring(&(0x7f0000000040), &(0x7f00000003c0)={'syz', 0x2}, 0x0, 0x0, r1)

364.508394ms ago: executing program 7 (id=5268):
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x20000002, 0x1f9}, &(0x7f0000000000)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r0, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x12345})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
io_uring_enter(r0, 0x47f6, 0x0, 0x0, 0x0, 0x0)

315.781119ms ago: executing program 8 (id=5269):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x404, 0x9}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0d00000003000000040000000108000001000000", @ANYRES32=r0], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r1}, &(0x7f0000000840), &(0x7f0000000880)=r0}, 0x20)
close(r0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000380)={r1, &(0x7f0000000900)}, 0x20)

315.237949ms ago: executing program 6 (id=5270):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000011c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
ioprio_get$uid(0x0, 0x0)

281.676903ms ago: executing program 8 (id=5271):
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
exit(0x0)

279.997543ms ago: executing program 6 (id=5272):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x804000, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}})
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)

185.041962ms ago: executing program 6 (id=5273):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000006c0)={0x2, 0xfffd, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10)
setsockopt$inet_udp_int(r0, 0x11, 0x67, &(0x7f0000000680)=0xa, 0x4)
sendmmsg$inet(r0, &(0x7f0000000600)=[{{&(0x7f0000000c00)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r0, &(0x7f00000000c0)="8689d46205a34100bf2bbe", 0xb, 0x6000000000000000, 0x0, 0x0)

182.940642ms ago: executing program 7 (id=5274):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0x9, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$UHID_CREATE(r0, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}}, 0x120)
write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4)

117.209559ms ago: executing program 6 (id=5275):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x20009005}, 0x40040c0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="74010000170001000000000000000000fc0000000000000000000000000000000000000000000000fe8000000000000000000000000000bbfc000000000000000000000000000000200100000000000000000000000000014e210000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff010000000000000000000000000001ffffffff0000000000000000000000000000ffff000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="00000000000000000000000000000000260e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008001f0002000000440005"], 0x174}}, 0x0)

116.538259ms ago: executing program 2 (id=5276):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xf, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000020900010073797a30000000002c000000030a010200000000030000000100ffff0900010073797a30000000000900030073797a3100000000d4040000060a010400000000000000000100000008000b4000000000ac0404802c000180080001006c6f6700200002800900024073797a300000000008000340000000060800034000000002380401800c000100626974776973650028040280080003400000000808000240000000140800064000000002080006400000000064020580bb0001001d92704a203d5ecc985c4e4280e5378a36a2856959ffa601c237cc270251cf18420d11613ec98e629c7d84c655efcb2b5ecd71666675bf512cadfe09e4d05a4f60f60e007ca1cf70a5185f973cec0f1ab052acf1acf6a2df83dd88facc62c6e94a1b6368d6bda68abcaed2ee48c3d589bf2a814b728efb93401dfa1d1063200c10e56294dba0e7b780ce0f6090bd0de9f5e000c98c4b97cd985c91284c2bca23e4757407bb41fd8de797502a72e122032d4ef3160f9f7b00fd000100854e3cb6d05d310db3d528811da7f7450ebb2d62cddc6981343570b9f4ab17d75de9411dea482f508c0dce42c25c4778ebc56bb303f9f51c489eedffcb1490560ab26ab7507ec029cca3ddfe7c4f4f6d91db07cbc008636bc7bea7f96954d31da9d8a9ca043df7b409ca2864d56fc6b2a70fcc2f1a3579737bf47542dae337d5203869caff9ab95a317c25521ebf848fad8ceb87f4655ace0701dbe961e9dcaeffa37bfa2e9d127d61b8d6edc1437b46f54c061e1c9d68120ac8300e91d19c708aa9589c37de59a9f8df5546855e934599a2f31b6cb847347fc02231fec395b906e60300340d60ebe7a3f23e1aa6eec9e0150a9d16b3c25e590000002400028008000340fffffff8080003400000000908000340684dbc5808000180ffffffff6200010091de8d9ca3503f5a0a8259007bc5088ccfe97cfebb5ebb90e05d4e8a63fcbee6f14ab7eff7469cf243a6ef6e528b811dfd72af1e7e08de8fbdd4849367ea82016412fab2ccc0fb94fa63fac7fd0c6ea48c0e9ac7d1a30ecf3e70e44ed5ff00001c0002800800034080000000080003400000000308000180fffffffc080001400000000d600004804000028008000180fffffffb0d00020073797a3000000000080001802b30a3bc08000180000000000900020073797a31000000002900020073797a31000000001c0002800900020073797a31000000000900020073797a3200000000080002400000000a30010480380002800900020073797a3200000000080003400000000908000180fffffffc0800018000000007080003408000000108000340000000050b0001000bca99f460f4b0002800028008000180fffffffb0900020073797a3000000000080003400000000308000340000001ff04000100bc000100e27404a10a99dbcc4575917adc29373e2cc46e5e8f99d7a36b7c42c92713cce62084d863a11eb9c2e19fde212924e527db981a9be0c2c15f6a04a67e9e20f86e4bebd07665e2d01da200712427a5525403c1c75468f31b91a60def25f7757c9921d08b9a5b0bc6f8953efbd0416091bf2b30d9a37e789198313dd07b7b70cebff25c562434b67e9a6b70708dd84c86135ab9b0ffda2c4b2fb4a139220c101f4c0a3d58eb124346005c82dea6f0f36444b28300758475eb3d34000180090001006d65746100000000240002800800024000000002080003400000000d08000340000000090800034000000001100001800a0001006c696d69740000000900010073797a30"], 0x548}}, 0x8000)

46.886856ms ago: executing program 6 (id=5277):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x10)
connect$vsock_stream(r1, &(0x7f0000000600)={0x28, 0x0, 0x0, @local}, 0x10)

46.697486ms ago: executing program 4 (id=5278):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r0}, 0x10)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xb6e7, 0x0, 0x3}, &(0x7f0000000340), &(0x7f0000000280))

46.470706ms ago: executing program 2 (id=5279):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x80, &(0x7f0000000880), 0x6, 0x603, &(0x7f0000001200)="$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")

46.018306ms ago: executing program 4 (id=5280):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8}}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newqdisc={0x30, 0x24, 0xd0f, 0x0, 0x25dfdbfc, {0x60, 0x0, 0x0, r2, {}, {0x1, 0x2}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x40004}, 0x40000)

29.341607ms ago: executing program 6 (id=5281):
r0 = msgget$private(0x0, 0x790)
msgsnd(r0, &(0x7f0000000100)=ANY=[@ANYRES8], 0x401, 0x0)
msgsnd(r0, &(0x7f0000000140)=ANY=[@ANYRES32], 0x401, 0x0)
msgsnd(r0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0100"], 0x12f, 0x0)
msgrcv(r0, 0x0, 0x0, 0x0, 0x1800)

15.884019ms ago: executing program 2 (id=5282):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
ioctl$HIDIOCSFEATURE(r1, 0x4004480d, 0x0)

0s ago: executing program 4 (id=5283):
syz_init_net_socket$llc(0x1a, 0x802, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000a00)={[{@init_itable_val={'init_itable', 0x3d, 0x1}}, {@errors_remount}, {@resgid}, {@barrier}, {@bsdgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}]}, 0x1, 0x783, &(0x7f0000001340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
fadvise64(r0, 0x7f, 0x0, 0x4)

kernel console output (not intermixed with test programs):

B free_highatomic:0KB active_anon:43780kB inactive_anon:44kB active_file:31948kB inactive_file:60492kB unevictable:0kB writepending:1284kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:11512kB local_pcp:7868kB free_cma:0kB
[  113.910975][T10447] lowmem_reserve[]: 0 0 0 0
[  113.915834][T10447] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  113.928615][T10447] Node 0 DMA32: 4*4kB (M) 1*8kB (M) 6*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949144kB
[  113.944978][T10447] Node 0 Normal: 914*4kB (UME) 1002*8kB (UME) 256*16kB (ME) 116*32kB (ME) 65*64kB (UME) 24*128kB (UME) 9*256kB (UM) 6*512kB (ME) 2*1024kB (ME) 4*2048kB (UM) 1031*4096kB (UM) = 4265304kB
[  113.964299][T10447] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  113.974032][T10447] 23590 total pagecache pages
[  113.978864][T10447] 14 pages in swap cache
[  113.983135][T10447] Free swap  = 124940kB
[  113.987551][T10447] Total swap = 124996kB
[  113.991821][T10447] 2097051 pages RAM
[  113.995754][T10447] 0 pages HighMem/MovableOnly
[  114.000516][T10447] 80482 pages reserved
[  114.005597][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  114.141930][T10459] loop4: detected capacity change from 0 to 128
[  114.194738][T10461] loop7: detected capacity change from 0 to 1024
[  114.222899][T10459] syz.4.2986: attempt to access beyond end of device
[  114.222899][T10459] loop4: rw=2049, sector=153, nr_sectors = 8 limit=128
[  114.255996][T10459] syz.4.2986: attempt to access beyond end of device
[  114.255996][T10459] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128
[  114.282515][T10461] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.309380][T10459] syz.4.2986: attempt to access beyond end of device
[  114.309380][T10459] loop4: rw=2049, sector=185, nr_sectors = 8 limit=128
[  114.357602][T10459] syz.4.2986: attempt to access beyond end of device
[  114.357602][T10459] loop4: rw=2049, sector=201, nr_sectors = 8 limit=128
[  114.415765][T10459] syz.4.2986: attempt to access beyond end of device
[  114.415765][T10459] loop4: rw=2049, sector=217, nr_sectors = 8 limit=128
[  114.430534][T10459] syz.4.2986: attempt to access beyond end of device
[  114.430534][T10459] loop4: rw=2049, sector=233, nr_sectors = 8 limit=128
[  114.446892][T10459] syz.4.2986: attempt to access beyond end of device
[  114.446892][T10459] loop4: rw=2049, sector=249, nr_sectors = 8 limit=128
[  114.449833][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.461105][T10459] syz.4.2986: attempt to access beyond end of device
[  114.461105][T10459] loop4: rw=2049, sector=265, nr_sectors = 8 limit=128
[  114.498527][T10459] syz.4.2986: attempt to access beyond end of device
[  114.498527][T10459] loop4: rw=2049, sector=281, nr_sectors = 8 limit=128
[  114.512195][T10459] syz.4.2986: attempt to access beyond end of device
[  114.512195][T10459] loop4: rw=2049, sector=297, nr_sectors = 8 limit=128
[  114.586356][T10475] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2988'.
[  114.683500][T10485] loop4: detected capacity change from 0 to 512
[  114.708626][T10485] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.735476][T10485] ext4 filesystem being mounted at /640/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  114.767399][T10485] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2994: corrupted inode contents
[  114.796758][T10485] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.2994: mark_inode_dirty error
[  114.825960][T10485] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2994: corrupted inode contents
[  114.859691][T10497] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2994: corrupted inode contents
[  114.891660][T10497] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.2994: mark_inode_dirty error
[  114.904683][T10497] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2994: corrupted inode contents
[  114.922109][T10497] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.2994: mark_inode_dirty error
[  114.933748][T10497] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2994: corrupted inode contents
[  114.951655][T10497] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.2994: mark_inode_dirty error
[  114.968644][T10485] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2994: corrupted inode contents
[  114.995605][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.426634][T10540] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.3017'.
[  115.502279][T10546] netlink: 'syz.8.3020': attribute type 1 has an invalid length.
[  116.034059][T10573] loop4: detected capacity change from 0 to 512
[  116.105577][T10573] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  116.186116][T10573] EXT4-fs (loop4): orphan cleanup on readonly fs
[  116.192749][T10573] __quota_error: 214 callbacks suppressed
[  116.192768][T10573] Quota error (device loop4): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  116.209090][T10573] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  116.226123][T10573] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  116.236002][T10573] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3031: bg 0: block 40: padding at end of block bitmap is not set
[  116.259615][T10573] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  116.272601][T10582] loop7: detected capacity change from 0 to 512
[  116.279589][T10582] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  116.289874][T10573] EXT4-fs (loop4): 1 truncate cleaned up
[  116.296081][T10573] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  116.321633][T10582] EXT4-fs error (device loop7): ext4_orphan_get:1418: comm syz.7.3035: bad orphan inode 131083
[  116.361966][T10582] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.380874][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.435708][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.483684][   T29] audit: type=1326 audit(1760941288.767:3522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10588 comm="syz.7.3037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  116.507393][   T29] audit: type=1326 audit(1760941288.767:3523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10588 comm="syz.7.3037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  116.602497][   T29] audit: type=1326 audit(1760941288.767:3524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10588 comm="syz.7.3037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  116.626213][   T29] audit: type=1326 audit(1760941288.767:3525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10588 comm="syz.7.3037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  116.650114][   T29] audit: type=1326 audit(1760941288.797:3526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10588 comm="syz.7.3037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  116.686079][T10598] netlink: 256 bytes leftover after parsing attributes in process `syz.8.3041'.
[  116.701291][   T29] audit: type=1326 audit(1760941288.987:3527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10601 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  116.724938][   T29] audit: type=1326 audit(1760941288.987:3528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10601 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  116.786459][   T29] audit: type=1326 audit(1760941288.987:3529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10601 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  116.810198][   T29] audit: type=1326 audit(1760941288.987:3530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10601 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  116.849202][T10612] vcan0: tx drop: invalid sa for name 0xfffffffffffffffc
[  116.939004][T10618] hub 2-0:1.0: USB hub found
[  116.954207][T10618] hub 2-0:1.0: 8 ports detected
[  117.094631][T10633] netlink: 35 bytes leftover after parsing attributes in process `syz.6.3057'.
[  117.103687][T10633] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3057'.
[  117.530593][T10678] loop7: detected capacity change from 0 to 512
[  117.561379][T10678] EXT4-fs error (device loop7): ext4_orphan_get:1418: comm syz.7.3076: bad orphan inode 11862016
[  117.598685][T10678] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  117.611886][T10678] ext4 filesystem being mounted at /258/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.631308][T10692] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  117.644605][T10690] SELinux: ebitmap: truncated map
[  117.652702][T10690] SELinux: failed to load policy
[  117.757468][T10706] IPv6: NLM_F_CREATE should be specified when creating new route
[  117.865591][T10717] netlink: 'syz.2.3096': attribute type 3 has an invalid length.
[  117.884739][T10678] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  117.904099][T10678] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  118.213652][T10734] __nla_validate_parse: 1 callbacks suppressed
[  118.213673][T10734] netlink: 5388 bytes leftover after parsing attributes in process `syz.6.3104'.
[  118.514108][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  118.639084][T10739] loop4: detected capacity change from 0 to 2048
[  118.668606][T10739] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.714742][ T5115] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.751534][T10754] loop6: detected capacity change from 0 to 128
[  118.785849][ T5115] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.883597][ T5115] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.927530][T10759] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3116'.
[  118.957896][ T5115] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.059953][ T5115] bridge_slave_1: left allmulticast mode
[  119.065813][ T5115] bridge_slave_1: left promiscuous mode
[  119.071726][ T5115] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.096879][ T5115] bridge_slave_0: left allmulticast mode
[  119.102683][ T5115] bridge_slave_0: left promiscuous mode
[  119.108444][ T5115] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.125143][T10774] netlink: 'syz.7.3121': attribute type 1 has an invalid length.
[  119.132995][T10774] netlink: 5452 bytes leftover after parsing attributes in process `syz.7.3121'.
[  119.150845][T10780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3123'.
[  119.159825][T10780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3123'.
[  119.187339][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.189918][T10780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3123'.
[  119.235861][T10780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3123'.
[  119.245046][T10780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3123'.
[  119.255854][T10780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3123'.
[  119.290383][ T5115] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  119.307763][T10780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3123'.
[  119.319634][ T5115] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  119.336665][ T5115] bond0 (unregistering): Released all slaves
[  119.355520][T10787] veth0: entered promiscuous mode
[  119.366610][T10787] veth0: left promiscuous mode
[  119.409223][ T5115] hsr_slave_0: left promiscuous mode
[  119.425129][ T5115] hsr_slave_1: left promiscuous mode
[  119.431076][ T5115] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  119.438685][ T5115] batman_adv: batadv0: Removing interface: batadv_slave_0
[  119.452900][ T5115] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  119.460755][ T5115] batman_adv: batadv0: Removing interface: batadv_slave_1
[  119.480050][ T5115] veth1_macvtap: left promiscuous mode
[  119.485715][ T5115] veth0_macvtap: left promiscuous mode
[  119.505715][ T5115] veth1_vlan: left promiscuous mode
[  119.513043][ T5115] veth0_vlan: left promiscuous mode
[  119.531317][T10814] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  119.537971][T10814] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  119.545767][T10814] vhci_hcd vhci_hcd.0: Device attached
[  119.580934][T10815] vhci_hcd: connection closed
[  119.581129][   T53] vhci_hcd: stop threads
[  119.590186][   T53] vhci_hcd: release socket
[  119.594618][   T53] vhci_hcd: disconnect device
[  119.630772][ T5115] team0 (unregistering): Port device team_slave_1 removed
[  119.642023][ T5115] team0 (unregistering): Port device team_slave_0 removed
[  119.752966][T10762] chnl_net:caif_netlink_parms(): no params data found
[  119.809708][T10836] netlink: 'syz.6.3142': attribute type 1 has an invalid length.
[  119.837386][T10762] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.844502][T10762] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.867717][T10762] bridge_slave_0: entered allmulticast mode
[  119.889625][T10762] bridge_slave_0: entered promiscuous mode
[  119.897158][T10762] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.904336][T10762] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.912528][T10762] bridge_slave_1: entered allmulticast mode
[  119.919104][T10762] bridge_slave_1: entered promiscuous mode
[  119.943921][T10762] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  119.963789][T10762] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  119.995531][T10849] loop6: detected capacity change from 0 to 512
[  120.002768][T10762] team0: Port device team_slave_0 added
[  120.009728][T10762] team0: Port device team_slave_1 added
[  120.017930][T10849] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  120.028416][T10849] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  120.036754][T10849] EXT4-fs (loop6): orphan cleanup on readonly fs
[  120.043128][T10849] EXT4-fs error (device loop6): ext4_orphan_get:1418: comm syz.6.3148: bad orphan inode 267
[  120.053721][T10849] EXT4-fs (loop6): Remounting filesystem read-only
[  120.060872][T10849] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  120.061495][T10762] batman_adv: batadv0: Adding interface: batadv_slave_0
[  120.077560][T10849] EXT4-fs warning (device loop6): dx_probe:861: inode #2: comm syz.6.3148: dx entry: limit 0 != root limit 125
[  120.079953][T10762] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  120.091821][T10849] EXT4-fs warning (device loop6): dx_probe:934: inode #2: comm syz.6.3148: Corrupt directory, running e2fsck is recommended
[  120.117947][T10762] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  120.152197][T10762] batman_adv: batadv0: Adding interface: batadv_slave_1
[  120.159293][T10762] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  120.185498][T10762] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  120.225596][ T5868] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  120.241318][T10762] hsr_slave_0: entered promiscuous mode
[  120.247909][T10762] hsr_slave_1: entered promiscuous mode
[  120.261289][T10762] debugfs: 'hsr0' already exists in 'hsr'
[  120.267203][T10762] Cannot create hsr debugfs directory
[  120.333701][T10862] pim6reg1: entered promiscuous mode
[  120.339184][T10862] pim6reg1: entered allmulticast mode
[  120.412273][T10872] netlink: 'syz.2.3157': attribute type 1 has an invalid length.
[  120.495832][T10883] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  120.720856][T10762] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  120.760557][T10762] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  120.822025][T10762] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  120.863732][T10762] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  120.966984][T10916] SELinux:  policydb version 0 does not match my version range 15-35
[  121.000286][T10916] SELinux: failed to load policy
[  121.396867][T10762] 8021q: adding VLAN 0 to HW filter on device bond0
[  121.412840][T10762] 8021q: adding VLAN 0 to HW filter on device team0
[  121.434180][ T5106] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.441315][ T5106] bridge0: port 1(bridge_slave_0) entered forwarding state
[  121.463311][ T5106] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.470442][ T5106] bridge0: port 2(bridge_slave_1) entered forwarding state
[  121.512120][T10762] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  121.532553][   T29] kauditd_printk_skb: 226 callbacks suppressed
[  121.532573][   T29] audit: type=1400 audit(1760941293.817:3757): avc:  denied  { create } for  pid=10938 comm="syz.4.3186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  121.570113][   T29] audit: type=1400 audit(1760941293.847:3758): avc:  denied  { write } for  pid=10938 comm="syz.4.3186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  121.619378][   T29] audit: type=1326 audit(1760941293.857:3759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  121.642625][   T29] audit: type=1326 audit(1760941293.857:3760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  121.665673][   T29] audit: type=1326 audit(1760941293.857:3761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  121.679838][T10762] 8021q: adding VLAN 0 to HW filter on device batadv0
[  121.688806][   T29] audit: type=1326 audit(1760941293.857:3762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  121.718603][   T29] audit: type=1326 audit(1760941293.877:3763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  121.815748][   T29] audit: type=1326 audit(1760941294.097:3764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10961 comm="syz.6.3192" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f44ca59efc9 code=0x0
[  121.902142][T10976] loop4: detected capacity change from 0 to 1024
[  121.919017][T10976] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.938455][T10762] veth0_vlan: entered promiscuous mode
[  121.940024][T10976] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3195: bg 0: block 88: padding at end of block bitmap is not set
[  121.944159][   T29] audit: type=1400 audit(1760941294.227:3765): avc:  denied  { remove_name } for  pid=10973 comm="syz.4.3195" name="file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  121.981061][   T29] audit: type=1400 audit(1760941294.227:3766): avc:  denied  { rename } for  pid=10973 comm="syz.4.3195" name="file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  122.007451][T10762] veth1_vlan: entered promiscuous mode
[  122.021613][T10762] veth0_macvtap: entered promiscuous mode
[  122.030525][T10762] veth1_macvtap: entered promiscuous mode
[  122.043486][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.047633][T10762] batman_adv: batadv0: Interface activated: batadv_slave_0
[  122.067273][T10762] batman_adv: batadv0: Interface activated: batadv_slave_1
[  122.081942][   T12] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  122.091852][   T12] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  122.100852][   T12] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  122.110422][   T12] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  122.237416][T11006] loop4: detected capacity change from 0 to 512
[  122.247305][T11008] netlink: 'syz.8.3208': attribute type 21 has an invalid length.
[  122.259304][T11006] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  122.291226][T11006] EXT4-fs (loop4): mount failed
[  122.384093][T11028] netlink: 'syz.8.3216': attribute type 10 has an invalid length.
[  122.394687][T11028] team0: Port device dummy0 added
[  122.402856][T11028] netlink: 'syz.8.3216': attribute type 10 has an invalid length.
[  122.414473][T11028] team0: Port device dummy0 removed
[  122.422923][T11028] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  122.565762][T11047] loop8: detected capacity change from 0 to 512
[  122.584503][T11047] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.597268][T11047] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.631545][T11051] bond1: entered allmulticast mode
[  122.637249][T11051] 8021q: adding VLAN 0 to HW filter on device bond1
[  122.645540][T10762] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.898140][T11073] loop8: detected capacity change from 0 to 8192
[  123.132618][T11091] geneve0 speed is unknown, defaulting to 1000
[  123.151567][T11091] geneve0 speed is unknown, defaulting to 1000
[  123.158611][T11091] geneve0 speed is unknown, defaulting to 1000
[  123.181800][T11091] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  123.215778][T11091] geneve0 speed is unknown, defaulting to 1000
[  123.234868][T11091] geneve0 speed is unknown, defaulting to 1000
[  123.254451][T11091] geneve0 speed is unknown, defaulting to 1000
[  123.275291][T11091] geneve0 speed is unknown, defaulting to 1000
[  123.302588][T11091] geneve0 speed is unknown, defaulting to 1000
[  123.325572][T11099] netlink: 'syz.7.3246': attribute type 32 has an invalid length.
[  123.342256][T11099] bond1: option coupled_control: invalid value (4)
[  123.355365][T11099] bond1 (unregistering): Released all slaves
[  123.829992][T11117] loop2: detected capacity change from 0 to 512
[  123.891379][T11117] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  123.932169][T11117] EXT4-fs (loop2): orphan cleanup on readonly fs
[  123.948626][T11117] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #16: comm syz.2.3265: corrupted inode contents
[  123.981023][T11117] EXT4-fs (loop2): Remounting filesystem read-only
[  123.991028][T11117] EXT4-fs (loop2): 1 truncate cleaned up
[  124.139759][T10935] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  124.150373][T10935] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  124.196082][T10935] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  124.208352][T11139] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  124.216394][T11117] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  124.281095][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.530203][ T1037] hid_parser_main: 54 callbacks suppressed
[  124.530228][ T1037] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x4
[  124.543879][ T1037] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x2
[  124.552809][ T1037] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x3
[  124.561182][ T1037] hid-generic 0000:3000000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  124.744414][T11197] loop7: detected capacity change from 0 to 1024
[  124.751504][T11197] EXT4-fs: Ignoring removed orlov option
[  124.792621][T11197] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.888812][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.909423][T11208] vhci_hcd: invalid port number 96
[  124.914619][T11208] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  124.970363][T11215] SELinux: failed to load policy
[  125.012749][T11226] SELinux: failed to load policy
[  125.022191][T11223] loop8: detected capacity change from 0 to 1024
[  125.052978][T11228] loop7: detected capacity change from 0 to 736
[  125.098642][T11232] loop4: detected capacity change from 0 to 1024
[  125.105426][T11232] EXT4-fs: Ignoring removed orlov option
[  125.112035][T11223] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.128262][T11238] __nla_validate_parse: 8 callbacks suppressed
[  125.128281][T11238] netlink: 5452 bytes leftover after parsing attributes in process `syz.6.3310'.
[  125.144329][T11223] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.3304: bg 0: block 88: padding at end of block bitmap is not set
[  125.145540][T11232] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.199116][T10762] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.218372][T11232] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.3308: Allocating blocks 449-513 which overlap fs metadata
[  125.248803][T11231] EXT4-fs (loop4): pa ffff88810722b3f0: logic 304, phys. 433, len 5
[  125.256942][T11231] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  125.280558][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.324245][T11259] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3317'.
[  125.333393][T11259] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3317'.
[  125.354314][T11263] loop8: detected capacity change from 0 to 512
[  125.365118][T11259] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3317'.
[  125.374344][T11259] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3317'.
[  125.393051][T11263] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.403235][T11259] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3317'.
[  125.406095][T11263] ext4 filesystem being mounted at /32/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  125.414710][T11259] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3317'.
[  125.444724][T11263] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  125.455946][T11263] EXT4-fs error (device loop8): ext4_do_update_inode:5632: inode #2: comm syz.8.3320: corrupted inode contents
[  125.470311][T11263] EXT4-fs error (device loop8): ext4_dirty_inode:6517: inode #2: comm syz.8.3320: mark_inode_dirty error
[  125.482029][T11263] EXT4-fs error (device loop8): ext4_do_update_inode:5632: inode #2: comm syz.8.3320: corrupted inode contents
[  125.501901][T11275] EXT4-fs error (device loop8): ext4_do_update_inode:5632: inode #2: comm syz.8.3320: corrupted inode contents
[  125.517031][T11272] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3323'.
[  125.535722][T11275] EXT4-fs error (device loop8): ext4_dirty_inode:6517: inode #2: comm syz.8.3320: mark_inode_dirty error
[  125.549259][T11275] EXT4-fs error (device loop8): ext4_do_update_inode:5632: inode #2: comm syz.8.3320: corrupted inode contents
[  125.561482][T11275] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #2: comm syz.8.3320: mark_inode_dirty error
[  125.568847][T11282] loop6: detected capacity change from 0 to 1024
[  125.577855][T11280] syzkaller1: entered promiscuous mode
[  125.579825][T11275] EXT4-fs error (device loop8): ext4_do_update_inode:5632: inode #2: comm syz.8.3320: corrupted inode contents
[  125.584881][T11280] syzkaller1: entered allmulticast mode
[  125.597929][T11275] EXT4-fs error (device loop8): ext4_dirty_inode:6517: inode #2: comm syz.8.3320: mark_inode_dirty error
[  125.616401][T11263] EXT4-fs error (device loop8): ext4_do_update_inode:5632: inode #2: comm syz.8.3320: corrupted inode contents
[  125.618664][T11282] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.647908][T11282] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3325: bg 0: block 88: padding at end of block bitmap is not set
[  125.663693][T10762] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.676695][ T5868] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.729945][T11289] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  125.737697][T11289] vhci_hcd: invalid port number 96
[  125.743068][T11289] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  125.756088][T11297] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  125.764791][T11295] loop8: detected capacity change from 0 to 2048
[  125.773213][T11297] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  125.787487][T11295] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.856543][T11303] SELinux: failed to load policy
[  125.958790][T10762] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.999652][T11311] syzkaller1: entered promiscuous mode
[  126.005196][T11311] syzkaller1: entered allmulticast mode
[  126.127028][T11332] gre1: entered promiscuous mode
[  126.165414][T11339] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3350'.
[  126.188020][T11341] 9pnet: Unknown protocol version 9
[  126.212736][T11346] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3354'.
[  126.370341][T11366] nfs: Unexpected value for 'acl'
[  126.756039][T11383] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  126.756039][T11383] The task syz.4.3367 (11383) triggered the difference, watch for misbehavior.
[  126.845524][   T29] kauditd_printk_skb: 136 callbacks suppressed
[  126.845543][   T29] audit: type=1326 audit(1760941299.127:3896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11384 comm="syz.7.3368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  126.940299][   T29] audit: type=1326 audit(1760941299.127:3897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11384 comm="syz.7.3368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  126.964229][   T29] audit: type=1326 audit(1760941299.127:3898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11384 comm="syz.7.3368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  126.988333][   T29] audit: type=1326 audit(1760941299.147:3899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11384 comm="syz.7.3368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  127.083208][T11398] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  127.204356][   T29] audit: type=1326 audit(1760941299.487:3900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11403 comm="syz.8.3377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  127.228154][   T29] audit: type=1326 audit(1760941299.487:3901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11403 comm="syz.8.3377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  127.251806][   T29] audit: type=1326 audit(1760941299.487:3902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11403 comm="syz.8.3377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  127.275373][   T29] audit: type=1326 audit(1760941299.487:3903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11403 comm="syz.8.3377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  127.299067][   T29] audit: type=1326 audit(1760941299.487:3904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11403 comm="syz.8.3377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  127.322625][   T29] audit: type=1326 audit(1760941299.487:3905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11403 comm="syz.8.3377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  127.371945][T11406] syzkaller1: entered promiscuous mode
[  127.377680][T11406] syzkaller1: entered allmulticast mode
[  127.635005][T11440] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  127.704133][T11450] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  127.704133][T11450]    program syz.7.3399 not setting count and/or reply_len properly
[  127.754232][T10935] tipc: Subscription rejected, illegal request
[  128.309907][T11531] loop4: detected capacity change from 0 to 256
[  128.380780][T11540] loop4: detected capacity change from 0 to 164
[  128.388154][T11540] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  128.398556][T11540] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  128.407677][T11540] Symlink component flag not implemented
[  128.413364][T11540] Symlink component flag not implemented
[  128.419523][T11540] Symlink component flag not implemented (7)
[  128.425597][T11540] Symlink component flag not implemented (116)
[  128.499418][T11552] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  128.507995][T11552] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  128.567352][T11562] loop6: detected capacity change from 0 to 512
[  128.577059][T11562] EXT4-fs warning (device loop6): ext4_xattr_inode_get:546: inode #11: comm syz.6.3453: ea_inode file size=0 entry size=6
[  128.590250][T11562] EXT4-fs (loop6): 1 orphan inode deleted
[  128.648575][T11575] bond0: Unable to set down delay as MII monitoring is disabled
[  128.725448][T11588] loop6: detected capacity change from 0 to 1764
[  128.729033][T11586] team0 (unregistering): Port device team_slave_0 removed
[  128.777474][T11586] team0 (unregistering): Port device team_slave_1 removed
[  128.790044][T11591] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:b4b7:9cff:feab:f2b5 error=-28
[  128.858688][T11591] infiniband syz!: set down
[  128.863325][T11591] infiniband syz!: added team_slave_0
[  128.896782][T11591] RDS/IB: syz!: added
[  129.100303][T11603] loop8: detected capacity change from 0 to 1024
[  129.126416][T11603] EXT4-fs: Ignoring removed mblk_io_submit option
[  129.146953][T11603] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  129.177276][T11603] EXT4-fs error (device loop8): ext4_orphan_get:1418: comm syz.8.3472: bad orphan inode 11
[  129.254560][T11603] ext4_test_bit(bit=10, block=4) = 1
[  129.260013][T11603] is_bad_inode(inode)=0
[  129.264292][T11603] NEXT_ORPHAN(inode)=3254779904
[  129.269233][T11603] max_ino=32
[  129.272441][T11603] i_nlink=0
[  129.404460][T11605] loop4: detected capacity change from 0 to 128
[  129.426754][T11603] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 2: comm syz.8.3472: lblock 2 mapped to illegal pblock 2 (length 1)
[  129.454438][T11623] netem: change failed
[  129.461544][T11603] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 48: comm syz.8.3472: lblock 0 mapped to illegal pblock 48 (length 1)
[  129.493276][T11603] EXT4-fs error (device loop8): ext4_acquire_dquot:6945: comm syz.8.3472: Failed to acquire dquot type 0
[  129.505025][T11603] EXT4-fs error (device loop8) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  129.545541][T11603] EXT4-fs error (device loop8): ext4_evict_inode:254: inode #11: comm syz.8.3472: mark_inode_dirty error
[  129.582067][T11603] EXT4-fs warning (device loop8): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  129.592954][T11603] EXT4-fs mount: 2 callbacks suppressed
[  129.592970][T11603] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.674634][T11642] IPVS: Error connecting to the multicast addr
[  129.699399][T11646] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  129.756536][T10762] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.780215][T10762] EXT4-fs error (device loop8): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[  129.796125][T10762] EXT4-fs error (device loop8) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  129.827266][T10762] EXT4-fs error (device loop8): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[  130.065514][T11696] loop6: detected capacity change from 0 to 2048
[  130.101033][T11702] loop2: detected capacity change from 0 to 512
[  130.110641][T11702] EXT4-fs: Ignoring removed orlov option
[  130.118694][T11702] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.3512: inode has both inline data and extents flags
[  130.146728][T11702] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.3512: couldn't read orphan inode 15 (err -117)
[  130.160313][T11696]  loop6: p2 p3 p7
[  130.175238][T11702] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.356225][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.447420][T11747] __nla_validate_parse: 14 callbacks suppressed
[  130.447450][T11747] netlink: 3 bytes leftover after parsing attributes in process `syz.6.3531'.
[  130.485998][T11747] 0�X���: renamed from caif0
[  130.512053][T11747] 0�X���: entered allmulticast mode
[  130.517346][T11747] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  130.585570][T11766] IPVS: Unknown mcast interface: hsr0
[  130.636513][T11778] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(6)
[  130.643142][T11778] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  130.650829][T11778] vhci_hcd vhci_hcd.0: Device attached
[  130.672807][T11781] vhci_hcd: connection closed
[  130.673042][ T5138] vhci_hcd: stop threads
[  130.682086][ T5138] vhci_hcd: release socket
[  130.686623][ T5138] vhci_hcd: disconnect device
[  130.774355][T11804] geneve0 speed is unknown, defaulting to 1000
[  130.803201][T11809] ip6t_srh: unknown srh match flags  4000
[  130.924664][T11820] syzkaller1: entered promiscuous mode
[  130.930395][T11820] syzkaller1: entered allmulticast mode
[  131.059103][T11828] netlink: 68 bytes leftover after parsing attributes in process `syz.8.3561'.
[  131.426447][T11859] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3575'.
[  131.509678][T11874] netlink: 332 bytes leftover after parsing attributes in process `syz.7.3582'.
[  131.519018][T11874] netlink: 'syz.7.3582': attribute type 9 has an invalid length.
[  131.526857][T11874] netlink: 108 bytes leftover after parsing attributes in process `syz.7.3582'.
[  131.536022][T11874] netlink: 32 bytes leftover after parsing attributes in process `syz.7.3582'.
[  131.591841][T11883] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3586'.
[  131.600925][T11883] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3586'.
[  131.785724][T11903] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  131.792278][T11903] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  131.799830][T11903] vhci_hcd vhci_hcd.0: Device attached
[  131.808119][T11904] vhci_hcd: connection closed
[  131.808341][ T5115] vhci_hcd: stop threads
[  131.817546][ T5115] vhci_hcd: release socket
[  131.821992][ T5115] vhci_hcd: disconnect device
[  131.839356][T11909] loop7: detected capacity change from 0 to 256
[  131.854086][   T29] kauditd_printk_skb: 238 callbacks suppressed
[  131.854104][   T29] audit: type=1400 audit(1760941304.137:4142): avc:  denied  { create } for  pid=11910 comm="syz.8.3598" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  131.897710][   T29] audit: type=1400 audit(1760941304.167:4143): avc:  denied  { sys_admin } for  pid=11910 comm="syz.8.3598" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  131.918965][   T29] audit: type=1400 audit(1760941304.177:4144): avc:  denied  { sys_nice } for  pid=11910 comm="syz.8.3598" capability=23  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  132.052185][   T29] audit: type=1326 audit(1760941304.337:4145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11929 comm="syz.4.3607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effd3aeefc9 code=0x7ffc0000
[  132.075914][   T29] audit: type=1326 audit(1760941304.337:4146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11929 comm="syz.4.3607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effd3aeefc9 code=0x7ffc0000
[  132.106170][   T29] audit: type=1326 audit(1760941304.387:4147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11929 comm="syz.4.3607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effd3aeefc9 code=0x7ffc0000
[  132.129799][   T29] audit: type=1326 audit(1760941304.387:4148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11929 comm="syz.4.3607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effd3aeefc9 code=0x7ffc0000
[  132.153895][   T29] audit: type=1326 audit(1760941304.387:4149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11929 comm="syz.4.3607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effd3aeefc9 code=0x7ffc0000
[  132.177530][   T29] audit: type=1326 audit(1760941304.387:4150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11929 comm="syz.4.3607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effd3aeefc9 code=0x7ffc0000
[  132.201088][   T29] audit: type=1326 audit(1760941304.387:4151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11929 comm="syz.4.3607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effd3aeefc9 code=0x7ffc0000
[  132.333520][T11933] SELinux: failed to load policy
[  132.549732][T11966] syzkaller1: entered promiscuous mode
[  132.555275][T11966] syzkaller1: entered allmulticast mode
[  132.747521][T11983] netlink: 3 bytes leftover after parsing attributes in process `syz.7.3630'.
[  132.798347][T11983] 0�X���: renamed from caif0
[  132.815318][T11983] 0�X���: entered allmulticast mode
[  132.820716][T11983] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  133.357141][T12015] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3645'.
[  133.448567][T12019] loop8: detected capacity change from 0 to 512
[  133.484427][T12019] EXT4-fs: Ignoring removed orlov option
[  133.499949][T12023] netlink: 'syz.7.3649': attribute type 1 has an invalid length.
[  133.521911][T12019] EXT4-fs error (device loop8): ext4_orphan_get:1392: inode #15: comm syz.8.3647: inode has both inline data and extents flags
[  133.565273][T12019] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.3647: couldn't read orphan inode 15 (err -117)
[  133.616510][T12019] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.651489][T12030] loop5: detected capacity change from 0 to 4599
[  133.671574][T12030] loop5: detected capacity change from 4599 to 6119
[  133.848522][T10762] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.911598][T12039] sctp: [Deprecated]: syz.8.3654 (pid 12039) Use of struct sctp_assoc_value in delayed_ack socket option.
[  133.911598][T12039] Use struct sctp_sack_info instead
[  134.172847][T12060] syzkaller1: entered promiscuous mode
[  134.178461][T12060] syzkaller1: entered allmulticast mode
[  134.211233][T12064] random: crng reseeded on system resumption
[  134.244185][T12064] loop4: detected capacity change from 0 to 164
[  134.251647][T12064] Unable to read rock-ridge attributes
[  134.275737][T12064] Unable to read rock-ridge attributes
[  134.283565][T12064] iso9660: Corrupted directory entry in block 4 of inode 1792
[  134.783444][T12120] loop7: detected capacity change from 0 to 128
[  134.868869][T12120] FAT-fs (loop7): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  134.937520][T12120] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  134.945450][T12120] FAT-fs (loop7): Filesystem has been set read-only
[  134.952294][T12120] bio_check_eod: 14 callbacks suppressed
[  134.952312][T12120] syz.7.3692: attempt to access beyond end of device
[  134.952312][T12120] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  134.963819][T12126] loop6: detected capacity change from 0 to 512
[  134.999624][T12126] EXT4-fs: Ignoring removed orlov option
[  135.009785][T12126] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.3694: inode has both inline data and extents flags
[  135.023166][T12126] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.3694: couldn't read orphan inode 15 (err -117)
[  135.035597][T12126] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.079550][T12133] xt_TPROXY: Can be used only with -p tcp or -p udp
[  135.103923][T12132] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=12132 comm=syz.2.3697
[  135.152043][ T5868] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.222731][T12144] SELinux: failed to load policy
[  135.351838][T12167] IPVS: Error connecting to the multicast addr
[  135.446906][T12181] sd 0:0:1:0: device reset
[  135.508856][T12193] __nla_validate_parse: 3 callbacks suppressed
[  135.508876][T12193] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3725'.
[  135.533661][T12194] bond0: (slave macvlan2): Releasing backup interface
[  135.543580][T12194] macvlan2 (unregistering): left allmulticast mode
[  135.543686][ T5115] Bluetooth: hci0: Frame reassembly failed (-84)
[  135.573734][T12194] team0 (unregistering): Port device team_slave_0 removed
[  135.581788][T12194] team0 (unregistering): Port device team_slave_1 removed
[  135.601947][T12193] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3725'.
[  135.639195][T12193] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3725'.
[  135.672918][T12201] loop6: detected capacity change from 0 to 512
[  135.686161][T12193] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3725'.
[  135.696839][T12201] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.3728: inode has both inline data and extents flags
[  135.716082][T12201] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.3728: couldn't read orphan inode 15 (err -117)
[  135.728608][T12201] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.758859][ T5868] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.782631][T12190] Process accounting resumed
[  135.892215][T12222] loop2: detected capacity change from 0 to 1764
[  135.997694][T12234] syzkaller1: entered promiscuous mode
[  136.003222][T12234] syzkaller1: entered allmulticast mode
[  136.078825][T12240] loop7: detected capacity change from 0 to 2048
[  136.121450][T12240] Alternate GPT is invalid, using primary GPT.
[  136.128245][T12240]  loop7: p2 p3 p7
[  136.206808][T12248] loop7: detected capacity change from 0 to 1764
[  136.298630][T12258] loop6: detected capacity change from 0 to 8192
[  136.333418][T12267] random: crng reseeded on system resumption
[  136.468191][T12276] loop2: detected capacity change from 0 to 512
[  136.522527][T12285] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  136.584082][T12288] loop6: detected capacity change from 0 to 1024
[  136.584493][T12288] EXT4-fs: Ignoring removed orlov option
[  136.618285][T12288] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.703258][ T5868] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.007693][T12312] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3778'.
[  137.008886][T12312] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3778'.
[  137.027881][T12312] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3778'.
[  137.028173][T12312] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3778'.
[  137.431818][T12335] loop6: detected capacity change from 0 to 128
[  137.442071][T12335] FAT-fs (loop6): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  137.477281][T12335] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  137.485231][T12335] FAT-fs (loop6): Filesystem has been set read-only
[  137.492098][T12335] syz.6.3788: attempt to access beyond end of device
[  137.492098][T12335] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[  137.589180][   T29] kauditd_printk_skb: 201 callbacks suppressed
[  137.589200][   T29] audit: type=1326 audit(1760941309.877:4353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12352 comm="syz.7.3798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  137.618901][ T3763] Bluetooth: hci0: command 0x1003 tx timeout
[  137.625026][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  137.640108][   T29] audit: type=1326 audit(1760941309.907:4354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12352 comm="syz.7.3798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  137.663848][   T29] audit: type=1326 audit(1760941309.907:4355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12352 comm="syz.7.3798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  137.687507][   T29] audit: type=1326 audit(1760941309.927:4356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12352 comm="syz.7.3798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed959cefc9 code=0x7ffc0000
[  137.743535][T12363] loop7: detected capacity change from 0 to 128
[  137.752858][T12364] ip6t_srh: unknown srh match flags  4000
[  137.786169][T12363] EXT4-fs: Ignoring removed nobh option
[  137.818642][T12363] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  137.853664][T12363] ext4 filesystem being mounted at /397/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  137.928942][   T29] audit: type=1400 audit(1760941310.217:4357): avc:  denied  { ioctl } for  pid=12361 comm="syz.7.3800" path="/397/mnt/file1" dev="loop7" ino=12 ioctlcmd=0x660b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  137.964847][ T7302] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  137.975732][T12384] IPv6: Can't replace route, no match found
[  137.989118][   T29] audit: type=1326 audit(1760941310.277:4358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12387 comm="syz.6.3815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  138.013129][   T29] audit: type=1326 audit(1760941310.277:4359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12387 comm="syz.6.3815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  138.041432][   T29] audit: type=1326 audit(1760941310.277:4360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12387 comm="syz.6.3815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  138.065107][   T29] audit: type=1326 audit(1760941310.277:4361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12387 comm="syz.6.3815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  138.088742][   T29] audit: type=1326 audit(1760941310.277:4362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12387 comm="syz.6.3815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  138.160665][T12396] geneve0 speed is unknown, defaulting to 1000
[  138.162508][T12400] loop6: detected capacity change from 0 to 1024
[  138.240543][T12400] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.269404][ T5868] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.585044][T12428] loop2: detected capacity change from 0 to 512
[  138.600957][T12428] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  138.738114][T12428] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.3829: Failed to acquire dquot type 1
[  138.758543][T12428] EXT4-fs (loop2): 1 truncate cleaned up
[  138.784165][T12428] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.829161][T12442] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3844'.
[  138.853665][T12442] hsr_slave_0: left promiscuous mode
[  138.859469][T12442] hsr_slave_1: left promiscuous mode
[  138.871273][T12446] loop8: detected capacity change from 0 to 128
[  138.887523][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.900574][T12446] FAT-fs (loop8): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  138.919744][T12446] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100)
[  138.927756][T12446] FAT-fs (loop8): Filesystem has been set read-only
[  138.980621][T12446] syz.8.3834: attempt to access beyond end of device
[  138.980621][T12446] loop8: rw=0, sector=2065, nr_sectors = 8 limit=128
[  139.311841][T12503] loop7: detected capacity change from 0 to 512
[  139.336329][T12507] loop2: detected capacity change from 0 to 512
[  139.336726][T12503] EXT4-fs error (device loop7): ext4_orphan_get:1392: inode #15: comm syz.7.3861: inode has both inline data and extents flags
[  139.342981][T12507] journal_path: Lookup failure for './file0/../file0'
[  139.356233][T12503] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.3861: couldn't read orphan inode 15 (err -117)
[  139.362686][T12507] EXT4-fs: error: could not find journal device path
[  139.375243][T12503] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.391413][T12512] loop8: detected capacity change from 0 to 128
[  139.400452][T12512] EXT4-fs: Ignoring removed nobh option
[  139.420392][T12507] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3863'.
[  139.434325][T12512] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  139.455642][T12512] ext4 filesystem being mounted at /167/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  139.466456][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.540096][T10762] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  139.771783][T12574] x_tables: duplicate underflow at hook 2
[  139.823215][T12585] loop2: detected capacity change from 0 to 128
[  139.831036][T12585] FAT-fs (loop2): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  139.844283][T12584] loop8: detected capacity change from 0 to 512
[  139.847934][T12585] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  139.858581][T12585] FAT-fs (loop2): Filesystem has been set read-only
[  139.868546][T12585] syz.2.3888: attempt to access beyond end of device
[  139.868546][T12585] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  139.870606][T12584] EXT4-fs error (device loop8): ext4_xattr_inode_iget:441: inode #18: comm syz.8.3887: iget: bad extra_isize 90 (inode size 256)
[  139.930202][T12584] EXT4-fs error (device loop8): ext4_xattr_inode_iget:446: comm syz.8.3887: error while reading EA inode 18 err=-117
[  139.944987][T12584] EXT4-fs error (device loop8): ext4_xattr_inode_iget:441: inode #18: comm syz.8.3887: iget: bad extra_isize 90 (inode size 256)
[  139.966336][T12584] EXT4-fs error (device loop8): ext4_xattr_inode_iget:446: comm syz.8.3887: error while reading EA inode 18 err=-117
[  139.996265][T12584] EXT4-fs (loop8): 1 orphan inode deleted
[  140.002644][T12584] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.067258][T10762] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.077748][T12610] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.078791][T12612] netlink: 'syz.6.3901': attribute type 1 has an invalid length.
[  140.194686][T12629] loop6: detected capacity change from 0 to 128
[  140.204916][T12633] loop8: detected capacity change from 0 to 128
[  140.215123][T12633] syz.8.3911: attempt to access beyond end of device
[  140.215123][T12633] loop8: rw=2049, sector=154, nr_sectors = 6 limit=128
[  140.229249][T12633] syz.8.3911: attempt to access beyond end of device
[  140.229249][T12633] loop8: rw=2049, sector=158, nr_sectors = 2 limit=128
[  140.242692][T12633] buffer_io_error: 20 callbacks suppressed
[  140.242709][T12633] Buffer I/O error on dev loop8, logical block 79, lost async page write
[  140.257531][T12633] syz.8.3911: attempt to access beyond end of device
[  140.257531][T12633] loop8: rw=2049, sector=160, nr_sectors = 2 limit=128
[  140.270998][T12633] Buffer I/O error on dev loop8, logical block 80, lost async page write
[  140.306145][T12633] syz.8.3911: attempt to access beyond end of device
[  140.306145][T12633] loop8: rw=2049, sector=162, nr_sectors = 6 limit=128
[  140.320421][T12633] syz.8.3911: attempt to access beyond end of device
[  140.320421][T12633] loop8: rw=2049, sector=166, nr_sectors = 2 limit=128
[  140.334004][T12633] Buffer I/O error on dev loop8, logical block 83, lost async page write
[  140.343487][T12633] syz.8.3911: attempt to access beyond end of device
[  140.343487][T12633] loop8: rw=2049, sector=168, nr_sectors = 2 limit=128
[  140.356950][T12633] Buffer I/O error on dev loop8, logical block 84, lost async page write
[  140.367754][T12633] syz.8.3911: attempt to access beyond end of device
[  140.367754][T12633] loop8: rw=2049, sector=186, nr_sectors = 6 limit=128
[  140.385364][T12646] loop7: detected capacity change from 0 to 512
[  140.392378][T12646] journal_path: Lookup failure for './file0/../file0'
[  140.399298][T12646] EXT4-fs: error: could not find journal device path
[  140.401340][T12633] syz.8.3911: attempt to access beyond end of device
[  140.401340][T12633] loop8: rw=2049, sector=190, nr_sectors = 2 limit=128
[  140.419569][T12633] Buffer I/O error on dev loop8, logical block 95, lost async page write
[  140.433469][T12633] syz.8.3911: attempt to access beyond end of device
[  140.433469][T12633] loop8: rw=2049, sector=192, nr_sectors = 2 limit=128
[  140.447056][T12633] Buffer I/O error on dev loop8, logical block 96, lost async page write
[  140.468520][T12633] syz.8.3911: attempt to access beyond end of device
[  140.468520][T12633] loop8: rw=2049, sector=194, nr_sectors = 6 limit=128
[  140.482736][T12633] Buffer I/O error on dev loop8, logical block 99, lost async page write
[  140.491389][T12633] Buffer I/O error on dev loop8, logical block 100, lost async page write
[  140.500669][T12633] Buffer I/O error on dev loop8, logical block 111, lost async page write
[  140.509248][T12633] Buffer I/O error on dev loop8, logical block 112, lost async page write
[  140.613371][T12656] loop4: detected capacity change from 0 to 128
[  140.623010][T12656] FAT-fs (loop4): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  140.638396][T12656] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  140.646328][T12656] FAT-fs (loop4): Filesystem has been set read-only
[  140.763533][T12680] __nla_validate_parse: 3 callbacks suppressed
[  140.763552][T12680] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3933'.
[  140.781213][T12682] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3932'.
[  140.790279][T12682] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3932'.
[  140.838837][ T5650] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x4
[  140.846609][ T5650] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x2
[  140.854308][ T5650] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x3
[  140.878059][ T5650] hid-generic 0000:3000000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  140.977995][T12696] vhci_hcd: SetHubDepth req not supported for USB 2.0 roothub
[  141.049275][T12700] loop4: detected capacity change from 0 to 4096
[  141.066460][T12700] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.109057][T12707] loop2: detected capacity change from 0 to 4096
[  141.142035][T12707] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.303174][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.434626][T12724] loop2: detected capacity change from 0 to 512
[  141.441702][T12724] EXT4-fs: Ignoring removed mblk_io_submit option
[  141.454573][T12724] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13
[  141.465127][T12724] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.3952: attempt to clear invalid blocks 2 len 1
[  141.496565][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.507551][T12724] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  141.527451][T12724] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.3952: invalid indirect mapped block 1819239214 (level 0)
[  141.618557][T12724] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.3952: invalid indirect mapped block 1819239214 (level 1)
[  141.636052][T12724] EXT4-fs (loop2): 1 truncate cleaned up
[  141.642576][T12724] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.723348][T12724] EXT4-fs (loop2): Quota file not on filesystem root. Journaled quota will not work
[  141.744011][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.771850][T12743] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3963'.
[  141.781015][T12743] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3963'.
[  141.790079][T12743] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3963'.
[  141.933668][T12746] loop7: detected capacity change from 0 to 8192
[  141.956579][T12758] vhci_hcd: invalid port number 63
[  141.961816][T12758] vhci_hcd: default hub control req: 0000 vfffc i003f l0
[  142.114176][T12780] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  142.207626][T12791] loop7: detected capacity change from 0 to 4096
[  142.217289][T12791] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.383919][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.423523][T12826] IPv6: NLM_F_CREATE should be specified when creating new route
[  142.461849][T12832] SELinux: failed to load policy
[  142.592079][T12848] loop2: detected capacity change from 0 to 512
[  142.614676][T12848] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  142.639841][T12858] loop7: detected capacity change from 0 to 128
[  142.650058][T12848] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[  142.663756][T12848] EXT4-fs (loop2): 1 truncate cleaned up
[  142.670992][T12848] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.695755][   T29] kauditd_printk_skb: 112 callbacks suppressed
[  142.695770][   T29] audit: type=1326 audit(1760941314.977:4473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12863 comm="syz.8.4015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  142.728524][   T29] audit: type=1326 audit(1760941314.977:4474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12863 comm="syz.8.4015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  142.752156][   T29] audit: type=1326 audit(1760941314.987:4475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12863 comm="syz.8.4015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  142.775830][   T29] audit: type=1326 audit(1760941314.987:4476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12863 comm="syz.8.4015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  142.776915][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.811192][   T29] audit: type=1326 audit(1760941315.087:4477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12863 comm="syz.8.4015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  142.888204][T12875] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4021'.
[  142.918067][   T29] audit: type=1400 audit(1760941315.187:4478): avc:  denied  { getattr } for  pid=12876 comm="syz.8.4023" name="[io_uring]" dev="anon_inodefs" ino=36588 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  142.963806][   T29] audit: type=1107 audit(1760941315.237:4479): pid=12881 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  142.998794][T12890] loop8: detected capacity change from 0 to 4096
[  143.007146][   T29] audit: type=1326 audit(1760941315.257:4480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12887 comm="syz.6.4026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  143.021179][T12890] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.030891][   T29] audit: type=1326 audit(1760941315.267:4481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12887 comm="syz.6.4026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  143.067088][   T29] audit: type=1326 audit(1760941315.267:4482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12887 comm="syz.6.4026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  143.098460][T12897] netlink: 256 bytes leftover after parsing attributes in process `syz.6.4029'.
[  143.304154][T10762] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.333679][T12935] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4041'.
[  143.379888][T12938] loop7: detected capacity change from 0 to 512
[  143.406996][T12939] loop8: detected capacity change from 0 to 512
[  143.419435][T12939] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  143.422268][T12938] EXT4-fs (loop7): 1 orphan inode deleted
[  143.435685][T12938] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.448958][ T5138] EXT4-fs error (device loop7): ext4_release_dquot:6981: comm kworker/u8:34: Failed to release dquot type 1
[  143.458216][T12943] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  143.458216][T12943]    program syz.4.4044 not setting count and/or reply_len properly
[  143.461020][T12938] ext4 filesystem being mounted at /444/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.479752][T12939] EXT4-fs error (device loop8): ext4_init_orphan_info:618: comm syz.8.4038: orphan file block 0: bad magic
[  143.500427][T12939] EXT4-fs (loop8): mount failed
[  143.517130][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.530711][T12948] loop2: detected capacity change from 0 to 512
[  143.538730][T12948] EXT4-fs (loop2): orphan cleanup on readonly fs
[  143.545582][T12948] EXT4-fs warning (device loop2): ext4_xattr_inode_get:546: inode #11: comm syz.2.4046: ea_inode file size=4 entry size=6
[  143.560267][T12948] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  143.573452][T12948] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #15: comm syz.2.4046: corrupted inode contents
[  143.573709][T12952] loop7: detected capacity change from 0 to 512
[  143.585504][T12948] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #15: comm syz.2.4046: mark_inode_dirty error
[  143.603174][T12948] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #15: comm syz.2.4046: corrupted inode contents
[  143.615611][T12952] EXT4-fs: Ignoring removed mblk_io_submit option
[  143.622302][T12948] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2996: inode #15: comm syz.2.4046: mark_inode_dirty error
[  143.635204][T12948] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2999: inode #15: comm syz.2.4046: mark inode dirty (error -117)
[  143.648584][T12952] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -13
[  143.650070][T12948] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[  143.665933][T12948] EXT4-fs (loop2): 1 orphan inode deleted
[  143.666356][T12952] EXT4-fs error (device loop7): ext4_clear_blocks:876: inode #13: comm syz.7.4045: attempt to clear invalid blocks 2 len 1
[  143.672250][T12948] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  143.712019][T12952] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  143.727474][T12952] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #13: comm syz.7.4045: invalid indirect mapped block 1819239214 (level 0)
[  143.750480][T12960] netlink: 444 bytes leftover after parsing attributes in process `syz.8.4050'.
[  143.756171][T12952] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #13: comm syz.7.4045: invalid indirect mapped block 1819239214 (level 1)
[  143.777396][T12958] loop4: detected capacity change from 0 to 4096
[  143.785333][T12952] EXT4-fs (loop7): 1 truncate cleaned up
[  143.785784][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.792088][T12952] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.820862][T12958] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.827871][T12952] EXT4-fs (loop7): Quota file not on filesystem root. Journaled quota will not work
[  143.856885][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.017986][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.033712][T12984] bond1: entered allmulticast mode
[  144.046222][T12984] 8021q: adding VLAN 0 to HW filter on device bond1
[  144.083769][T12992] loop4: detected capacity change from 0 to 512
[  144.092357][T12992] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  144.119751][T12992] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.4061: invalid indirect mapped block 4294967295 (level 0)
[  144.135975][T12992] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.4061: invalid indirect mapped block 4294967295 (level 1)
[  144.156122][T12992] EXT4-fs (loop4): 1 orphan inode deleted
[  144.161912][T12992] EXT4-fs (loop4): 1 truncate cleaned up
[  144.168251][T12992] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.209263][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.275580][T13027] netdevsim netdevsim8: loading /lib/firmware/. failed with error -22
[  144.283901][T13027] netdevsim netdevsim8: Direct firmware load for . failed with error -22
[  144.515465][T13050] loop9: detected capacity change from 0 to 7
[  144.949520][T13070] loop6: detected capacity change from 0 to 4096
[  144.960029][T13070] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.032063][T13077] loop7: detected capacity change from 0 to 4096
[  145.042525][T13077] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.064013][T13081] ipvlan2: entered promiscuous mode
[  145.070838][T13081] bridge0: port 3(ipvlan2) entered blocking state
[  145.077364][T13081] bridge0: port 3(ipvlan2) entered disabled state
[  145.086169][T13081] ipvlan2: entered allmulticast mode
[  145.091518][T13081] bridge0: entered allmulticast mode
[  145.131506][T13081] ipvlan2: left allmulticast mode
[  145.136695][T13081] bridge0: left allmulticast mode
[  145.204039][ T5868] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.238335][T13095] loop6: detected capacity change from 0 to 512
[  145.283985][T13095] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.353211][T13095] ext4 filesystem being mounted at /612/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.437601][ T5868] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.606418][T13146] netlink: 'syz.2.4129': attribute type 18 has an invalid length.
[  145.665057][T13154] IPVS: Scheduler module ip_vs_ not found
[  145.806495][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.841809][T13180] __nla_validate_parse: 5 callbacks suppressed
[  145.841826][T13180] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4144'.
[  146.067754][T13202] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  146.075237][T13202] batman_adv: batadv0: Removing interface: batadv_slave_0
[  146.086874][T13202] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  146.094299][T13202] batman_adv: batadv0: Removing interface: batadv_slave_1
[  146.104304][T13200] loop6: detected capacity change from 0 to 4096
[  146.115487][T13200] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.474479][ T5868] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.500244][T13230] loop7: detected capacity change from 0 to 1024
[  146.522784][T13230] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.569198][T13238] loop6: detected capacity change from 0 to 4096
[  146.585809][T13230] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  146.608030][T13238] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.625958][T13230] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  146.638213][T13230] EXT4-fs (loop7): This should not happen!! Data will be lost
[  146.638213][T13230] 
[  146.638457][T13238] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #15: comm syz.6.4167: corrupted inode contents
[  146.647884][T13230] EXT4-fs (loop7): Total free blocks count 0
[  146.647905][T13230] EXT4-fs (loop7): Free/Dirty block details
[  146.647918][T13230] EXT4-fs (loop7): free_blocks=68451041280
[  146.647933][T13230] EXT4-fs (loop7): dirty_blocks=80
[  146.647949][T13230] EXT4-fs (loop7): Block reservation details
[  146.689124][T13230] EXT4-fs (loop7): i_reserved_data_blocks=5
[  146.696806][T13238] EXT4-fs error (device loop6): ext4_dirty_inode:6517: inode #15: comm syz.6.4167: mark_inode_dirty error
[  146.708883][T13238] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #15: comm syz.6.4167: corrupted inode contents
[  146.720933][T13238] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #15: comm syz.6.4167: mark_inode_dirty error
[  146.738928][T13247] EXT4-fs (loop6): shut down requested (1)
[  146.765912][ T5115] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 68 with error 28
[  146.776576][T13249] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4174'.
[  146.787226][T13249] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4174'.
[  146.796987][ T5868] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.807815][ T5115] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  146.868796][T13256] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.912014][T13257] loop2: detected capacity change from 0 to 4096
[  146.919115][T13262] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4180'.
[  146.934128][T13257] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.959740][T13256] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.003002][T13267] loop6: detected capacity change from 0 to 164
[  147.012264][T13256] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.050902][T13267] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  147.088857][T13256] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.107665][T13267] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  147.174084][ T5115] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  147.199890][ T5115] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  147.208252][ T5115] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  147.233831][ T5115] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  147.397213][T13288] loop7: detected capacity change from 0 to 1024
[  147.407496][T13288] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.454798][ T3418] IPVS: starting estimator thread 0...
[  147.496434][T13288] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 1 with error 28
[  147.508843][T13288] EXT4-fs (loop7): This should not happen!! Data will be lost
[  147.508843][T13288] 
[  147.518523][T13288] EXT4-fs (loop7): Total free blocks count 0
[  147.524520][T13288] EXT4-fs (loop7): Free/Dirty block details
[  147.530483][T13288] EXT4-fs (loop7): free_blocks=0
[  147.535439][T13288] EXT4-fs (loop7): dirty_blocks=0
[  147.540545][T13288] EXT4-fs (loop7): Block reservation details
[  147.546576][T13288] EXT4-fs (loop7): i_reserved_data_blocks=0
[  147.575986][T13295] IPVS: using max 2304 ests per chain, 115200 per kthread
[  147.612843][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.623093][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.696080][   T29] kauditd_printk_skb: 164 callbacks suppressed
[  147.696096][   T29] audit: type=1326 audit(1760941319.987:4644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13312 comm="syz.2.4203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  147.796388][   T29] audit: type=1326 audit(1760941320.017:4645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13312 comm="syz.2.4203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  147.820074][   T29] audit: type=1326 audit(1760941320.017:4646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13312 comm="syz.2.4203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  147.843848][   T29] audit: type=1326 audit(1760941320.017:4647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13312 comm="syz.2.4203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  147.867582][   T29] audit: type=1326 audit(1760941320.027:4648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13312 comm="syz.2.4203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  147.891277][   T29] audit: type=1326 audit(1760941320.027:4649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13312 comm="syz.2.4203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  147.914939][   T29] audit: type=1326 audit(1760941320.027:4650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13312 comm="syz.2.4203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  147.938615][   T29] audit: type=1326 audit(1760941320.037:4651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13312 comm="syz.2.4203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  147.962135][   T29] audit: type=1326 audit(1760941320.037:4652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13312 comm="syz.2.4203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  147.985740][   T29] audit: type=1326 audit(1760941320.037:4653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13312 comm="syz.2.4203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  148.052915][T13328] veth0_to_team: entered promiscuous mode
[  148.063558][   T10] kernel read not supported for file /1327/task (pid: 10 comm: kworker/0:1)
[  148.179647][T13340] random: crng reseeded on system resumption
[  148.231188][T13344] xt_hashlimit: max too large, truncated to 1048576
[  148.509812][T13377] loop7: detected capacity change from 0 to 512
[  148.532493][T13377] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2
[  148.543959][T13380] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  148.543959][T13380]    program syz.2.4228 not setting count and/or reply_len properly
[  148.548348][T13377] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #13: comm syz.7.4233: invalid indirect mapped block 8 (level 2)
[  148.561475][T13383] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4235'.
[  148.575261][T13377] EXT4-fs (loop7): Remounting filesystem read-only
[  148.589650][T13377] EXT4-fs (loop7): 1 truncate cleaned up
[  148.594214][T13385] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.595718][T13377] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.672484][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.773153][T13401] netlink: 'syz.8.4244': attribute type 21 has an invalid length.
[  148.805968][T13401] netlink: 132 bytes leftover after parsing attributes in process `syz.8.4244'.
[  148.815204][T13401] netlink: 20 bytes leftover after parsing attributes in process `syz.8.4244'.
[  148.829113][T13407] loop2: detected capacity change from 0 to 2048
[  148.866538][T13407] EXT4-fs (loop2): failed to initialize system zone (-117)
[  148.873978][T13407] EXT4-fs (loop2): mount failed
[  148.882600][T13414] netlink: 'syz.7.4249': attribute type 3 has an invalid length.
[  148.897958][T13417] loop6: detected capacity change from 0 to 512
[  148.928055][T13417] EXT4-fs (loop6): 1 truncate cleaned up
[  149.002526][T13424] loop7: detected capacity change from 0 to 512
[  149.035139][T13424] EXT4-fs warning (device loop7): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  149.074815][T13424] EXT4-fs (loop7): mount failed
[  149.102342][T13447] netlink: 'syz.2.4262': attribute type 1 has an invalid length.
[  149.110251][T13447] netlink: 76 bytes leftover after parsing attributes in process `syz.2.4262'.
[  149.129993][T13446] loop6: detected capacity change from 0 to 512
[  149.145566][T13451] netlink: 'syz.7.4265': attribute type 21 has an invalid length.
[  149.153840][T13451] netlink: 132 bytes leftover after parsing attributes in process `syz.7.4265'.
[  149.163040][T13451] netlink: 'syz.7.4265': attribute type 1 has an invalid length.
[  149.292767][T13472] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4273'.
[  149.494988][T13503] netlink: 'syz.8.4288': attribute type 10 has an invalid length.
[  149.511573][T13503] ipvlan0: entered allmulticast mode
[  149.517063][T13503] veth0_vlan: entered allmulticast mode
[  149.523037][ T3763] Bluetooth: hci0: sending frame failed (-49)
[  149.529334][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -49
[  149.875826][T13541] loop8: detected capacity change from 0 to 4096
[  149.958833][T13554] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  150.079108][T13566] netlink: 'syz.7.4317': attribute type 1 has an invalid length.
[  150.381130][T13613] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[  150.524259][T13634] loop2: detected capacity change from 0 to 1024
[  150.537948][T13634] EXT4-fs: Ignoring removed orlov option
[  150.543743][T13634] EXT4-fs: Ignoring removed nomblk_io_submit option
[  150.603153][T13644] atomic_op ffff888136747928 conn xmit_atomic 0000000000000000
[  151.001205][T13715] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.038261][T13722] loop6: detected capacity change from 0 to 4096
[  151.052177][T13715] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.101393][T13715] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.158982][T13715] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.205401][T10935] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  151.219351][T10935] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  151.246634][T10935] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  151.269626][ T5115] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  151.462265][T13771] raw_sendmsg: syz.8.4410 forgot to set AF_INET. Fix it!
[  151.526851][T13778] loop2: detected capacity change from 0 to 512
[  151.547419][T13778] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c01c, mo2=0002]
[  151.579449][T13778] System zones: 1-3, 19-19, 35-38
[  151.588566][T13778] ext4 filesystem being mounted at /963/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.602308][T13778] EXT4-fs warning (device loop2): ext4_group_extend:1891: can't read last block, resize aborted
[  151.660630][T13801] __nla_validate_parse: 5 callbacks suppressed
[  151.660662][T13801] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4426'.
[  151.682987][T13795] netlink: 'syz.8.4423': attribute type 10 has an invalid length.
[  151.691082][T13795] netlink: 65015 bytes leftover after parsing attributes in process `syz.8.4423'.
[  151.719239][T13805] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4428'.
[  151.741195][T13807] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.748703][T13807] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.767874][T13807] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.775337][T13807] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.783597][T13812] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4430'.
[  151.915166][T13829] loop2: detected capacity change from 0 to 4096
[  152.002737][T13838] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4443'.
[  152.083480][T13844] loop2: detected capacity change from 0 to 4096
[  152.428620][T13856] loop6: detected capacity change from 0 to 512
[  152.435240][T13856] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  152.464711][T13858] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  152.546133][T13858] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.781565][   T29] kauditd_printk_skb: 152 callbacks suppressed
[  152.781581][   T29] audit: type=1400 audit(1760941325.067:4805): avc:  denied  { mount } for  pid=13883 comm="syz.7.4465" name="/" dev="rpc_pipefs" ino=40167 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  152.851752][   T29] audit: type=1400 audit(1760941325.107:4806): avc:  denied  { unmount } for  pid=7302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  152.872288][   T29] audit: type=1326 audit(1760941325.117:4807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13887 comm="syz.6.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  152.896061][   T29] audit: type=1326 audit(1760941325.117:4808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13887 comm="syz.6.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  152.919580][   T29] audit: type=1326 audit(1760941325.117:4809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13888 comm="syz.4.4468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effd3aeefc9 code=0x7ffc0000
[  152.943280][   T29] audit: type=1326 audit(1760941325.117:4810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13888 comm="syz.4.4468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7effd3aeefc9 code=0x7ffc0000
[  152.966714][   T29] audit: type=1326 audit(1760941325.117:4811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13888 comm="syz.4.4468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effd3aeefc9 code=0x7ffc0000
[  152.990218][   T29] audit: type=1326 audit(1760941325.127:4812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13887 comm="syz.6.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  153.013881][   T29] audit: type=1326 audit(1760941325.127:4813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13887 comm="syz.6.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  153.037540][   T29] audit: type=1326 audit(1760941325.127:4814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13887 comm="syz.6.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  153.097254][T13903] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4475'.
[  153.253430][T13924] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  153.434365][   T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x4
[  153.442282][   T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x2
[  153.450559][   T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x3
[  153.458952][   T10] hid-generic 0000:3000000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  153.552237][T13972] netlink: 5452 bytes leftover after parsing attributes in process `syz.4.4509'.
[  153.654240][T13984] netlink: 'syz.8.4513': attribute type 10 has an invalid length.
[  153.683374][T13984] bond0: (slave dummy0): Releasing backup interface
[  153.698789][T13984] netlink: 'syz.8.4513': attribute type 10 has an invalid length.
[  153.717305][T13984] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  153.725556][T13993] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4517'.
[  153.735416][T13991] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.742912][T13991] batman_adv: batadv0: Removing interface: batadv_slave_0
[  153.799154][T13998] netlink: 3 bytes leftover after parsing attributes in process `syz.6.4520'.
[  153.812522][T13998] batadv1: entered promiscuous mode
[  153.817887][T13998] batadv1: entered allmulticast mode
[  153.876261][T14003] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4522'.
[  153.943130][T14017] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  154.065579][T14039] batman_adv: batadv0: Removing interface: batadv_slave_0
[  154.623578][T14096] syzkaller1: entered promiscuous mode
[  154.629243][T14096] syzkaller1: entered allmulticast mode
[  154.916973][T14122] sctp: [Deprecated]: syz.4.4574 (pid 14122) Use of struct sctp_assoc_value in delayed_ack socket option.
[  154.916973][T14122] Use struct sctp_sack_info instead
[  155.096775][T14143] loop2: detected capacity change from 0 to 512
[  155.106836][T14143] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  155.116701][T14143] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.4587: iget: bad i_size value: 360287970189639680
[  155.130132][T14143] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.4587: couldn't read orphan inode 15 (err -117)
[  155.211357][T14157] netlink: 'syz.6.4592': attribute type 1 has an invalid length.
[  155.224315][T14159] loop7: detected capacity change from 0 to 512
[  155.239375][T14159] EXT4-fs warning (device loop7): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  155.256135][T14159] EXT4-fs (loop7): mount failed
[  155.475794][ T5650] IPVS: starting estimator thread 0...
[  155.481884][T14190] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  155.519155][T14200] random: crng reseeded on system resumption
[  155.539234][T14202] syzkaller1: entered promiscuous mode
[  155.544829][T14202] syzkaller1: entered allmulticast mode
[  155.595991][T14197] IPVS: using max 2256 ests per chain, 112800 per kthread
[  155.760829][T14232] loop7: detected capacity change from 0 to 1024
[  155.815945][T14239] loop4: detected capacity change from 0 to 512
[  155.856396][T14239] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.4638: couldn't read orphan inode 26 (err -116)
[  155.876436][T14239] ext4 filesystem being mounted at /909/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.887674][T14254] syzkaller1: entered promiscuous mode
[  155.893302][T14254] syzkaller1: entered allmulticast mode
[  156.701886][T14334] loop4: detected capacity change from 0 to 512
[  156.708754][T14334] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  156.720213][T14334] EXT4-fs (loop4): 1 truncate cleaned up
[  156.961918][T14363] loop4: detected capacity change from 0 to 1024
[  157.022992][T14374] loop7: detected capacity change from 0 to 512
[  157.048714][T14374] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.4686: couldn't read orphan inode 26 (err -116)
[  157.063396][T14374] ext4 filesystem being mounted at /583/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.183643][T14397] __nla_validate_parse: 6 callbacks suppressed
[  157.183729][T14397] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4695'.
[  157.327198][T14407] usb usb8: usbfs: process 14407 (syz.7.4701) did not claim interface 0 before use
[  157.396498][T14420] sctp: [Deprecated]: syz.2.4705 (pid 14420) Use of int in max_burst socket option deprecated.
[  157.396498][T14420] Use struct sctp_assoc_value instead
[  157.609656][T14436] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4716'.
[  158.330663][T14486] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4739'.
[  158.459980][T14492] netlink: 'syz.2.4751': attribute type 10 has an invalid length.
[  158.586829][T14495] loop7: detected capacity change from 0 to 4096
[  158.609761][T14500] loop4: detected capacity change from 0 to 512
[  158.636784][T14500] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  158.776996][T14500] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  158.800824][T14500] EXT4-fs (loop4): 1 truncate cleaned up
[  158.831752][T14500] EXT4-fs warning (device loop4): ext4_resize_fs:2019: can't read last block, resize aborted
[  158.990358][   T29] kauditd_printk_skb: 172 callbacks suppressed
[  158.990424][   T29] audit: type=1400 audit(1760941331.277:4986): avc:  denied  { bind } for  pid=14533 comm="syz.2.4762" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  159.040825][   T29] audit: type=1326 audit(1760941331.327:4987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14538 comm="syz.4.4763" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7effd3aeefc9 code=0x0
[  159.076866][   T29] audit: type=1326 audit(1760941331.367:4988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.2.4766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  159.136603][   T29] audit: type=1326 audit(1760941331.397:4989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.2.4766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  159.160285][   T29] audit: type=1326 audit(1760941331.397:4990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.2.4766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  159.184063][   T29] audit: type=1326 audit(1760941331.397:4991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.2.4766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  159.207723][   T29] audit: type=1326 audit(1760941331.397:4992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.2.4766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  159.231234][T14562] loop6: detected capacity change from 0 to 128
[  159.233636][T14562] ext4 filesystem being mounted at /723/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  159.237842][   T29] audit: type=1326 audit(1760941331.397:4993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.2.4766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  159.271722][   T29] audit: type=1326 audit(1760941331.397:4994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.2.4766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09686cefc9 code=0x7ffc0000
[  159.515205][   T29] audit: type=1326 audit(1760941331.797:4995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14595 comm="syz.8.4788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  159.741470][T14623] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4800'.
[  159.794839][T14625] xt_hashlimit: max too large, truncated to 1048576
[  159.858858][T14631] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4804'.
[  160.148657][T14646] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4810'.
[  160.161872][T14646] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4810'.
[  160.268516][T14655] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4814'.
[  160.314534][T14662] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  160.316636][T14663] loop4: detected capacity change from 0 to 512
[  160.360841][T14666] random: crng reseeded on system resumption
[  160.395285][T14668] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  160.439129][T14678] random: crng reseeded on system resumption
[  160.457387][T14676] netlink: 197276 bytes leftover after parsing attributes in process `syz.4.4825'.
[  160.480509][T14684] $H�: renamed from bond0 (while UP)
[  160.486215][T14683] loop8: detected capacity change from 0 to 512
[  160.495554][T14684] $H�: entered promiscuous mode
[  160.500724][T14684] bond_slave_0: entered promiscuous mode
[  160.506596][T14684] bond_slave_1: entered promiscuous mode
[  160.520168][T14683] EXT4-fs mount: 34 callbacks suppressed
[  160.520188][T14683] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.561727][T14683] ext4 filesystem being mounted at /389/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.616869][T10762] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.628815][T14702] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  160.637976][T14702] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  160.702269][T14714] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 64993
[  160.842589][T14743] loop8: detected capacity change from 0 to 128
[  160.856101][T14743] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  160.868522][T14743] ext4 filesystem being mounted at /395/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  160.874225][T14747] loop6: detected capacity change from 0 to 1024
[  160.932345][T14747] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  160.943313][T14747] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  161.065978][T14747] JBD2: no valid journal superblock found
[  161.071771][T14747] EXT4-fs (loop6): Could not load journal inode
[  161.155005][T14747] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  161.236841][T14758] loop6: detected capacity change from 0 to 128
[  161.531340][T10762] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  161.578878][T14769] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  161.868684][T14785] program syz.7.4870 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  161.948959][T14800] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4877'.
[  161.984133][T14808] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  161.992481][T14808] SELinux: failed to load policy
[  162.004356][T14809] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  162.010923][T14809] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  162.018639][T14809] vhci_hcd vhci_hcd.0: Device attached
[  162.030964][T14810] vhci_hcd: connection closed
[  162.031360][ T5115] vhci_hcd: stop threads
[  162.040639][ T5115] vhci_hcd: release socket
[  162.045294][ T5115] vhci_hcd: disconnect device
[  162.122121][T14826] program syz.2.4887 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  162.459052][T14848] __nla_validate_parse: 2 callbacks suppressed
[  162.459070][T14848] netlink: 19 bytes leftover after parsing attributes in process `syz.7.4896'.
[  162.564532][T14864] loop4: detected capacity change from 0 to 512
[  162.598306][T14864] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.611231][T14864] ext4 filesystem being mounted at /960/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.672676][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.087984][T14897] netlink: 5452 bytes leftover after parsing attributes in process `syz.4.4918'.
[  163.438451][T14929] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[  163.748990][T14970] loop7: detected capacity change from 0 to 512
[  163.769487][T14970] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.782456][T14970] ext4 filesystem being mounted at /663/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.078637][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.307751][   T29] kauditd_printk_skb: 192 callbacks suppressed
[  164.307773][   T29] audit: type=1326 audit(1760941336.577:5188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14976 comm="syz.6.4955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  164.337552][   T29] audit: type=1326 audit(1760941336.577:5189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14976 comm="syz.6.4955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  164.361238][   T29] audit: type=1326 audit(1760941336.577:5190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14976 comm="syz.6.4955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  164.384930][   T29] audit: type=1326 audit(1760941336.577:5191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14976 comm="syz.6.4955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ca59efc9 code=0x7ffc0000
[  164.424382][   T29] audit: type=1400 audit(1760941336.707:5192): avc:  denied  { name_connect } for  pid=14980 comm="syz.7.4954" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  164.445700][   T29] audit: type=1400 audit(1760941336.737:5193): avc:  denied  { read write } for  pid=14982 comm="syz.6.4957" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  164.469258][   T29] audit: type=1400 audit(1760941336.737:5194): avc:  denied  { open } for  pid=14982 comm="syz.6.4957" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  164.498477][   T29] audit: type=1400 audit(1760941336.787:5195): avc:  denied  { ioctl } for  pid=14982 comm="syz.6.4957" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  164.552602][   T29] audit: type=1326 audit(1760941336.837:5196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14990 comm="syz.8.4961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  164.593278][   T29] audit: type=1326 audit(1760941336.867:5197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14990 comm="syz.8.4961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7fd5c365efc9 code=0x7ffc0000
[  164.738039][T15015] hub 9-0:1.0: USB hub found
[  164.743779][T15015] hub 9-0:1.0: 8 ports detected
[  164.770300][T15019] x_tables: duplicate underflow at hook 1
[  164.841149][T15035] netlink: 'syz.8.4981': attribute type 7 has an invalid length.
[  164.858794][T15038] SELinux:  policydb version 0 does not match my version range 15-35
[  164.889923][T15038] SELinux: failed to load policy
[  164.968871][T15054] syz.4.4989 (15054) used greatest stack depth: 9360 bytes left
[  165.147961][T15089] loop4: detected capacity change from 0 to 164
[  165.190160][T15093] loop4: detected capacity change from 0 to 1024
[  165.214211][T15093] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.5008: Failed to acquire dquot type 0
[  165.230524][T15093] EXT4-fs (loop4): 1 truncate cleaned up
[  165.246380][T15093] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.301741][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.315086][T15112] 9pnet_fd: Insufficient options for proto=fd
[  165.489895][T15140] geneve0 speed is unknown, defaulting to 1000
[  165.524104][T15151] ������: renamed from vlan1
[  165.597482][T15162] loop6: detected capacity change from 0 to 512
[  165.605818][T15158] loop4: detected capacity change from 0 to 1024
[  165.613048][T15158] EXT4-fs: Ignoring removed nomblk_io_submit option
[  165.621144][T15158] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  165.630326][T15162] EXT4-fs warning (device loop6): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  165.647022][T15158] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.659948][T15162] EXT4-fs (loop6): mount failed
[  165.694933][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.753001][T15177] netlink: 'syz.2.5045': attribute type 12 has an invalid length.
[  165.761427][T15177] netlink: 'syz.2.5045': attribute type 29 has an invalid length.
[  165.769285][T15177] netlink: 148 bytes leftover after parsing attributes in process `syz.2.5045'.
[  165.778358][T15177] netlink: 'syz.2.5045': attribute type 2 has an invalid length.
[  165.786185][T15177] netlink: 23 bytes leftover after parsing attributes in process `syz.2.5045'.
[  165.808460][T15177] Process accounting paused
[  165.876637][T15187] vhci_hcd: invalid port number 96
[  165.881847][T15187] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  165.922903][T15192] loop4: detected capacity change from 0 to 1024
[  165.931149][T15192] EXT4-fs: inline encryption not supported
[  165.954991][T15202] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5057'.
[  165.975471][T15192] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.106238][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.210965][T15236] loop4: detected capacity change from 0 to 512
[  166.219741][T15240] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5072'.
[  166.228935][T15236] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  166.261982][T15236] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.5071: Failed to acquire dquot type 1
[  166.339249][T15236] EXT4-fs (loop4): 1 truncate cleaned up
[  166.349910][T15236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.424190][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.607547][   T10] kernel read not supported for file /input/event1 (pid: 10 comm: kworker/0:1)
[  166.678352][T15273] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  166.920069][T15296] loop6: detected capacity change from 0 to 512
[  166.942758][T15296] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.998458][T15296] ext4 filesystem being mounted at /780/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.107063][ T5868] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.229811][T15321] netlink: 128 bytes leftover after parsing attributes in process `syz.4.5108'.
[  167.239581][T15321] netlink: 128 bytes leftover after parsing attributes in process `syz.4.5108'.
[  167.320747][T15327] SELinux: failed to load policy
[  167.533990][T15347] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5122'.
[  167.689764][T15360] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5128'.
[  167.698782][T15360] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5128'.
[  167.785751][T15376] loop9: detected capacity change from 0 to 7
[  167.815760][T15376] buffer_io_error: 48 callbacks suppressed
[  167.815779][T15376] Buffer I/O error on dev loop9, logical block 0, async page read
[  167.834719][T15376] Buffer I/O error on dev loop9, logical block 0, async page read
[  167.842649][T15376]  loop9: unable to read partition table
[  167.865568][T15376] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  167.865568][T15376] 
) failed (rc=-5)
[  167.916003][T15387] Buffer I/O error on dev loop9, logical block 0, async page read
[  167.950729][T15387] Buffer I/O error on dev loop9, logical block 0, async page read
[  167.958709][T15387]  loop9: unable to read partition table
[  167.994181][T15387] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  167.994181][T15387] 
) failed (rc=-5)
[  168.320121][T15427] loop7: detected capacity change from 0 to 1024
[  168.327228][T15427] EXT4-fs: Ignoring removed nomblk_io_submit option
[  168.337201][T15427] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  168.356478][T15427] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.369688][   T10] kernel read not supported for file /input/event1 (pid: 10 comm: kworker/0:1)
[  168.397508][ T7302] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.410742][T15438] loop9: detected capacity change from 0 to 7
[  168.417193][T15438] Buffer I/O error on dev loop9, logical block 0, async page read
[  168.425392][T15438] Buffer I/O error on dev loop9, logical block 0, async page read
[  168.433392][T15438]  loop9: unable to read partition table
[  168.439307][T15438] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  168.439307][T15438] 
) failed (rc=-5)
[  168.496390][T15438] Buffer I/O error on dev loop9, logical block 0, async page read
[  168.504848][T15438] Buffer I/O error on dev loop9, logical block 0, async page read
[  168.512799][T15438]  loop9: unable to read partition table
[  168.518614][T15438] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  168.518614][T15438] 
) failed (rc=-5)
[  168.568720][T15455] netlink: 'syz.2.5169': attribute type 16 has an invalid length.
[  168.576929][T15455] netlink: 156 bytes leftover after parsing attributes in process `syz.2.5169'.
[  168.653393][T15466] netlink: 20 bytes leftover after parsing attributes in process `syz.7.5175'.
[  168.683284][T15470] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5178'.
[  168.725815][T15476] loop9: detected capacity change from 0 to 7
[  168.732330][T15476] Buffer I/O error on dev loop9, logical block 0, async page read
[  168.748566][T15476] Buffer I/O error on dev loop9, logical block 0, async page read
[  168.756506][T15476]  loop9: unable to read partition table
[  168.778778][T15476] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  168.778778][T15476] 
) failed (rc=-5)
[  168.802724][T15489] macvtap0: refused to change device tx_queue_len
[  168.826029][T15486]  loop9: unable to read partition table
[  168.831778][T15486] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  168.831778][T15486] 
) failed (rc=-5)
[  168.848335][T15491] loop4: detected capacity change from 0 to 512
[  168.855039][T15491] EXT4-fs: Ignoring removed bh option
[  168.864194][T15491] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  168.873350][T15491] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  168.886625][T15498] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5191'.
[  168.886692][T15491] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  168.905052][T15491] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  168.913615][T15491] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.930052][T15491] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5188: bg 0: block 353: padding at end of block bitmap is not set
[  168.959578][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.219216][T15540] macvtap0: refused to change device tx_queue_len
[  169.309011][T15550] loop8: detected capacity change from 0 to 512
[  169.330599][   T29] kauditd_printk_skb: 287 callbacks suppressed
[  169.330618][   T29] audit: type=1400 audit(1760941341.617:5480): avc:  denied  { mounton } for  pid=15549 comm="syz.8.5215" path="/456/file0" dev="tmpfs" ino=2359 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  169.373286][T15550] EXT4-fs error (device loop8): ext4_xattr_inode_iget:446: comm syz.8.5215: error while reading EA inode 32 err=-116
[  169.379837][   T29] audit: type=1400 audit(1760941341.657:5481): avc:  denied  { create } for  pid=15553 comm="syz.2.5217" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  169.405345][   T29] audit: type=1400 audit(1760941341.657:5482): avc:  denied  { module_request } for  pid=15555 comm="syz.4.5218" kmod="net-cls-8" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  169.413017][T15550] EXT4-fs (loop8): Remounting filesystem read-only
[  169.427320][   T29] audit: type=1400 audit(1760941341.677:5483): avc:  denied  { bind } for  pid=15553 comm="syz.2.5217" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  169.453337][   T29] audit: type=1400 audit(1760941341.677:5484): avc:  denied  { name_bind } for  pid=15553 comm="syz.2.5217" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  169.474379][   T29] audit: type=1400 audit(1760941341.677:5485): avc:  denied  { node_bind } for  pid=15553 comm="syz.2.5217" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  169.495371][   T29] audit: type=1400 audit(1760941341.677:5486): avc:  denied  { read } for  pid=15553 comm="syz.2.5217" lport=20004 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  169.497668][T15550] EXT4-fs warning (device loop8): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  169.516202][   T29] audit: type=1400 audit(1760941341.737:5487): avc:  denied  { write } for  pid=15553 comm="syz.2.5217" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  169.553874][   T29] audit: type=1400 audit(1760941341.837:5488): avc:  denied  { create } for  pid=15560 comm="syz.2.5219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  169.583647][   T29] audit: type=1400 audit(1760941341.857:5489): avc:  denied  { write } for  pid=15560 comm="syz.2.5219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  169.591123][T15550] EXT4-fs (loop8): 1 orphan inode deleted
[  169.625236][T15550] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.680997][T15571] netlink: 'syz.4.5224': attribute type 1 has an invalid length.
[  169.688862][T15571] netlink: 5452 bytes leftover after parsing attributes in process `syz.4.5224'.
[  169.748802][T10762] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.799414][T15581] syzkaller1: entered promiscuous mode
[  169.804953][T15581] syzkaller1: entered allmulticast mode
[  169.917686][T15588] netlink: 5452 bytes leftover after parsing attributes in process `syz.7.5231'.
[  169.922788][T15586] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5230'.
[  169.994734][T15590] loop7: detected capacity change from 0 to 2048
[  170.046451][T15590] EXT4-fs: Ignoring removed bh option
[  170.055365][T15598] SELinux:  Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped).
[  170.107478][T15590] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.138155][T15590] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  170.153529][T15590] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 12 with max blocks 22 with error 28
[  170.166016][T15590] EXT4-fs (loop7): This should not happen!! Data will be lost
[  170.166016][T15590] 
[  170.175673][T15590] EXT4-fs (loop7): Total free blocks count 0
[  170.181762][T15590] EXT4-fs (loop7): Free/Dirty block details
[  170.187703][T15590] EXT4-fs (loop7): free_blocks=2415919104
[  170.193454][T15590] EXT4-fs (loop7): dirty_blocks=48
[  170.198593][T15590] EXT4-fs (loop7): Block reservation details
[  170.204632][T15590] EXT4-fs (loop7): i_reserved_data_blocks=3
[  170.224633][T15605] loop8: detected capacity change from 0 to 2048
[  170.259393][T15605] EXT4-fs (loop8): failed to initialize system zone (-117)
[  170.266921][T15605] EXT4-fs (loop8): mount failed
[  170.276664][ T5127] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  170.827655][ T1037] hid-generic 0000:0000:0000.0007: unknown main item tag 0x1
[  170.835145][ T1037] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  170.842698][ T1037] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  170.850147][ T1037] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  170.853536][T15683] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  170.857577][ T1037] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  170.857608][ T1037] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  170.857813][ T1037] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  170.887081][ T1037] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  170.894613][ T1037] hid-generic 0000:0000:0000.0007: unknown main item tag 0x2
[  170.902070][ T1037] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  170.927936][ T1037] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  171.006399][ T1037] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  171.013528][T15703] loop4: detected capacity change from 0 to 2048
[  171.047569][T15703] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.059891][T15703] ext4 filesystem being mounted at /1041/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.135069][T15710] ==================================================================
[  171.143213][T15710] BUG: KCSAN: data-race in __xa_set_mark / xas_find_marked
[  171.150460][T15710] 
[  171.152796][T15710] read-write to 0xffff8881199d3fd0 of 8 bytes by task 15703 on cpu 1:
[  171.160954][T15710]  __xa_set_mark+0xd2/0x1a0
[  171.165478][T15710]  __folio_mark_dirty+0x384/0x4a0
[  171.170612][T15710]  mark_buffer_dirty+0x11e/0x210
[  171.175570][T15710]  folio_zero_new_buffers+0x28c/0x2e0
[  171.180966][T15710]  block_write_end+0x200/0x210
[  171.185748][T15710]  ext4_da_write_end+0x1d3/0x800
[  171.190705][T15710]  generic_perform_write+0x312/0x490
[  171.196001][T15710]  ext4_buffered_write_iter+0x1ee/0x3c0
[  171.201559][T15710]  ext4_file_write_iter+0x387/0xf60
[  171.206780][T15710]  vfs_write+0x52a/0x960
[  171.211038][T15710]  ksys_write+0xda/0x1a0
[  171.215292][T15710]  __x64_sys_write+0x40/0x50
[  171.219894][T15710]  x64_sys_call+0x2802/0x3000
[  171.224584][T15710]  do_syscall_64+0xd2/0x200
[  171.229107][T15710]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.235015][T15710] 
[  171.237345][T15710] read to 0xffff8881199d3fd0 of 8 bytes by task 15710 on cpu 0:
[  171.244984][T15710]  xas_find_marked+0x218/0x620
[  171.249779][T15710]  find_get_entry+0x5d/0x380
[  171.254393][T15710]  filemap_get_folios_tag+0x13b/0x210
[  171.259787][T15710]  mpage_prepare_extent_to_map+0x320/0xc00
[  171.265618][T15710]  ext4_do_writepages+0xa05/0x2750
[  171.270754][T15710]  ext4_writepages+0x176/0x300
[  171.275537][T15710]  do_writepages+0x1c6/0x310
[  171.280225][T15710]  __filemap_fdatawrite_range+0xfb/0x140
[  171.285888][T15710]  generic_fadvise+0x312/0x430
[  171.290682][T15710]  __x64_sys_fadvise64+0xcb/0x110
[  171.295733][T15710]  x64_sys_call+0x29c5/0x3000
[  171.300505][T15710]  do_syscall_64+0xd2/0x200
[  171.305041][T15710]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.310960][T15710] 
[  171.313295][T15710] value changed: 0x00000000000fffff -> 0x00000000003fffff
[  171.320506][T15710] 
[  171.322845][T15710] Reported by Kernel Concurrency Sanitizer on:
[  171.329108][T15710] CPU: 0 UID: 0 PID: 15710 Comm: syz.4.5283 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  171.340503][T15710] Tainted: [W]=WARN
[  171.344320][T15710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  171.354481][T15710] ==================================================================
[  171.364635][T15710] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5283: bg 0: block 345: padding at end of block bitmap is not set
[  171.379288][T15710] EXT4-fs (loop4): Remounting filesystem read-only
[  171.386136][ T5160] EXT4-fs warning (device loop4): ext4_convert_unwritten_extents:4984: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30
[  171.466357][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.