last executing test programs:

3.914875412s ago: executing program 0 (id=3547):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r0}, 0x18)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0)
mq_open(&(0x7f0000000000)='sit0\x00', 0x41, 0x9, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

3.789501804s ago: executing program 0 (id=3553):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

3.43641374s ago: executing program 0 (id=3559):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@nobarrier}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f00000001c0)="f14a18f6913026bbc8e195ec033d173c59594e80b11c263107f65f12606a", 0x1e)
sendfile(r2, r0, 0x0, 0x40001)
sendfile(r2, r1, 0x0, 0x7ffff000)

2.801801221s ago: executing program 0 (id=3580):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0/file0/file0\x00', 0x81c0, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000340)='./file0/file0/file0\x00', 0x0)

2.722425533s ago: executing program 0 (id=3582):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r2}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

2.646297934s ago: executing program 0 (id=3583):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @multicast})
write$tun(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="000386dd0a00100014004000000060ec970200140400fb8000000000000000000000000000aaff020000000000000000000000000001"], 0xffe)

1.250805868s ago: executing program 1 (id=3612):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x597, &(0x7f0000001140)="$eJzs3U1sG2UaAOB3xvH2L9t0pV1pd9VDtYtUpKpO0h8onNorolKlHpC4lMhxoyhOHMUONFEO6b1C9IAA9VJucOAI4sABcUHiwpULiDNSRSOQmh7AyH9pm9jBKXWdxs8jjT3ffON5v2/G73hmNCMHMLCO1V7SiP9ExKUkYuShuqFoVh5rzLe+tpK/v7aST6JavfxzEklE3FtbybfmT5rvhyJiNSL+HRFfZSNOpFvjlpeWZyaKxcJCszxamZ0fLS8tn5yenZgqTBXmTr/40tlzZ86Onxrv3Pjszvp644ebb9/49pXbNz/+5Ohq/t2JJM7HcLPu4X48SY11ko3zm6af6UWwPkr63QAeS6aZ57VU+leMRKaZ9e1UR55q04Aeq+6LqO5Esrqj2YHdLNlZ/gN7Rus4oHb+2xoeOUDI9Pb4486FxglILe56c2jUDDWuTcT++rnJwV+SR85MauebR3rbNAbA6vWIGBsa2vr9T5rfv8c39iQaSE99eaGxobZu/3Rj/xNt9j/DrWunf1Fr/7e+Zf/3IH6mw/7vUpcxfnv9xw86xr8e8d+28ZON+Emb+GlEvNFl/FuvfX6uU131w4jj0T5+S7L99eHRq9PFwljjtW2ML44ffXm7/h/sEL9xzXZ//Wem3fqf77L/n3396f9Wt4n//P+33/7t1v+BiHiny/j/uPfRq53q7lxP7taOAna6/WvTbncZ/4Xzx77vUHWgy0UAAAAAAAAAAABtpPV72ZI0tzGeprlc4xnef8bBtFgqV05cLS3OTTbueTsS2bR1p9VIo5zUyuPN+3Fb5VObyqdb9xFnDtTLuXypONnnvgMAAAAAAAAAAAAAAAAAAMBucWjT8/+/ZurP/2/+u2pgr+r8l9/AXif/YXA9mv9JxL6+NQV4yvz+w8Cqyn8YXPIfBpf8h8El/2FwyX8YXPIfBpf8BwAAAAAAAAAAAAAAAAAAAAAAAACAnrh08WJtqN5fW8nXypNDS4szpTdPThbKM7nZxXwuX1qYz02VSlPFQi5fmv2z5RVLpfmxmFu8NloplCuj5aXlK7OlxbnKlenZianClUL2qfQKAAAAAAAAAAAAAAAAAAAAni3D9SFJcxGR1sfTNJeL+HtEHIlscnW6WBiLiMMR8V0mu69WHu93owEAAAAAAAAAAAAAAAAAAGCPKS8tz0wUi4WFARkZ2jLlm84zR8Tqk21GbYk7/lS2ua12yzp81kYObz9PJvrewt040ucdEwAAAAAAAAAAAAAAAAAADKAHD/12+4nfe9sgAAAAAAAAAAAAAAAAAAAAGEjpT0lE1IbjI88Nb679W7Keqb9HxFu3Lr93baJSWRivTb+7Mb3yfnP6qX60H+hWK09beQwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8UF5anpkoFgsLPRzpdx8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHscfAQAA//+aXtbd")
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x2, &(0x7f0000002400)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r2, &(0x7f0000000040)="5400ffff0000", 0x6, 0x0, 0x0, 0x2}])

877.018975ms ago: executing program 2 (id=3621):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0x5, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41100, 0x38, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000000), &(0x7f0000000080)='%-010d \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)

855.037465ms ago: executing program 1 (id=3622):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000080), 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r2, &(0x7f00000007c0)=[{&(0x7f0000000380)="15b7da46d8347a6de4c4ef6d820c79efebaa000000000000b24add008a8375f0c3d446d094ef791620e3013906350558d581554388e4e1bc09a2dc39ca6f692c495a4255070095cc962310321a7004b802d6f79a44e746d8a5e63fdd5c067871cf6281f1284594ea434c8b926e7c4c2ba777b8f53f12364ffbe29ea0e1271c566c4965672b8e48992c326cd28b8742", 0xff6a}, {&(0x7f0000000580)="5cc93f56d63e15fc3b38ea53c498ae528076b5556529aa2558fc6e2b21807e8311d2d33dbe2c444c3ae22ebd54d20c93001d6d4f6aca40958cf3919f9837718a280bdf78045996bfa8b2f295d2dcc43ac1a122cb54e41b720d80035061d8f3caee86e1904879944705684a028aaed2dd9ffc4302e7a0b00c84e2e2a7b2553b93390e973ec615191a082fceda5df36d90f8daf60467647dc65ff70b12cc0be80d5813b09631a07df19561aa73614b9f1c9998f0f401aabb7590be16cbfb62e9e159308ed7b2bc1229369ca2cf88528dc5b0f4a5c90564e6e3c23689d8ff6470e3fff3da39c3af5ce7b6c12cb844d35d57", 0xf0}, {&(0x7f00000002c0)="b4a44c58b4ae1818e0bff07c73e5ee1d87c138437f529b09593db1e2c374dfcdec7d216bb20812ba98096a8c7c84324dccc2f0a330"}, {&(0x7f0000000480)="0235649c51aa6fafa6a65954d492842e1edbd94cd5e66d8beccb586cd2fde11a092aa72a2aeeb409f6e92e7f1bd964179d7f0b83145c81da234c02e37512602dc3a401e624e1ef878a4a573bbfa9a986dc6a08f208208c4f62d66ac16c78fa2f2d3cd7a9"}, {&(0x7f0000000500)="e044b0ecfe7869526ce6beaf3e8491828abaa069b5aa656cf5f73bcde33ca60f2ba49f1bb156b033ee3d7443ead7c3e7518276f51fe27a61400524854aa66a11f1fe38d57f567870f6e71b3756ffd9555bb71f7b"}, {&(0x7f0000000680)="73ac9e27817635a3196cfdcaf1eca3cf89f517de8bcd0b589b83142da9a6ef7457cb0a7692cc40ae"}, {&(0x7f00000006c0)="52151c5ef25f1c0ca99f8ad58e6365af7dc59bfffa0e7aef9b94185e5a242f91ceaa91543c64a846a9e8bad8e4e47e46e56c6e6eef9bb3fcf838ccba65df48"}, {&(0x7f0000000700)="bcea985dd9251cf6b3133847c8ba8d1acffc0c6fc6c211e1562230f51acb185dad9feaa31f448fa063cf063a201562fc134de9"}], 0x2)

830.873715ms ago: executing program 4 (id=3623):
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000580)=@generic={&(0x7f0000000500)='./file0\x00'}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='percpu_create_chunk\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x50)

772.391137ms ago: executing program 2 (id=3624):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r2, &(0x7f0000000180), 0x40010)

756.649247ms ago: executing program 1 (id=3625):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
semget$private(0x0, 0x0, 0x218)
setgroups(0x0, 0x0)

701.651588ms ago: executing program 4 (id=3626):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x4, 0x1}, 0x50)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r1, &(0x7f00000000c0), &(0x7f0000000000)=""/10, 0x2}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="17fa00000000090000000400000000001c110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000000700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)

666.831519ms ago: executing program 2 (id=3627):
unshare(0x22020600)
r0 = syz_io_uring_setup(0x1714, &(0x7f0000000300)={0x0, 0x2dd2, 0x10100, 0x0, 0xffffffdc}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RENAMEAT={0x23, 0x4, 0x0, 0xffffffffffffffff, &(0x7f0000000f80)='./file0\x00', &(0x7f0000002180)='./file1\x00', 0xffffffffffffffff, 0x0, 0x1})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
io_uring_enter(r0, 0x636f, 0x1, 0x29, 0x0, 0x0)

595.72401ms ago: executing program 2 (id=3628):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x18)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b0000000700000008000000a6ad6a1a05"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file2\x00', 0x2004d95, &(0x7f00000000c0)={[{@barrier}]}, 0x1, 0x523, &(0x7f0000000a80)="$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")
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
r3 = fspick(r2, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)

574.22796ms ago: executing program 1 (id=3629):
socket(0x10, 0x803, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008020000d9"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x60, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='smaps_rollup\x00')
close_range(r2, 0xffffffffffffffff, 0x0)

573.27689ms ago: executing program 3 (id=3630):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372000000001400010076657468315f766c616e"], 0xfc}}, 0x0)

512.111581ms ago: executing program 4 (id=3631):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
clock_gettime(0x1, &(0x7f0000000000)={<r2=>0x0, <r3=>0x0})
clock_settime(0x0, &(0x7f0000000040)={r2, r3+10000000})

482.919942ms ago: executing program 3 (id=3632):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x2, 0x8b6}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000300)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x64, 0x183000, 0x23456})
io_uring_enter(r2, 0x47f6, 0x0, 0x0, 0x0, 0x0)

424.162273ms ago: executing program 1 (id=3633):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x804, &(0x7f0000000440)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64, @ANYRESOCT], 0x1, 0x36e, &(0x7f0000000c00)="$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")
open(0x0, 0x0, 0x40)
prlimit64(0x0, 0xe, 0x0, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
madvise(&(0x7f0000ffe000/0x2000)=nil, 0xffffffffdf001fff, 0x18)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0x1a, r0, 0xc, &(0x7f0000000000))

397.913893ms ago: executing program 4 (id=3634):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x3, '\x00', 0x0, @fallback=0x2c, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x10)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

371.167194ms ago: executing program 3 (id=3635):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2b, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000003c0)={0x2, 0x10, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r2, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f00000000c0)={0x2, 0x2, 0x44, 0x0, 0xd})

310.828724ms ago: executing program 1 (id=3636):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0x7}, 0x0, 0x10000, 0x547a, 0x1, 0xa, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
r0 = gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000000000000)

310.146564ms ago: executing program 4 (id=3637):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000400, &(0x7f0000000400)={[{@resgid}, {@jqfmt_vfsv1}]}, 0xc1, 0x7da, &(0x7f0000000fc0)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file1\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x35d, &(0x7f0000000f00)="$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")
r0 = open(&(0x7f0000000340)='./file1\x00', 0x185102, 0x1a1)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1000002, 0x28011, r0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x9051, 0x0, 0x1}, 0x0, 0x0)

268.593575ms ago: executing program 2 (id=3638):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x8000001f)
r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x4)
fcntl$notify(r3, 0x402, 0x8000003d)
close_range(r2, r3, 0x0)

242.566336ms ago: executing program 3 (id=3639):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='cdg\x00', 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
close(r0)

177.212657ms ago: executing program 2 (id=3640):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a00)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@debug}, {@noload}, {@jqfmt_vfsv1}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}, {@usrjquota}]}, 0xfe, 0x46c, &(0x7f0000000940)="$eJzs3M1vFOUfAPDvTF94+/FrRXwBQapoJL60tLzIwYtGEw6amOgB46m2hVQWamhNhBCtHvBoSLwb/wvjSS9GvWjiVe+GhBguoF7WzM4MLMtu2aXbLrCfTzLd55l5us/znZln95l5djeAvjWW/Uki/hcRv0fESJ69ucBY/nDtyvmZv6+cn0miWn3rr6RW7uqV8zNl0fL/tuSZarXIb2hS74V3I6YrlbkzRX5i6dQHE4tnz70wf2r6xNyJudNTR44cPLB7+PDUoa7EmcV1defHC7t2HH3n4hszxy6+91OSRh53NMTRLWP53m3q6W5X1mNb69LJYP2WPb/cSDc7E+ilgYjIDtdQrf+PxEBsur5tJF77rKeNA9ZUtVqtrvCqvFwF7mNJ9LoFQG+Ub/TZ9W+5rNPQ465w+eX8AiiL+1qx5FsGI80Te4Yarm+7aSwiji3/81W2xBrdhwAAqPddNv55vtn4L42H88Rw9uf/xRzKaEQ8EBHbIuLBiNgeEQ9F1Mo+EhGPdlh/4wzJreOf9NIdB9eGbPz3UjG3dfP4Ly2LjA4Uua21+IeS4/OVuf3FPtkXQxuOzydzkyvU8f2rv33Ralv9+C9bsvrLsWDRjkuDDTfoZqeXplcTc73Ln0bsHGwWfxLlNE4SETsiYucd1jH/7GDLbbePfwWtn7Zt1a8jnsmP/3I0xF9KWs5PTr54eOrQxMaozO2fKM+KW/3864U3W9W/qvi7IDv+m5ue/9fjH002RiyePXeyNl+72HkdF/74vOU1TYfn/9Gtxfk/nLxdWzFcbPhoemnpzGTEcPL6reunbjxbmS/LZ/Hv29u8/2+LG3visYjYFRG7I+Lx7KKwaPsTEfFkROxdIf4fX3nq/c7jX5+50iz+2dsd/6g//p0nBk7+8O3t498YEa2O/8Faal+xpp3Xv3YbuJp9BwAAAPeK/DPwSTp+PZ2m4+P5Z/i3x+a0srC49NzxhQ9Pz+aflR+NobS80zVSdz90srg3XOanGvIHivvGXw5squXHZxYqs70OHvrclhb9P/PnQK9bB6y5LsyjAfco/R/6l/4P/SnR/6Gv6f/Qv5r1/09alh7/Zk0bA6wr7//Qv9ro/8v5Q+tRAXBv8v4P/Uv/h77U8rvx6aq+8r/uiX+L3zO8W9pz/ycivSuacf8nBtv+MYsOEtWRvP9nazY0LdPrVyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDu+C8AAP//F0nluw==")
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents(r2, 0x0, 0x0)

89.868568ms ago: executing program 3 (id=3641):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)

143.42µs ago: executing program 3 (id=3642):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x4, 0x1}, 0x50)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r1, &(0x7f00000000c0), &(0x7f0000000000)=""/10, 0x2}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="17fa00000000090000000400000000001c110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000000700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)

0s ago: executing program 4 (id=3643):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e21, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000040)=0x10000, 0x4)
setsockopt$inet_int(r0, 0x0, 0x6, &(0x7f0000000000)=0x18005, 0x4)
recvmmsg(r0, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

kernel console output (not intermixed with test programs):

=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.4.2166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  116.220078][   T29] audit: type=1326 audit(1753455516.949:3397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.4.2166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  116.233353][ T8628] loop3: detected capacity change from 0 to 1024
[  116.286983][ T8628] EXT4-fs: Ignoring removed bh option
[  116.292576][ T8628] EXT4-fs: Ignoring removed orlov option
[  116.298469][ T8628] EXT4-fs: Ignoring removed nomblk_io_submit option
[  116.372769][   T29] audit: type=1326 audit(1753455517.056:3398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.4.2166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  116.397025][   T29] audit: type=1326 audit(1753455517.056:3399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.4.2166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  116.420634][   T29] audit: type=1326 audit(1753455517.056:3400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.4.2166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  116.453810][ T8628] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.499868][   T29] audit: type=1400 audit(1753455517.324:3401): avc:  denied  { rename } for  pid=8627 comm="syz.3.2165" name="file1" dev="loop3" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  116.554542][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.613842][ T8657] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2176'.
[  116.623096][ T8654] loop4: detected capacity change from 0 to 512
[  116.623532][ T8657] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8657 comm=syz.0.2176
[  116.630096][ T8654] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  116.691409][   T29] audit: type=1326 audit(1753455517.539:3402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8662 comm="syz.2.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  116.715389][   T29] audit: type=1326 audit(1753455517.539:3403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8662 comm="syz.2.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  116.829856][ T8674] loop1: detected capacity change from 0 to 764
[  116.941883][ T8692] loop1: detected capacity change from 0 to 1024
[  116.950012][ T8692] EXT4-fs: Ignoring removed bh option
[  116.963050][ T8692] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.991410][ T8700] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2194'.
[  117.043038][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.061101][ T8704] netlink: 'syz.2.2196': attribute type 10 has an invalid length.
[  117.069242][ T8704] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2196'.
[  117.079371][ T8704] dummy0: entered promiscuous mode
[  117.085664][ T8704] bond0: (slave dummy0): Releasing backup interface
[  117.101663][ T8704] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  117.118453][ T8708] loop1: detected capacity change from 0 to 512
[  117.129676][ T8708] ext4: Unknown parameter 'noacl'
[  117.272651][ T8725] loop3: detected capacity change from 0 to 1024
[  117.290661][ T8725] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.308493][ T8732] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2207'.
[  117.381354][ T8725] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 2 with error 28
[  117.393997][ T8725] EXT4-fs (loop3): This should not happen!! Data will be lost
[  117.393997][ T8725] 
[  117.403909][ T8725] EXT4-fs (loop3): Total free blocks count 0
[  117.410336][ T8725] EXT4-fs (loop3): Free/Dirty block details
[  117.416596][ T8725] EXT4-fs (loop3): free_blocks=0
[  117.421578][ T8725] EXT4-fs (loop3): dirty_blocks=0
[  117.426835][ T8725] EXT4-fs (loop3): Block reservation details
[  117.432914][ T8725] EXT4-fs (loop3): i_reserved_data_blocks=0
[  117.445847][ T6694] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0
[  117.453604][ T6694] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0
[  117.461086][ T6694] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0
[  117.494523][ T6694] hid-generic 0000:0004:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  117.512078][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.557038][ T8744] loop3: detected capacity change from 0 to 128
[  117.569334][ T8746] loop2: detected capacity change from 0 to 1024
[  117.583403][ T8748] loop1: detected capacity change from 0 to 512
[  117.589636][ T8746] EXT4-fs: Ignoring removed bh option
[  117.596789][ T8748] EXT4-fs: Ignoring removed mblk_io_submit option
[  117.606853][ T8748] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  117.625819][ T8746] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.656295][ T8748] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  117.676180][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.701266][ T8748] EXT4-fs (loop1): orphan cleanup on readonly fs
[  117.723962][ T8748] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.2216: Invalid block bitmap block 0 in block_group 0
[  117.759571][ T8748] EXT4-fs (loop1): Remounting filesystem read-only
[  117.766546][ T8748] EXT4-fs (loop1): 1 orphan inode deleted
[  117.807076][ T8748] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  117.837883][ T8765] loop4: detected capacity change from 0 to 1024
[  117.857262][ T8765] EXT4-fs: Ignoring removed bh option
[  117.862896][ T8765] EXT4-fs: Ignoring removed orlov option
[  117.868807][ T8765] EXT4-fs: Ignoring removed nomblk_io_submit option
[  117.888914][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.902733][ T8772] loop3: detected capacity change from 0 to 1024
[  117.911509][ T8765] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.920976][ T8772] EXT4-fs: Ignoring removed nobh option
[  117.929340][ T8772] EXT4-fs: inline encryption not supported
[  117.962035][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.985987][ T8772] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.030418][ T8772] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.2226: Allocating blocks 385-513 which overlap fs metadata
[  118.059477][ T8772] EXT4-fs (loop3): pa ffff8881057121c0: logic 16, phys. 129, len 24
[  118.067666][ T8772] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  118.086418][ T8772] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  118.099417][ T8772] EXT4-fs (loop3): This should not happen!! Data will be lost
[  118.099417][ T8772] 
[  118.109372][ T8772] EXT4-fs (loop3): Total free blocks count 0
[  118.115440][ T8772] EXT4-fs (loop3): Free/Dirty block details
[  118.121431][ T8772] EXT4-fs (loop3): free_blocks=128
[  118.126940][ T8772] EXT4-fs (loop3): dirty_blocks=0
[  118.132065][ T8772] EXT4-fs (loop3): Block reservation details
[  118.138083][ T8772] EXT4-fs (loop3): i_reserved_data_blocks=0
[  118.500165][ T8816] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2242'.
[  118.521635][ T8816] veth1_to_hsr: entered promiscuous mode
[  118.528608][ T8816] macsec0: entered promiscuous mode
[  118.534345][ T8816] macsec0: entered allmulticast mode
[  118.539674][ T8816] veth1_to_hsr: entered allmulticast mode
[  118.548478][ T8816] veth1_to_hsr: left allmulticast mode
[  118.554445][ T8816] veth1_to_hsr: left promiscuous mode
[  118.578451][ T8822] syzkaller1: entered promiscuous mode
[  118.584524][ T8822] syzkaller1: entered allmulticast mode
[  118.639471][ T8826] tipc: Started in network mode
[  118.644408][ T8826] tipc: Node identity 7f000001, cluster identity 4711
[  118.651683][ T8826] tipc: Enabled bearer <udp:s>, priority 10
[  118.928164][ T8860] loop1: detected capacity change from 0 to 512
[  118.969353][ T8860] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.2261: casefold flag without casefold feature
[  119.028950][ T8860] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.2261: couldn't read orphan inode 15 (err -117)
[  119.103242][ T8869] SELinux:  policydb magic number 0x100 does not match expected magic number 0xf97cff8c
[  119.121820][ T8860] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.138203][ T8869] SELinux: failed to load policy
[  119.194295][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.199954][ T8874] loop7: detected capacity change from 0 to 7
[  119.212250][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.221446][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  119.229748][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.238961][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  119.246961][ T8874]  loop7: unable to read partition table
[  119.256864][ T8874] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  119.288695][ T8872] loop4: detected capacity change from 0 to 512
[  119.305787][ T8872] ext4: Unknown parameter 'obj_type'
[  119.308499][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.320620][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  119.335346][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.344763][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  119.362657][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.371873][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  119.381396][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.390657][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  119.401073][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.410269][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  119.418794][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.427985][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  119.436680][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.445969][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  119.474275][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.483511][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  119.613513][    T9] tipc: Node number set to 2130706433
[  119.639808][ T8885] loop1: detected capacity change from 0 to 256
[  119.677329][ T8885] FAT-fs (loop1): Directory bread(block 64) failed
[  119.694762][ T8885] FAT-fs (loop1): Directory bread(block 65) failed
[  119.728416][ T8885] FAT-fs (loop1): Directory bread(block 66) failed
[  119.751810][ T8885] FAT-fs (loop1): Directory bread(block 67) failed
[  119.753056][ T8886] loop4: detected capacity change from 0 to 1024
[  119.786275][ T8886] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.807128][ T8885] FAT-fs (loop1): Directory bread(block 68) failed
[  119.828210][ T8885] FAT-fs (loop1): Directory bread(block 69) failed
[  119.854352][ T8885] FAT-fs (loop1): Directory bread(block 70) failed
[  119.877710][ T8891] serio: Serial port ptm0
[  119.882389][ T8885] FAT-fs (loop1): Directory bread(block 71) failed
[  119.902372][ T8885] FAT-fs (loop1): Directory bread(block 72) failed
[  119.922203][ T8886] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 2 with error 28
[  119.934727][ T8886] EXT4-fs (loop4): This should not happen!! Data will be lost
[  119.934727][ T8886] 
[  119.944600][ T8886] EXT4-fs (loop4): Total free blocks count 0
[  119.950830][ T8886] EXT4-fs (loop4): Free/Dirty block details
[  119.956772][ T8886] EXT4-fs (loop4): free_blocks=0
[  119.961979][ T8886] EXT4-fs (loop4): dirty_blocks=0
[  119.967030][ T8886] EXT4-fs (loop4): Block reservation details
[  119.973080][ T8886] EXT4-fs (loop4): i_reserved_data_blocks=0
[  119.980093][ T8885] FAT-fs (loop1): Directory bread(block 73) failed
[  120.029516][ T8885] syz.1.2269: attempt to access beyond end of device
[  120.029516][ T8885] loop1: rw=0, sector=1736, nr_sectors = 8 limit=256
[  120.055997][ T8894] tipc: New replicast peer: 255.255.255.255
[  120.062218][ T8894] tipc: Enabled bearer <udp:syz2>, priority 10
[  120.072485][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.112943][ T8901] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2273'.
[  120.134393][ T8901] veth1_to_hsr: entered promiscuous mode
[  120.151621][ T8901] macsec1: entered promiscuous mode
[  120.157467][ T8901] macsec1: entered allmulticast mode
[  120.162876][ T8901] veth1_to_hsr: entered allmulticast mode
[  120.198800][ T8901] veth1_to_hsr: left allmulticast mode
[  120.204850][ T8901] veth1_to_hsr: left promiscuous mode
[  120.477997][ T8907] geneve2: entered promiscuous mode
[  120.926083][   T29] kauditd_printk_skb: 179 callbacks suppressed
[  120.926170][   T29] audit: type=1400 audit(1753455522.077:3580): avc:  denied  { mount } for  pid=8925 comm="syz.2.2284" name="/" dev="9p" ino=4500057110525592952 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  121.016679][ T8928] loop1: detected capacity change from 0 to 2048
[  121.036374][ T8928] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.052222][ T8935] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2286'.
[  121.179220][ T8935] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2286'.
[  121.212666][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.472912][   T29] audit: type=1400 audit(1753455522.657:3581): avc:  denied  { create } for  pid=8963 comm="syz.1.2300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  121.629445][ T8981] loop2: detected capacity change from 0 to 128
[  121.638464][ T8965] lo speed is unknown, defaulting to 1000
[  121.651126][ T8981] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  121.659377][ T8981] FAT-fs (loop2): Filesystem has been set read-only
[  121.688290][ T8981] syz.2.2309: attempt to access beyond end of device
[  121.688290][ T8981] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  121.742271][ T8981] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  121.750340][ T8981] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  121.783430][ T8991] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  121.792878][ T8981] syz.2.2309: attempt to access beyond end of device
[  121.792878][ T8981] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.072392][ T9010] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2321'.
[  122.140161][ T9010] x_tables: ip_tables: udp match: only valid for protocol 17
[  122.349271][ T9029] futex_wake_op: syz.0.2330 tries to shift op by -1; fix this program
[  122.410211][ T9036] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  122.416873][ T9036] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  122.424599][ T9036] vhci_hcd vhci_hcd.0: Device attached
[  122.456573][ T9043] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(6)
[  122.463178][ T9043] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  122.471082][ T9043] vhci_hcd vhci_hcd.0: Device attached
[  122.510286][ T9036] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(5)
[  122.516900][ T9036] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  122.524604][ T9036] vhci_hcd vhci_hcd.0: Device attached
[  122.583938][ T9054] sch_fq: defrate 4294967295 ignored.
[  122.593553][ T9043] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(8)
[  122.600261][ T9043] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  122.607950][ T9043] vhci_hcd vhci_hcd.0: Device attached
[  122.624656][    T9] vhci_hcd: vhci_device speed not set
[  122.645873][ T9036] vhci_hcd vhci_hcd.0: pdev(2) rhport(4) sockfd(10)
[  122.652580][ T9036] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  122.660370][ T9036] vhci_hcd vhci_hcd.0: Device attached
[  122.689261][ T9043] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  122.698002][ T9066] loop7: detected capacity change from 0 to 7
[  122.699092][    T9] usb 5-1: new low-speed USB device number 2 using vhci_hcd
[  122.720047][ T9036] vhci_hcd vhci_hcd.0: pdev(2) rhport(6) sockfd(13)
[  122.726699][ T9036] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  122.734340][ T9036] vhci_hcd vhci_hcd.0: Device attached
[  122.740514][   T29] audit: type=1326 audit(1753455524.030:3582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9067 comm="syz.0.2342" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f446246e9a9 code=0x0
[  122.794855][ T9043] vhci_hcd vhci_hcd.0: pdev(2) rhport(7) sockfd(18)
[  122.801604][ T9043] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  122.809968][ T9043] vhci_hcd vhci_hcd.0: Device attached
[  122.826498][ T9073] vhci_hcd: connection closed
[  122.826746][ T9069] vhci_hcd: connection closed
[  122.831665][ T4148] vhci_hcd: stop threads
[  122.832105][ T9058] vhci_hcd: connection closed
[  122.836389][ T4148] vhci_hcd: release socket
[  122.849907][ T4148] vhci_hcd: disconnect device
[  122.854867][ T9037] vhci_hcd: connection reset by peer
[  122.860628][ T9048] vhci_hcd: connection closed
[  122.860781][ T9044] vhci_hcd: connection closed
[  122.867112][ T9063] vhci_hcd: connection closed
[  122.877976][ T9066]  loop7: unable to read partition table
[  122.891706][ T4148] vhci_hcd: stop threads
[  122.896036][ T4148] vhci_hcd: release socket
[  122.900495][ T4148] vhci_hcd: disconnect device
[  122.908305][ T4148] vhci_hcd: stop threads
[  122.912786][ T4148] vhci_hcd: release socket
[  122.917294][ T4148] vhci_hcd: disconnect device
[  122.926323][ T4148] vhci_hcd: stop threads
[  122.926640][ T9066] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  122.930637][ T4148] vhci_hcd: release socket
[  122.930654][ T4148] vhci_hcd: disconnect device
[  122.959623][ T4148] vhci_hcd: stop threads
[  122.964004][ T4148] vhci_hcd: release socket
[  122.968515][ T4148] vhci_hcd: disconnect device
[  122.977513][ T4148] vhci_hcd: stop threads
[  122.981937][ T4148] vhci_hcd: release socket
[  122.986904][ T4148] vhci_hcd: disconnect device
[  122.992483][ T4148] vhci_hcd: stop threads
[  122.996941][ T4148] vhci_hcd: release socket
[  123.001394][ T4148] vhci_hcd: disconnect device
[  123.404785][ T9096] netlink: 'syz.4.2348': attribute type 3 has an invalid length.
[  123.498830][ T9104] serio: Serial port ptm0
[  123.588512][   T29] audit: type=1326 audit(1753455524.931:3583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9111 comm="syz.4.2356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  123.590564][ T9106] 9pnet: p9_errstr2errno: server reported unknown error 
[  123.612501][   T29] audit: type=1326 audit(1753455524.931:3584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9111 comm="syz.4.2356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  123.612556][   T29] audit: type=1326 audit(1753455524.931:3585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9111 comm="syz.4.2356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  123.667023][   T29] audit: type=1326 audit(1753455524.931:3586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9111 comm="syz.4.2356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  123.690635][   T29] audit: type=1326 audit(1753455524.931:3587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9111 comm="syz.4.2356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  123.785479][   T29] audit: type=1326 audit(1753455525.049:3588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9111 comm="syz.4.2356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  123.809187][   T29] audit: type=1326 audit(1753455525.049:3589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9111 comm="syz.4.2356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  123.914241][ T9122] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2359'.
[  124.042877][   T36] kernel write not supported for file /1034/attr/exec (pid: 36 comm: kworker/1:1)
[  124.142421][ T9131] loop2: detected capacity change from 0 to 1764
[  124.156664][ T9136] loop4: detected capacity change from 0 to 2048
[  124.197624][ T9136] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.449890][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.575204][ T9162] Falling back ldisc for ttyS3.
[  124.795235][ T9188] futex_wake_op: syz.4.2388 tries to shift op by -1; fix this program
[  124.985453][ T9202] loop2: detected capacity change from 0 to 1024
[  125.012480][ T9202] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.042798][ T9208] netlink: 'syz.4.2396': attribute type 1 has an invalid length.
[  125.053029][ T9202] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.2394: Allocating blocks 449-513 which overlap fs metadata
[  125.075304][ T9201] EXT4-fs (loop2): pa ffff8881057122a0: logic 48, phys. 177, len 21
[  125.083414][ T9201] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[  125.151218][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.211056][ T9216] loop2: detected capacity change from 0 to 512
[  125.239945][ T9216] EXT4-fs (loop2): 1 orphan inode deleted
[  125.262977][ T9216] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.276631][ T4161] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:39: Failed to release dquot type 1
[  125.354188][ T9216] ext4 filesystem being mounted at /498/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.414063][ T9216] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.453408][ T9228] loop1: detected capacity change from 0 to 256
[  125.460511][ T9228] FAT-fs (loop1): bogus number of FAT sectors
[  125.467640][ T9228] FAT-fs (loop1): Can't find a valid FAT filesystem
[  125.948078][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4
[  125.956052][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2
[  125.968633][   T29] kauditd_printk_skb: 17 callbacks suppressed
[  125.968650][   T29] audit: type=1400 audit(1753455527.485:3606): avc:  denied  { create } for  pid=9261 comm="syz.1.2417" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  125.980105][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.002797][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.010853][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.018643][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.026918][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.035123][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.042933][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.050892][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.058680][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.066551][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.074476][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.082296][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.090707][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.098951][ T6694] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  126.149665][ T6694] hid-generic 0000:3000000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  126.163900][ T9271] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2422'.
[  126.193134][   T29] audit: type=1400 audit(1753455527.721:3607): avc:  denied  { map } for  pid=9270 comm="syz.0.2420" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  126.298258][   T29] audit: type=1400 audit(1753455527.839:3608): avc:  denied  { mounton } for  pid=9277 comm="syz.1.2425" path="/513/file0" dev="tmpfs" ino=2700 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  127.456561][    T9] usb 5-1: enqueue for inactive port 0
[  127.462434][    T9] usb 5-1: enqueue for inactive port 0
[  127.527270][    T9] vhci_hcd: vhci_device speed not set
[  127.720892][ T9274] lo speed is unknown, defaulting to 1000
[  128.365982][   T29] audit: type=1400 audit(1753455530.049:3609): avc:  denied  { create } for  pid=9356 comm="syz.2.2460" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  128.455135][   T29] audit: type=1326 audit(1753455530.145:3610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9364 comm="syz.0.2462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f446246e9a9 code=0x7ffc0000
[  128.455331][ T9359] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2460'.
[  128.480714][   T29] audit: type=1326 audit(1753455530.156:3611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9364 comm="syz.0.2462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f446246e9a9 code=0x7ffc0000
[  128.513921][   T29] audit: type=1326 audit(1753455530.156:3612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9364 comm="syz.0.2462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f446246e9a9 code=0x7ffc0000
[  128.538218][   T29] audit: type=1326 audit(1753455530.156:3613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9364 comm="syz.0.2462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f446246e9e3 code=0x7ffc0000
[  128.562267][   T29] audit: type=1326 audit(1753455530.156:3614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9364 comm="syz.0.2462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f446246d45f code=0x7ffc0000
[  128.587531][   T29] audit: type=1326 audit(1753455530.199:3615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9364 comm="syz.0.2462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f446246ea37 code=0x7ffc0000
[  128.704335][ T9370] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  128.881587][ T9381] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9381 comm=syz.0.2468
[  128.897148][ T9381] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9381 comm=syz.0.2468
[  128.916482][ T9379] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2469'.
[  128.996988][ T9386] netlink: 'syz.2.2469': attribute type 2 has an invalid length.
[  129.149768][ T9395] netlink: 14 bytes leftover after parsing attributes in process `syz.0.2472'.
[  130.109802][ T9440] sctp: [Deprecated]: syz.3.2494 (pid 9440) Use of int in max_burst socket option deprecated.
[  130.109802][ T9440] Use struct sctp_assoc_value instead
[  130.199507][ T9428] loop4: detected capacity change from 0 to 1024
[  130.248920][ T9428] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.639599][ T9455] 9pnet: p9_errstr2errno: server reported unknown error 
[  130.830541][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  130.830559][   T29] audit: type=1326 audit(1753455532.699:3630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9460 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  130.860603][   T29] audit: type=1326 audit(1753455532.699:3631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9460 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  130.884332][   T29] audit: type=1326 audit(1753455532.699:3632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9460 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  130.908157][   T29] audit: type=1326 audit(1753455532.699:3633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9460 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  130.934190][   T29] audit: type=1326 audit(1753455532.699:3634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9460 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  130.959393][   T29] audit: type=1326 audit(1753455532.699:3635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9460 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  130.983031][   T29] audit: type=1326 audit(1753455532.699:3636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9460 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  131.007636][   T29] audit: type=1326 audit(1753455532.699:3637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9460 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  131.031686][   T29] audit: type=1326 audit(1753455532.699:3638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9460 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  131.055806][   T29] audit: type=1326 audit(1753455532.699:3639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9460 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  131.064116][ T9457] SELinux: failed to load policy
[  131.136579][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.413431][ T9475] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  131.478661][ T9479] SELinux:  Context system_u:object is not valid (left unmapped).
[  131.670772][ T9502] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2523'.
[  131.679778][ T9502] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2523'.
[  131.728696][ T9499] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2520'.
[  131.752949][ T9499] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  131.761462][ T9499] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  131.769873][ T9499] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  131.778540][ T9499] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  131.794869][ T9506] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2524'.
[  131.824360][ T9499] netdevsim netdevsim4 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  131.833034][ T9499] netdevsim netdevsim4 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  131.841459][ T9499] netdevsim netdevsim4 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  131.849956][ T9499] netdevsim netdevsim4 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  131.978396][ T9520] hsr0 speed is unknown, defaulting to 1000
[  131.998935][ T9520] hsr0 speed is unknown, defaulting to 1000
[  132.008110][ T9520] hsr0 speed is unknown, defaulting to 1000
[  132.027015][ T9520] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  132.081605][ T9520] hsr0 speed is unknown, defaulting to 1000
[  132.100188][ T9520] hsr0 speed is unknown, defaulting to 1000
[  132.109556][ T9520] hsr0 speed is unknown, defaulting to 1000
[  132.128594][ T9520] hsr0 speed is unknown, defaulting to 1000
[  132.138734][ T9527] loop2: detected capacity change from 0 to 512
[  132.147204][ T9520] hsr0 speed is unknown, defaulting to 1000
[  132.157256][ T9527] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  132.187576][ T9527] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.206476][ T9527] ext4 filesystem being mounted at /532/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  132.239554][ T9536] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2536'.
[  132.277179][ T9536] netlink: 556 bytes leftover after parsing attributes in process `syz.1.2536'.
[  132.333107][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.410899][ T9546] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  132.475799][ T9563] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2545'.
[  132.488098][ T9563] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2545'.
[  132.525337][ T9565] netlink: 'syz.1.2546': attribute type 1 has an invalid length.
[  132.591073][ T9565] 8021q: adding VLAN 0 to HW filter on device bond1
[  132.613141][ T9575] netlink: 'syz.2.2550': attribute type 1 has an invalid length.
[  132.696867][ T9565] bond1: (slave veth9): Enslaving as an active interface with a down link
[  132.751743][ T9577] 8021q: adding VLAN 0 to HW filter on device batadv1
[  132.815548][ T9577] bond1: (slave batadv1): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open
[  133.050622][ T9593] loop2: detected capacity change from 0 to 1024
[  133.145323][ T9593] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.262001][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.748041][ T9627] block device autoloading is deprecated and will be removed.
[  133.810738][ T9631] loop1: detected capacity change from 0 to 1024
[  133.832902][ T9631] netlink: 'syz.1.2569': attribute type 1 has an invalid length.
[  133.937644][ T9569] lo speed is unknown, defaulting to 1000
[  133.956537][ T9636] netlink: 'syz.1.2571': attribute type 10 has an invalid length.
[  133.964487][ T9636] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2571'.
[  133.978931][ T9569] hsr0 speed is unknown, defaulting to 1000
[  133.988214][ T9636] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  133.996493][ T9636] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  134.004830][ T9636] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  134.013179][ T9636] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  134.047573][ T9636] team0: Port device geneve1 added
[  134.183531][ T9645] netlink: 'syz.1.2575': attribute type 1 has an invalid length.
[  134.222968][ T9645] 8021q: adding VLAN 0 to HW filter on device bond2
[  134.363081][ T9650] bond2: (slave veth11): Enslaving as an active interface with a down link
[  134.476532][ T9645] bond0: (slave dummy0): Releasing backup interface
[  134.517710][ T9645] bond2: (slave dummy0): making interface the new active one
[  134.548675][ T9645] dummy0: entered promiscuous mode
[  134.554166][ T9645] bond2: (slave dummy0): Enslaving as an active interface with an up link
[  134.869594][ T9668] blktrace: Concurrent blktraces are not allowed on loop2
[  134.982957][ T9672] netlink: 'syz.0.2585': attribute type 10 has an invalid length.
[  135.070552][ T9673] netlink: 'syz.0.2585': attribute type 10 has an invalid length.
[  135.126046][ T9672] bond0: (slave dummy0): Releasing backup interface
[  135.185476][ T9672] team0: Port device dummy0 added
[  135.200709][ T9673] team0: Port device dummy0 removed
[  135.223380][ T9673] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  135.240561][ T9675] wg2: entered promiscuous mode
[  135.245823][ T9675] wg2: entered allmulticast mode
[  135.384254][ T9687] loop4: detected capacity change from 0 to 2048
[  135.398655][ T9689] batadv_slave_1: entered promiscuous mode
[  135.411805][ T9689] batadv_slave_1: left promiscuous mode
[  135.452223][ T9687] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.630434][ T9703] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2598'.
[  135.748595][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.792051][ T9706] netlink: 'syz.1.2599': attribute type 4 has an invalid length.
[  135.799988][ T9706] netlink: 'syz.1.2599': attribute type 9 has an invalid length.
[  135.807787][ T9706] netlink: 'syz.1.2599': attribute type 10 has an invalid length.
[  135.815690][ T9706] netlink: 'syz.1.2599': attribute type 11 has an invalid length.
[  136.059860][ T9715] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  136.199863][ T9717] loop1: detected capacity change from 0 to 8192
[  136.220217][ T9717] netlink: zone id is out of range
[  136.225462][ T9717] netlink: zone id is out of range
[  136.230621][ T9717] netlink: zone id is out of range
[  136.235890][ T9717] netlink: zone id is out of range
[  136.241024][ T9717] netlink: zone id is out of range
[  136.246256][ T9717] netlink: zone id is out of range
[  136.251545][ T9717] netlink: zone id is out of range
[  136.256733][ T9717] netlink: zone id is out of range
[  136.261995][ T9717] netlink: zone id is out of range
[  136.267243][ T9717] netlink: zone id is out of range
[  136.525200][ T9735] macsec1: entered allmulticast mode
[  136.530607][ T9735] bond0: entered allmulticast mode
[  136.535809][ T9735] bond_slave_0: entered allmulticast mode
[  136.542039][ T9735] bond_slave_1: entered allmulticast mode
[  136.553288][ T9735] bond0: left allmulticast mode
[  136.558329][ T9735] bond_slave_0: left allmulticast mode
[  136.563888][ T9735] bond_slave_1: left allmulticast mode
[  136.590113][ T9731] loop4: detected capacity change from 0 to 8192
[  136.660892][ T9741] bond2: (slave dummy0): Releasing active interface
[  136.670476][ T9741] dummy0: left promiscuous mode
[  136.698469][ T9741] bond0: (slave bond_slave_0): Releasing backup interface
[  136.757692][ T9741] bond0: (slave bond_slave_1): Releasing backup interface
[  136.772397][ T9741] team0: Port device team_slave_0 removed
[  136.791405][ T9741] team0: Port device team_slave_1 removed
[  136.802565][ T9741] batman_adv: batadv0: Removing interface: batadv_slave_0
[  136.814442][ T9741] batman_adv: batadv0: Removing interface: batadv_slave_1
[  136.831031][ T9741] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  136.839652][ T9741] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  136.848409][ T9741] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  136.856976][ T9741] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  136.891987][ T9741] team0: Port device geneve1 removed
[  136.920283][ T9741] batman_adv: batadv0: Removing interface: ipvlan2
[  136.945678][ T9755] __nla_validate_parse: 2 callbacks suppressed
[  136.945697][ T9755] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2620'.
[  136.965346][ T9741] bond1: (slave veth9): Releasing active interface
[  136.984128][ T9741] bond2: (slave veth11): Releasing active interface
[  137.028412][ T9755] sch_tbf: burst 88 is lower than device veth7 mtu (1514) !
[  137.139532][ T9763] netlink: 100 bytes leftover after parsing attributes in process `syz.1.2624'.
[  137.356226][ T9774] SELinux: syz.4.2628 (9774) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  137.817279][ T9793] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2637'.
[  138.003755][ T9810] sch_tbf: burst 19872 is lower than device lo mtu (39799) !
[  138.034722][   T29] kauditd_printk_skb: 59 callbacks suppressed
[  138.034785][   T29] audit: type=1400 audit(1753455540.435:3699): avc:  denied  { write } for  pid=9814 comm="syz.1.2648" name="usbmon8" dev="devtmpfs" ino=166 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  138.156627][ T9822] batadv_slave_1: entered promiscuous mode
[  138.163487][ T9822] batadv_slave_1: left promiscuous mode
[  138.418865][ T9833] SELinux:  Context  is not valid (left unmapped).
[  138.440164][   T29] audit: type=1400 audit(1753455540.853:3700): avc:  denied  { create } for  pid=9832 comm="syz.3.2656" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=04
[  138.462318][   T29] audit: type=1400 audit(1753455540.853:3701): avc:  denied  { associate } for  pid=9832 comm="syz.3.2656" name="bus" scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon=04
[  138.485287][   T29] audit: type=1400 audit(1753455540.853:3702): avc:  denied  { write open } for  pid=9832 comm="syz.3.2656" path="/521/bus" dev="tmpfs" ino=2723 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=04
[  138.600962][   T29] audit: type=1400 audit(1753455540.864:3703): avc:  denied  { unlink } for  pid=3314 comm="syz-executor" name="bus" dev="tmpfs" ino=2723 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=04
[  138.624548][   T29] audit: type=1400 audit(1753455540.982:3704): avc:  denied  { shutdown } for  pid=9836 comm="syz.3.2657" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  138.644739][   T29] audit: type=1326 audit(1753455541.014:3705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9839 comm="syz.4.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  138.668272][   T29] audit: type=1326 audit(1753455541.014:3706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9839 comm="syz.4.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  138.691963][   T29] audit: type=1326 audit(1753455541.014:3707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9839 comm="syz.4.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  138.715630][   T29] audit: type=1326 audit(1753455541.014:3708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9839 comm="syz.4.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4391bee9a9 code=0x7ffc0000
[  138.753517][ T9753] lo speed is unknown, defaulting to 1000
[  138.773923][ T9753] hsr0 speed is unknown, defaulting to 1000
[  139.035018][ T9863] IPv6: NLM_F_CREATE should be specified when creating new route
[  139.058618][ T9861] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2669'.
[  139.150613][ T9869] loop2: detected capacity change from 0 to 1024
[  139.186321][ T9871] netlink: 'syz.4.2674': attribute type 1 has an invalid length.
[  139.194486][ T9871] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2674'.
[  139.221305][ T9869] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.268753][ T9878] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2676'.
[  139.275155][ T9881] 
: renamed from bond0 (while UP)
[  139.335343][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.454020][ T9896] netlink: 268 bytes leftover after parsing attributes in process `syz.1.2681'.
[  139.534360][ T9901] loop3: detected capacity change from 0 to 2048
[  139.564897][ T9901] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.782906][ T9917] loop1: detected capacity change from 0 to 1024
[  139.792024][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.793023][ T9917] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  139.829057][ T9917] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.907110][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.040350][ T9934] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2695'.
[  140.084146][ T9933] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2694'.
[  140.137108][ T9940] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2698'.
[  140.183786][ T9943] loop2: detected capacity change from 0 to 128
[  140.224767][ T9943] hsr_slave_1: left promiscuous mode
[  140.379121][ T9952] lo speed is unknown, defaulting to 1000
[  140.392469][ T9952] hsr0 speed is unknown, defaulting to 1000
[  141.088977][ T9994] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  141.102359][ T9991] tipc: Disabling bearer <eth:syzkaller0>
[  141.123988][ T9993] wg2: entered promiscuous mode
[  141.129386][ T9993] wg2: entered allmulticast mode
[  141.186545][T10000] netlink: 'syz.2.2724': attribute type 1 has an invalid length.
[  141.357470][T10018] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  141.442380][T10025] loop3: detected capacity change from 0 to 128
[  141.489834][T10025] syz.3.2733: attempt to access beyond end of device
[  141.489834][T10025] loop3: rw=0, sector=121, nr_sectors = 120 limit=128
[  141.510829][T10037] netlink: 'syz.0.2738': attribute type 1 has an invalid length.
[  141.555610][ T4140] kworker/u8:18: attempt to access beyond end of device
[  141.555610][ T4140] loop3: rw=1, sector=241, nr_sectors = 800 limit=128
[  141.556027][T10043] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  141.783640][T10069] pim6reg1: entered promiscuous mode
[  141.789149][T10069] pim6reg1: entered allmulticast mode
[  141.844639][T10073] __nla_validate_parse: 7 callbacks suppressed
[  141.844655][T10073] netlink: 464 bytes leftover after parsing attributes in process `syz.2.2754'.
[  141.887738][T10076] netlink: 'syz.1.2755': attribute type 1 has an invalid length.
[  141.895773][T10076] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2755'.
[  141.995295][T10080] loop1: detected capacity change from 0 to 1764
[  142.028369][T10084] loop4: detected capacity change from 0 to 512
[  142.054417][T10084] EXT4-fs (loop4): too many log groups per flexible block group
[  142.062518][T10084] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  142.090557][T10084] EXT4-fs (loop4): mount failed
[  142.178553][T10098] 
@�: entered promiscuous mode
[  142.183637][T10098] bond_slave_1: entered promiscuous mode
[  142.196445][T10098] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  142.263301][T10098] 
@�: left promiscuous mode
[  142.268057][T10098] bond_slave_1: left promiscuous mode
[  142.352053][T10113] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2769'.
[  142.530783][T10128] program syz.4.2776 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  142.553858][T10128] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  143.009695][T10132] 
@�: entered promiscuous mode
[  143.014880][T10132] bond_slave_1: entered promiscuous mode
[  143.027173][T10132] macsec1: entered allmulticast mode
[  143.032531][T10132] bond0: entered allmulticast mode
[  143.037886][T10132] 
@�: entered allmulticast mode
[  143.043646][T10132] bond_slave_1: entered allmulticast mode
[  143.070480][T10132] bond0: left allmulticast mode
[  143.075510][T10132] 
@�: left allmulticast mode
[  143.080339][T10132] bond_slave_1: left allmulticast mode
[  143.087286][T10132] 
@�: left promiscuous mode
[  143.092281][T10132] bond_slave_1: left promiscuous mode
[  143.941299][T10182] loop2: detected capacity change from 0 to 1024
[  143.955681][T10182] EXT4-fs: Ignoring removed orlov option
[  143.967343][   T29] kauditd_printk_skb: 149 callbacks suppressed
[  143.967357][   T29] audit: type=1326 audit(1753455546.797:3858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10180 comm="syz.3.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa860dee9a9 code=0x7ffc0000
[  144.001426][T10182] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  144.024599][   T29] audit: type=1326 audit(1753455546.840:3859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10180 comm="syz.3.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7fa860dee9a9 code=0x7ffc0000
[  144.048182][   T29] audit: type=1326 audit(1753455546.840:3860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10180 comm="syz.3.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa860dee9a9 code=0x7ffc0000
[  144.071882][   T29] audit: type=1326 audit(1753455546.840:3861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10180 comm="syz.3.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa860dee9a9 code=0x7ffc0000
[  144.155756][T10182] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.316836][T10182] EXT4-fs error (device loop2): ext4_find_dest_de:2052: inode #12: block 7: comm syz.2.2800: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  144.363983][T10195] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.2800: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  144.443134][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.468212][T10202] loop1: detected capacity change from 0 to 2048
[  144.603989][T10202] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.718327][T10207] loop2: detected capacity change from 0 to 2048
[  144.854296][T10207]  loop2: p1 < > p4
[  144.871161][T10207] loop2: p4 size 8388608 extends beyond EOD, truncated
[  144.962571][T10215] loop3: detected capacity change from 0 to 512
[  144.998913][T10218] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2811'.
[  145.007930][T10218] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2811'.
[  145.016904][T10215] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  145.063039][T10215] EXT4-fs (loop3): 1 truncate cleaned up
[  145.088606][T10215] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.126375][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.211923][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.368224][T10245] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2824'.
[  145.440124][T10252] loop2: detected capacity change from 0 to 2048
[  145.473972][T10252] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.592982][T10264] loop1: detected capacity change from 0 to 512
[  145.611840][T10264] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  145.652685][T10264] EXT4-fs (loop1): 1 truncate cleaned up
[  145.672187][T10264] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.810824][T10274] loop0: detected capacity change from 0 to 512
[  145.814608][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.847655][T10274] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.879740][T10274] ext4 filesystem being mounted at /510/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.897454][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.930370][T10280] loop4: detected capacity change from 0 to 128
[  145.986106][T10280] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  146.011068][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.063970][T10280] ext4 filesystem being mounted at /559/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  146.089116][T10287] loop1: detected capacity change from 0 to 2048
[  146.160321][T10287] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.234106][T10287] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.2841: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  146.257998][   T29] audit: type=1400 audit(1753455549.211:3862): avc:  denied  { setattr } for  pid=10278 comm="syz.4.2837" path="/559/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file1" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  146.338457][T10287] EXT4-fs (loop1): Remounting filesystem read-only
[  146.374901][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.462011][ T3310] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  146.611462][   T29] audit: type=1326 audit(1753455549.619:3863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10308 comm="syz.1.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff08b36e9a9 code=0x7fc00000
[  146.635965][   T29] audit: type=1326 audit(1753455549.619:3864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10308 comm="syz.1.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff08b36e9a9 code=0x7fc00000
[  146.659918][   T29] audit: type=1326 audit(1753455549.619:3865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10308 comm="syz.1.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff08b36e9a9 code=0x7fc00000
[  146.841668][   T29] audit: type=1326 audit(1753455549.865:3866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10335 comm="syz.1.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff08b36e9a9 code=0x7ffc0000
[  146.865285][   T29] audit: type=1326 audit(1753455549.876:3867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10335 comm="syz.1.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff08b36e9a9 code=0x7ffc0000
[  146.949107][T10343] loop1: detected capacity change from 0 to 1024
[  146.973435][T10343] EXT4-fs: Ignoring removed orlov option
[  147.004081][T10343] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.032653][T10346] bond0: entered promiscuous mode
[  147.037789][T10346] 
@�: entered promiscuous mode
[  147.043007][T10346] bond_slave_1: entered promiscuous mode
[  147.071559][T10351] netlink: '+}[@': attribute type 2 has an invalid length.
[  147.079351][T10346] batadv0: entered promiscuous mode
[  147.086625][T10346] hsr1: entered allmulticast mode
[  147.091820][T10346] bond0: entered allmulticast mode
[  147.096963][T10346] 
@�: entered allmulticast mode
[  147.102062][T10346] bond_slave_1: entered allmulticast mode
[  147.107940][T10346] batadv0: entered allmulticast mode
[  147.122106][T10346] 8021q: adding VLAN 0 to HW filter on device hsr1
[  147.177376][T10346] bond0: left promiscuous mode
[  147.182224][T10346] 
@�: left promiscuous mode
[  147.187272][T10346] bond_slave_1: left promiscuous mode
[  147.206633][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.216914][T10346] batadv0: left promiscuous mode
[  147.395772][T10378] sctp: [Deprecated]: syz.2.2876 (pid 10378) Use of struct sctp_assoc_value in delayed_ack socket option.
[  147.395772][T10378] Use struct sctp_sack_info instead
[  147.509633][T10386] loop0: detected capacity change from 0 to 1024
[  147.542889][T10362] macsec1: entered allmulticast mode
[  147.548329][T10362] bond0: entered allmulticast mode
[  147.555126][T10386] EXT4-fs: Ignoring removed orlov option
[  147.572831][T10362] bond0: left allmulticast mode
[  147.654907][T10386] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.765558][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.806406][T10402] cgroup: fork rejected by pids controller in /syz0
[  148.168770][T10409] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2888'.
[  148.185064][T10408] loop2: detected capacity change from 0 to 2048
[  148.312332][T10425] loop2: detected capacity change from 0 to 512
[  148.351202][T10425] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.364466][T10425] ext4 filesystem being mounted at /595/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.398340][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.565101][T10436] lo speed is unknown, defaulting to 1000
[  148.571479][T10436] hsr0 speed is unknown, defaulting to 1000
[  148.657931][T10436] chnl_net:caif_netlink_parms(): no params data found
[  148.772633][T10436] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.779797][T10436] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.788207][T10436] bridge_slave_0: entered allmulticast mode
[  148.794958][T10436] bridge_slave_0: entered promiscuous mode
[  148.802571][T10436] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.809822][T10436] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.817078][T10436] bridge_slave_1: entered allmulticast mode
[  148.823750][T10436] bridge_slave_1: entered promiscuous mode
[  148.846045][T10436] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  148.860484][T10436] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  148.888353][T10436] team0: Port device team_slave_0 added
[  148.899571][T10436] team0: Port device team_slave_1 added
[  148.923511][T10436] batman_adv: batadv0: Adding interface: batadv_slave_0
[  148.930620][T10436] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  148.956776][T10436] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  148.968270][T10436] batman_adv: batadv0: Adding interface: batadv_slave_1
[  148.975338][T10436] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.001472][T10436] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  149.036213][T10436] hsr_slave_0: entered promiscuous mode
[  149.042546][T10436] hsr_slave_1: entered promiscuous mode
[  149.048701][T10436] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  149.056290][T10436] Cannot create hsr debugfs directory
[  149.128038][T10436] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.154871][T10479] vhci_hcd: invalid port number 96
[  149.160200][T10479] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  149.171943][T10436] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.228467][T10436] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.286215][T10436] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.308436][T10494] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2919'.
[  149.410605][T10496] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  149.424965][T10496] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  149.470118][T10496] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  149.478687][T10496] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  149.487386][T10496] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  149.495879][T10496] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  149.575535][T10436] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  149.591642][T10436] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  149.604262][T10436] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  149.623008][T10436] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  149.657674][T10509] netlink: 'syz.3.2925': attribute type 3 has an invalid length.
[  149.750800][T10436] 8021q: adding VLAN 0 to HW filter on device bond0
[  149.773120][T10436] 8021q: adding VLAN 0 to HW filter on device team0
[  149.797754][ T4149] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.804924][ T4149] bridge0: port 1(bridge_slave_0) entered forwarding state
[  149.832306][ T4161] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.839578][ T4161] bridge0: port 2(bridge_slave_1) entered forwarding state
[  149.883957][T10522] xt_TCPMSS: Only works on TCP SYN packets
[  149.946541][T10436] 8021q: adding VLAN 0 to HW filter on device batadv0
[  150.043673][T10436] veth0_vlan: entered promiscuous mode
[  150.057000][T10436] veth1_vlan: entered promiscuous mode
[  150.080847][T10436] veth0_macvtap: entered promiscuous mode
[  150.092090][T10436] veth1_macvtap: entered promiscuous mode
[  150.117817][T10436] batman_adv: batadv0: Interface activated: batadv_slave_0
[  150.131496][T10436] batman_adv: batadv0: Interface activated: batadv_slave_1
[  150.145304][T10436] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  150.154638][T10436] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  150.163545][T10436] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  150.172487][T10436] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  150.210502][   T29] kauditd_printk_skb: 39 callbacks suppressed
[  150.210517][   T29] audit: type=1400 audit(1753455553.492:3907): avc:  denied  { mounton } for  pid=10436 comm="syz-executor" path="/root/syzkaller.ZDDZBZ/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  150.255140][   T29] audit: type=1400 audit(1753455553.545:3908): avc:  denied  { mount } for  pid=10436 comm="syz-executor" name="/" dev="gadgetfs" ino=4123 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  150.289887][   T29] audit: type=1400 audit(1753455553.588:3909): avc:  denied  { write } for  pid=10436 comm="syz-executor" name="cgroup.procs" dev="cgroup" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object"
[  150.316071][   T29] audit: type=1400 audit(1753455553.588:3910): avc:  denied  { open } for  pid=10436 comm="syz-executor" path="/syzcgroup/cpu/syz0/cgroup.procs" dev="cgroup" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object"
[  150.484153][T10569] loop1: detected capacity change from 0 to 512
[  150.496137][T10569] EXT4-fs (loop1): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  150.528531][   T29] audit: type=1400 audit(1753455553.835:3911): avc:  denied  { remount } for  pid=10567 comm="syz.1.2943" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  150.561497][T10569] Quota error (device loop1): v2_read_file_info: Free block number 58381 out of range (1, 6).
[  150.572154][T10569] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  150.695537][ T3306] EXT4-fs (loop1): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  150.895809][T10596] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2953'.
[  150.913736][T10593] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2953'.
[  150.994827][T10602] netlink: 'syz.3.2956': attribute type 10 has an invalid length.
[  151.022419][T10602] 
: (slave dummy0): Releasing backup interface
[  151.035229][T10602] team0: Port device dummy0 added
[  151.202492][T10617] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.209833][T10617] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.269682][T10617] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.289588][T10617] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.334418][T10617] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.343096][T10617] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.351721][T10617] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.360218][T10617] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.626369][   T29] audit: type=1326 audit(1753455555.015:3912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10632 comm="syz.2.2967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  151.650060][   T29] audit: type=1326 audit(1753455555.015:3913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10632 comm="syz.2.2967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  151.685190][   T29] audit: type=1326 audit(1753455555.069:3914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10632 comm="syz.2.2967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  151.708864][   T29] audit: type=1326 audit(1753455555.069:3915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10632 comm="syz.2.2967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  151.799162][T10641] loop0: detected capacity change from 0 to 128
[  151.815812][T10641] xt_hashlimit: max too large, truncated to 1048576
[  151.840793][T10645] loop2: detected capacity change from 0 to 512
[  151.868458][T10645] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  151.959791][T10645] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  152.027576][T10655] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2975'.
[  152.046734][T10659] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  152.053301][T10659] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  152.060983][T10659] vhci_hcd vhci_hcd.0: Device attached
[  152.067748][ T3307] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  152.084644][T10659] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(5)
[  152.091382][T10659] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  152.099766][T10659] vhci_hcd vhci_hcd.0: Device attached
[  152.131063][T10659] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(7)
[  152.137731][T10659] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  152.145450][T10659] vhci_hcd vhci_hcd.0: Device attached
[  152.161386][T10659] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  152.192954][T10659] vhci_hcd vhci_hcd.0: pdev(3) rhport(4) sockfd(11)
[  152.199708][T10659] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  152.207742][T10659] vhci_hcd vhci_hcd.0: Device attached
[  152.227918][T10674] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  152.247806][T10659] vhci_hcd vhci_hcd.0: pdev(3) rhport(6) sockfd(13)
[  152.254554][T10659] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  152.262546][T10659] vhci_hcd vhci_hcd.0: Device attached
[  152.274444][T10659] vhci_hcd vhci_hcd.0: pdev(3) rhport(7) sockfd(17)
[  152.281230][T10659] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  152.288912][T10659] vhci_hcd vhci_hcd.0: Device attached
[  152.295719][T10675] vhci_hcd: connection closed
[  152.296206][T10662] vhci_hcd: connection closed
[  152.296900][T10664] vhci_hcd: connection closed
[  152.311299][T10669] vhci_hcd: connection closed
[  152.320760][ T4148] vhci_hcd: stop threads
[  152.330108][ T4148] vhci_hcd: release socket
[  152.334850][ T4148] vhci_hcd: disconnect device
[  152.340106][T10660] vhci_hcd: connection closed
[  152.340272][T10678] vhci_hcd: connection closed
[  152.346894][T10679] rdma_op ffff8881261f9980 conn xmit_rdma 0000000000000000
[  152.362837][T10682] loop2: detected capacity change from 0 to 128
[  152.369404][ T4148] vhci_hcd: stop threads
[  152.373723][ T4148] vhci_hcd: release socket
[  152.378308][ T4148] vhci_hcd: disconnect device
[  152.385055][ T4148] vhci_hcd: stop threads
[  152.389432][ T4148] vhci_hcd: release socket
[  152.393961][ T4148] vhci_hcd: disconnect device
[  152.405268][T10682] Cannot find del_set index 4 as target
[  152.407285][ T4148] vhci_hcd: stop threads
[  152.415283][ T4148] vhci_hcd: release socket
[  152.419726][ T4148] vhci_hcd: disconnect device
[  152.424595][ T6705] usb 7-1: new low-speed USB device number 2 using vhci_hcd
[  152.435657][T10661] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  152.455323][ T4148] vhci_hcd: stop threads
[  152.459699][ T4148] vhci_hcd: release socket
[  152.464180][ T4148] vhci_hcd: disconnect device
[  152.481544][ T4148] vhci_hcd: stop threads
[  152.485846][ T4148] vhci_hcd: release socket
[  152.490581][ T4148] vhci_hcd: disconnect device
[  152.504532][T10684] syzkaller0: entered promiscuous mode
[  152.510314][T10684] syzkaller0: entered allmulticast mode
[  152.550834][T10692] loop1: detected capacity change from 0 to 512
[  152.925240][T10732] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3005'.
[  152.936631][T10736] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3007'.
[  152.949461][T10734] hub 9-0:1.0: USB hub found
[  152.956672][T10734] hub 9-0:1.0: 8 ports detected
[  153.096756][T10749] pim6reg1: entered promiscuous mode
[  153.102309][T10749] pim6reg1: entered allmulticast mode
[  153.331214][T10766] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3020'.
[  153.380694][T10771] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3022'.
[  153.464182][T10779] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  153.479969][T10779] batman_adv: batadv0: Removing interface: batadv_slave_1
[  153.538735][T10783] loop0: detected capacity change from 0 to 128
[  153.550699][T10783] Cannot find del_set index 4 as target
[  153.775282][T10801] loop1: detected capacity change from 0 to 1024
[  153.786471][T10801] EXT4-fs: Ignoring removed orlov option
[  153.827725][T10801] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.874188][T10812] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3040'.
[  153.949947][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.043135][T10820] pim6reg1: entered promiscuous mode
[  154.048565][T10820] pim6reg1: entered allmulticast mode
[  154.317465][T10845] netlink: 2048 bytes leftover after parsing attributes in process `syz.2.3052'.
[  154.327058][T10845] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3052'.
[  154.515217][T10856] syzkaller1: entered promiscuous mode
[  154.520928][T10856] syzkaller1: entered allmulticast mode
[  154.609413][T10862] hub 9-0:1.0: USB hub found
[  154.614317][T10862] hub 9-0:1.0: 8 ports detected
[  154.799154][T10873] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3067'.
[  155.247403][T10887] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  155.257755][T10887] batman_adv: batadv0: Removing interface: batadv_slave_1
[  155.476217][   T29] kauditd_printk_skb: 69 callbacks suppressed
[  155.476235][   T29] audit: type=1400 audit(1753455559.146:3984): avc:  denied  { ioctl } for  pid=10894 comm="syz.2.3078" path="/dev/input/event2" dev="devtmpfs" ino=245 ioctlcmd=0x4591 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  155.635295][   T29] audit: type=1326 audit(1753455559.307:3985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10893 comm="syz.0.3077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4aba68e9a9 code=0x7ffc0000
[  155.659162][   T29] audit: type=1326 audit(1753455559.307:3986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10893 comm="syz.0.3077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4aba68e9a9 code=0x7ffc0000
[  155.682838][   T29] audit: type=1326 audit(1753455559.318:3987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10893 comm="syz.0.3077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4aba68e9a9 code=0x7ffc0000
[  155.706472][   T29] audit: type=1326 audit(1753455559.318:3988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10893 comm="syz.0.3077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4aba68e9a9 code=0x7ffc0000
[  155.730300][   T29] audit: type=1326 audit(1753455559.318:3989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10893 comm="syz.0.3077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4aba68e9a9 code=0x7ffc0000
[  155.753889][   T29] audit: type=1326 audit(1753455559.318:3990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10893 comm="syz.0.3077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4aba68e9a9 code=0x7ffc0000
[  155.777563][   T29] audit: type=1326 audit(1753455559.318:3991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10893 comm="syz.0.3077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4aba68e9a9 code=0x7ffc0000
[  155.801238][   T29] audit: type=1326 audit(1753455559.318:3992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10893 comm="syz.0.3077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4aba68e9a9 code=0x7ffc0000
[  155.824910][   T29] audit: type=1326 audit(1753455559.318:3993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10893 comm="syz.0.3077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4aba68e9a9 code=0x7ffc0000
[  155.926152][T10907] hub 9-0:1.0: USB hub found
[  155.928408][T10826] lo speed is unknown, defaulting to 1000
[  155.931033][T10907] hub 9-0:1.0: 8 ports detected
[  155.961427][T10826] hsr0 speed is unknown, defaulting to 1000
[  156.530928][T10914] loop9: detected capacity change from 0 to 7
[  156.563871][T10914] buffer_io_error: 529 callbacks suppressed
[  156.563889][T10914] Buffer I/O error on dev loop9, logical block 0, async page read
[  156.581262][T10916] loop0: detected capacity change from 0 to 512
[  156.591563][T10918] loop2: detected capacity change from 0 to 512
[  156.608001][T10916] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  156.621637][T10918] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  156.634544][T10914] Buffer I/O error on dev loop9, logical block 0, async page read
[  156.642674][T10914]  loop9: unable to read partition table
[  156.669422][T10918] EXT4-fs (loop2): 1 truncate cleaned up
[  156.678934][T10918] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.703475][T10914] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  156.703475][T10914] 
) failed (rc=-5)
[  156.717629][T10436] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  156.784127][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.000462][T10936] loop2: detected capacity change from 0 to 8192
[  157.037127][T10944] loop1: detected capacity change from 0 to 128
[  157.063499][T10944] EXT4-fs: Ignoring removed nobh option
[  157.085194][T10944] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  157.100763][T10944] ext4 filesystem being mounted at /mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  157.114101][T10944] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  157.128962][ T6705] usb 7-1: enqueue for inactive port 0
[  157.138443][ T6705] usb 7-1: enqueue for inactive port 0
[  157.187994][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.196044][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.203475][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.211017][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.214091][ T6705] vhci_hcd: vhci_device speed not set
[  157.218473][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.231294][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.238773][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.246253][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.254084][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.261572][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.269814][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.277516][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.285109][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.292597][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.300333][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.308120][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.315587][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.323186][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.331405][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.339201][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.346864][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.355744][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.363607][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.372204][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.379876][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.387336][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.394810][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.402372][ T6708] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.411208][ T6708] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  157.458380][T10971] wireguard1: entered promiscuous mode
[  157.463996][T10971] wireguard1: entered allmulticast mode
[  157.510623][T10980] loop4: detected capacity change from 0 to 128
[  157.517507][T10980] EXT4-fs: Ignoring removed nobh option
[  157.525870][T10980] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  157.539521][T10980] ext4 filesystem being mounted at /601/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.574464][T10985] loop2: detected capacity change from 0 to 2048
[  157.645644][ T3310] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  157.704325][T10993] loop1: detected capacity change from 0 to 2048
[  157.730519][T10985]  loop2: unable to read partition table
[  157.744617][T10985] loop2: partition table beyond EOD, truncated
[  157.751821][T10985] loop_reread_partitions: partition scan of loop2 () failed (rc=-5)
[  157.771530][T10993] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.806673][T11003] net_ratelimit: 40 callbacks suppressed
[  157.806693][T11003] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  157.876382][T10993] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  157.896029][T10993] EXT4-fs (loop1): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 17 with error 28
[  157.908557][T10993] EXT4-fs (loop1): This should not happen!! Data will be lost
[  157.908557][T10993] 
[  157.918782][T10993] EXT4-fs (loop1): Total free blocks count 0
[  157.924952][T10993] EXT4-fs (loop1): Free/Dirty block details
[  157.931052][T10993] EXT4-fs (loop1): free_blocks=2415919104
[  157.936982][T10993] EXT4-fs (loop1): dirty_blocks=32
[  157.942628][T10993] EXT4-fs (loop1): Block reservation details
[  157.948827][T10993] EXT4-fs (loop1): i_reserved_data_blocks=2
[  157.956040][T11013] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  157.995756][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.017180][T11020] __nla_validate_parse: 2 callbacks suppressed
[  158.017196][T11020] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3124'.
[  158.033408][T11018] wireguard0: entered promiscuous mode
[  158.039013][T11018] wireguard0: entered allmulticast mode
[  158.070511][T11024] veth0: entered promiscuous mode
[  158.080414][T11024] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3129'.
[  158.093953][T11024] veth0 (unregistering): left promiscuous mode
[  158.325104][T11063] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3144'.
[  158.337507][T11067] netlink: 'syz.3.3145': attribute type 3 has an invalid length.
[  158.623666][T11087] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3155'.
[  158.657064][T11091] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  158.919159][T11107] loop0: detected capacity change from 0 to 128
[  158.925858][T11107] EXT4-fs: Ignoring removed nobh option
[  158.933518][T11107] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  158.946086][T11107] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.008489][T10436] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  159.530081][T11129] loop1: detected capacity change from 0 to 128
[  159.594882][T11129] syz.1.3172: attempt to access beyond end of device
[  159.594882][T11129] loop1: rw=2049, sector=129, nr_sectors = 1 limit=128
[  159.609435][T11129] Buffer I/O error on dev loop1, logical block 129, lost async page write
[  159.644779][T11129] syz.1.3172: attempt to access beyond end of device
[  159.644779][T11129] loop1: rw=2049, sector=130, nr_sectors = 1 limit=128
[  159.659687][T11129] Buffer I/O error on dev loop1, logical block 130, lost async page write
[  159.668697][T11129] syz.1.3172: attempt to access beyond end of device
[  159.668697][T11129] loop1: rw=2049, sector=139, nr_sectors = 1 limit=128
[  159.682332][T11129] Buffer I/O error on dev loop1, logical block 139, lost async page write
[  159.736505][T11129] syz.1.3172: attempt to access beyond end of device
[  159.736505][T11129] loop1: rw=2049, sector=140, nr_sectors = 1 limit=128
[  159.750861][T11129] Buffer I/O error on dev loop1, logical block 140, lost async page write
[  159.764341][T11129] syz.1.3172: attempt to access beyond end of device
[  159.764341][T11129] loop1: rw=2049, sector=141, nr_sectors = 1 limit=128
[  159.778074][T11129] Buffer I/O error on dev loop1, logical block 141, lost async page write
[  159.790333][T11129] syz.1.3172: attempt to access beyond end of device
[  159.790333][T11129] loop1: rw=2049, sector=142, nr_sectors = 1 limit=128
[  159.804139][T11129] Buffer I/O error on dev loop1, logical block 142, lost async page write
[  159.816118][T11129] syz.1.3172: attempt to access beyond end of device
[  159.816118][T11129] loop1: rw=2049, sector=143, nr_sectors = 1 limit=128
[  159.829823][T11129] Buffer I/O error on dev loop1, logical block 143, lost async page write
[  159.841395][T11129] syz.1.3172: attempt to access beyond end of device
[  159.841395][T11129] loop1: rw=2049, sector=144, nr_sectors = 1 limit=128
[  159.855138][T11129] Buffer I/O error on dev loop1, logical block 144, lost async page write
[  159.856143][T11137] bridge0: port 1(syz_tun) entered blocking state
[  159.871007][T11137] bridge0: port 1(syz_tun) entered disabled state
[  159.888043][T11137] syz_tun: entered allmulticast mode
[  159.894111][T11137] syz_tun: entered promiscuous mode
[  159.895246][T11129] syz.1.3172: attempt to access beyond end of device
[  159.895246][T11129] loop1: rw=2049, sector=147, nr_sectors = 1 limit=128
[  159.914812][T11129] syz.1.3172: attempt to access beyond end of device
[  159.914812][T11129] loop1: rw=2049, sector=148, nr_sectors = 1 limit=128
[  160.063707][T11142] hub 9-0:1.0: USB hub found
[  160.093816][T11142] hub 9-0:1.0: 8 ports detected
[  160.632341][T11125] Set syz1 is full, maxelem 65536 reached
[  160.788809][T11155] lo speed is unknown, defaulting to 1000
[  160.795077][T11155] hsr0 speed is unknown, defaulting to 1000
[  160.879344][T11178] uprobe: syz.3.3194:11178 failed to unregister, leaking uprobe
[  160.998303][T11177] uprobe: syz.3.3194:11177 failed to unregister, leaking uprobe
[  161.077890][T11190] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3200'.
[  161.178373][   T29] kauditd_printk_skb: 50 callbacks suppressed
[  161.178390][   T29] audit: type=1326 audit(1753455565.261:4044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11194 comm="syz.2.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  161.280957][   T29] audit: type=1326 audit(1753455565.272:4045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11194 comm="syz.2.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  161.304880][   T29] audit: type=1326 audit(1753455565.304:4046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11194 comm="syz.2.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  161.329034][   T29] audit: type=1326 audit(1753455565.304:4047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11194 comm="syz.2.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  161.352674][   T29] audit: type=1326 audit(1753455565.304:4048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11194 comm="syz.2.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  161.356576][T11202] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3206'.
[  161.376949][   T29] audit: type=1326 audit(1753455565.304:4049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11194 comm="syz.2.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  161.376998][   T29] audit: type=1326 audit(1753455565.304:4050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11194 comm="syz.2.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  161.377037][   T29] audit: type=1326 audit(1753455565.304:4051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11194 comm="syz.2.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  161.377105][   T29] audit: type=1326 audit(1753455565.304:4052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11194 comm="syz.2.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  161.482227][   T29] audit: type=1326 audit(1753455565.304:4053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11194 comm="syz.2.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  161.591342][T11210] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3209'.
[  161.605533][T11212] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3210'.
[  161.638627][T11210] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3209'.
[  161.714237][T11212] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  161.723742][T11212] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  161.732140][T11212] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  161.740441][T11212] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  161.749956][T11212] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  161.880666][T11233] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3220'.
[  161.881842][T11235] loop1: detected capacity change from 0 to 1024
[  161.926634][T11235] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.977882][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.029561][T11252] loop2: detected capacity change from 0 to 1024
[  162.065438][T11252] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.084966][T11252] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.3228: Allocating blocks 497-513 which overlap fs metadata
[  162.103137][T11252] EXT4-fs (loop2): pa ffff888105712310: logic 256, phys. 369, len 9
[  162.111365][T11252] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  162.142316][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.277122][T11279] loop2: detected capacity change from 0 to 512
[  162.296243][T11279] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  162.334322][T11279] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.366961][T11279] ext4 filesystem being mounted at /672/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.434406][T11279] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  162.560796][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.650031][T11291] 9pnet: p9_errstr2errno: server reported unknown error �@0x0000000000000006
[  162.716789][T11302] batman_adv: batadv0: Removing interface: batadv_slave_0
[  162.840948][T11302] batman_adv: batadv0: Removing interface: batadv_slave_1
[  162.854882][T11310] smc: net device bond0 applied user defined pnetid SYZ0
[  162.866530][T11313] smc: net device bond0 erased user defined pnetid SYZ0
[  162.957853][T11319] loop4: detected capacity change from 0 to 8192
[  163.212277][T11346] __nla_validate_parse: 1 callbacks suppressed
[  163.212298][T11346] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3264'.
[  163.259300][T11348] loop3: detected capacity change from 0 to 764
[  163.266153][T11348] iso9660: Unknown parameter 'kmem_cache_free'
[  163.299164][T11350] veth0_vlan: entered allmulticast mode
[  163.325403][T11350] veth0_vlan: left promiscuous mode
[  163.348488][T11350] veth0_vlan: entered promiscuous mode
[  163.418515][T11353] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3268'.
[  163.435462][T11353] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3268'.
[  163.460415][T11356] loop0: detected capacity change from 0 to 128
[  163.489837][T11356] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  163.532987][T11356] ext4 filesystem being mounted at /67/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  163.745332][T11375] loop2: detected capacity change from 0 to 128
[  163.778797][T10436] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  163.926961][T11385] loop2: detected capacity change from 0 to 512
[  163.940007][T11385] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  163.983099][T11385] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.996786][T11385] ext4 filesystem being mounted at /688/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.038724][T11394] loop4: detected capacity change from 0 to 256
[  164.056864][T11394] FAT-fs (loop4): Directory bread(block 64) failed
[  164.066506][T11394] FAT-fs (loop4): Directory bread(block 65) failed
[  164.073192][T11394] FAT-fs (loop4): Directory bread(block 66) failed
[  164.079955][T11394] FAT-fs (loop4): Directory bread(block 67) failed
[  164.086800][T11394] FAT-fs (loop4): Directory bread(block 68) failed
[  164.093669][T11394] FAT-fs (loop4): Directory bread(block 69) failed
[  164.099081][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.101015][T11394] FAT-fs (loop4): Directory bread(block 70) failed
[  164.117450][T11394] FAT-fs (loop4): Directory bread(block 71) failed
[  164.124450][T11394] FAT-fs (loop4): Directory bread(block 72) failed
[  164.131187][T11394] FAT-fs (loop4): Directory bread(block 73) failed
[  164.164803][T11401] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3285'.
[  164.199353][T11401] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.207744][T11401] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.216315][T11401] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.224702][T11401] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.234874][T11401] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  164.416409][T11421] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3295'.
[  164.490464][T11427] lo speed is unknown, defaulting to 1000
[  164.497913][T11427] hsr0 speed is unknown, defaulting to 1000
[  164.545347][T11434] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3301'.
[  164.556960][T11431] 9pnet: p9_errstr2errno: server reported unknown error �@0x0000000000000006
[  164.667138][T11439] loop2: detected capacity change from 0 to 1024
[  164.693601][T11439] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  164.712089][T11439] ext4 filesystem being mounted at /695/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.791051][ T4160] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  164.807462][ T4160] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 319 with max blocks 1 with error 28
[  164.819944][ T4160] EXT4-fs (loop2): This should not happen!! Data will be lost
[  164.819944][ T4160] 
[  164.829725][ T4160] EXT4-fs (loop2): Total free blocks count 0
[  164.835859][ T4160] EXT4-fs (loop2): Free/Dirty block details
[  164.842135][ T4160] EXT4-fs (loop2): free_blocks=4293918720
[  164.848132][ T4160] EXT4-fs (loop2): dirty_blocks=16
[  164.853314][ T4160] EXT4-fs (loop2): Block reservation details
[  164.859463][ T4160] EXT4-fs (loop2): i_reserved_data_blocks=1
[  164.873187][T11455] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3310'.
[  164.877346][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  164.902067][T11451] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3307'.
[  164.933594][ T6705] IPVS: starting estimator thread 0...
[  164.952902][T11462] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3312'.
[  165.019598][T11469] netlink: 96 bytes leftover after parsing attributes in process `syz.2.3314'.
[  165.029049][T11459] IPVS: using max 2256 ests per chain, 112800 per kthread
[  165.064980][T11477] netlink: 'syz.2.3319': attribute type 3 has an invalid length.
[  165.322815][T11500] loop4: detected capacity change from 0 to 2048
[  165.369345][T11500] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.458649][T11500] lo speed is unknown, defaulting to 1000
[  165.466183][T11500] hsr0 speed is unknown, defaulting to 1000
[  165.552417][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.787810][T11522] loop2: detected capacity change from 0 to 2048
[  165.861562][T11522] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.202797][   T29] kauditd_printk_skb: 37 callbacks suppressed
[  166.202857][   T29] audit: type=1400 audit(1753455570.658:4091): avc:  denied  { read write } for  pid=11543 comm="syz.0.3348" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  166.233326][   T29] audit: type=1400 audit(1753455570.658:4092): avc:  denied  { open } for  pid=11543 comm="syz.0.3348" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  166.266896][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.295821][   T29] audit: type=1400 audit(1753455570.744:4093): avc:  denied  { associate } for  pid=11546 comm="syz.0.3350" name="0" dev="devpts" ino=3 scontext=system_u:object_r:mouse_device_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  166.463544][   T29] audit: type=1326 audit(1753455570.937:4094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11557 comm="syz.2.3354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  166.501541][   T29] audit: type=1326 audit(1753455570.969:4095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11557 comm="syz.2.3354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  166.525429][   T29] audit: type=1326 audit(1753455570.969:4096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11557 comm="syz.2.3354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  166.549255][   T29] audit: type=1326 audit(1753455570.969:4097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11557 comm="syz.2.3354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  166.572998][   T29] audit: type=1326 audit(1753455570.969:4098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11557 comm="syz.2.3354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  166.596862][   T29] audit: type=1326 audit(1753455570.969:4099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11557 comm="syz.2.3354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  166.620442][   T29] audit: type=1326 audit(1753455570.969:4100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11557 comm="syz.2.3354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  166.737439][    T9] IPVS: starting estimator thread 0...
[  166.816253][T11586] sd 0:0:1:0: device reset
[  166.822351][T11577] IPVS: using max 2256 ests per chain, 112800 per kthread
[  167.075606][T11614] lo speed is unknown, defaulting to 1000
[  167.082191][T11614] hsr0 speed is unknown, defaulting to 1000
[  167.387313][T11626] IPVS: Unknown mcast interface: vcan0
[  167.539175][T11636] loop3: detected capacity change from 0 to 8192
[  167.601365][T11636] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 2074)
[  167.610249][T11636] FAT-fs (loop3): Filesystem has been set read-only
[  167.671987][T11646] loop2: detected capacity change from 0 to 256
[  167.694428][T11650] vlan1: entered allmulticast mode
[  167.701193][T11646] FAT-fs (loop2): Directory bread(block 64) failed
[  167.712052][T11646] FAT-fs (loop2): Directory bread(block 65) failed
[  167.735915][T11646] FAT-fs (loop2): Directory bread(block 66) failed
[  167.745051][T11646] FAT-fs (loop2): Directory bread(block 67) failed
[  167.746565][T11654] bond0: entered promiscuous mode
[  167.751866][T11646] FAT-fs (loop2): Directory bread(block 68) failed
[  167.757267][T11654] bond_slave_0: entered promiscuous mode
[  167.766486][T11646] FAT-fs (loop2): Directory bread(block 69) failed
[  167.769623][T11654] bond_slave_1: entered promiscuous mode
[  167.782717][T11646] FAT-fs (loop2): Directory bread(block 70) failed
[  167.787459][T11654] batadv0: entered promiscuous mode
[  167.797300][T11654] hsr1: entered allmulticast mode
[  167.802524][T11654] bond0: entered allmulticast mode
[  167.807698][T11654] bond_slave_0: entered allmulticast mode
[  167.813608][T11654] bond_slave_1: entered allmulticast mode
[  167.819571][T11654] batadv0: entered allmulticast mode
[  167.828062][T11654] 8021q: adding VLAN 0 to HW filter on device hsr1
[  167.838040][T11646] FAT-fs (loop2): Directory bread(block 71) failed
[  167.845802][T11646] FAT-fs (loop2): Directory bread(block 72) failed
[  167.857210][T11654] bond0: left promiscuous mode
[  167.862152][T11654] bond_slave_0: left promiscuous mode
[  167.867819][T11654] bond_slave_1: left promiscuous mode
[  167.873940][T11646] FAT-fs (loop2): Directory bread(block 73) failed
[  167.881264][T11654] batadv0: left promiscuous mode
[  167.908174][T11659] loop3: detected capacity change from 0 to 1024
[  167.951137][T11646] bio_check_eod: 23 callbacks suppressed
[  167.951155][T11646] syz.2.3395: attempt to access beyond end of device
[  167.951155][T11646] loop2: rw=0, sector=1736, nr_sectors = 8 limit=256
[  168.167821][T11659] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.254698][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.327900][T11674] loop3: detected capacity change from 0 to 2048
[  168.363395][T11674] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.382114][T11679] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.428455][T11679] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.502489][T11679] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.560823][T11679] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.607235][T11679] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.622240][T11679] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.637354][T11679] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.655225][T11679] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.702684][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.863221][T11696] loop2: detected capacity change from 0 to 256
[  168.877077][T11696] FAT-fs (loop2): Directory bread(block 64) failed
[  168.885508][T11696] FAT-fs (loop2): Directory bread(block 65) failed
[  168.893892][T11696] FAT-fs (loop2): Directory bread(block 66) failed
[  168.901289][T11696] FAT-fs (loop2): Directory bread(block 67) failed
[  168.907898][T11696] FAT-fs (loop2): Directory bread(block 68) failed
[  168.914735][T11696] FAT-fs (loop2): Directory bread(block 69) failed
[  168.921342][T11696] FAT-fs (loop2): Directory bread(block 70) failed
[  168.927926][T11696] FAT-fs (loop2): Directory bread(block 71) failed
[  168.934518][T11696] FAT-fs (loop2): Directory bread(block 72) failed
[  168.941137][T11696] FAT-fs (loop2): Directory bread(block 73) failed
[  169.064343][T11704] loop0: detected capacity change from 0 to 128
[  169.071210][T11704] EXT4-fs: Ignoring removed nobh option
[  169.081420][T11704] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  169.094035][T11704] ext4 filesystem being mounted at /99/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  169.130893][T10436] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  169.135765][T11707] loop4: detected capacity change from 0 to 128
[  169.148847][T11707] EXT4-fs: Ignoring removed nobh option
[  169.157998][T11707] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  169.173841][T11707] ext4 filesystem being mounted at /639/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  169.205096][ T3310] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  169.235614][T11717] smc: net device bond0 applied user defined pnetid SYZ2
[  169.263753][T11717] smc: net device bond0 erased user defined pnetid SYZ2
[  169.490309][T11741] __nla_validate_parse: 3 callbacks suppressed
[  169.490330][T11741] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.3429'.
[  169.514816][T11737] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.3429'.
[  169.580491][T11750] xt_hashlimit: max too large, truncated to 1048576
[  169.764350][T11765] netlink: 'syz.3.3442': attribute type 5 has an invalid length.
[  169.852618][T11774] SELinux: failed to load policy
[  170.065345][T11802] loop2: detected capacity change from 0 to 128
[  170.761192][T11825] loop4: detected capacity change from 0 to 128
[  170.768782][T11824] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3477'.
[  170.779057][T11825] EXT4-fs: Ignoring removed nobh option
[  170.809088][T11825] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  170.889297][T11825] ext4 filesystem being mounted at /650/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  170.916246][   T29] kauditd_printk_skb: 160 callbacks suppressed
[  170.916266][   T29] audit: type=1400 audit(1753455575.690:4261): avc:  denied  { append } for  pid=11829 comm="syz.3.3469" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  171.059767][ T3310] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  171.193896][   T29] audit: type=1400 audit(1753455576.001:4262): avc:  denied  { bind } for  pid=11844 comm="syz.4.3475" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  171.347881][T11858] loop3: detected capacity change from 0 to 128
[  171.368016][T11858] EXT4-fs: Ignoring removed nobh option
[  171.390504][T11858] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  171.420575][T11858] ext4 filesystem being mounted at /723/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  171.462504][ T3314] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  171.484782][T11862] loop2: detected capacity change from 0 to 512
[  171.492908][T11862] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  171.531477][T11862] EXT4-fs (loop2): 1 truncate cleaned up
[  171.537814][T11862] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.553234][T11865] loop3: detected capacity change from 0 to 128
[  171.597844][T11865] EXT4-fs: Ignoring removed nobh option
[  171.623680][   T29] audit: type=1400 audit(1753455576.463:4263): avc:  denied  { create } for  pid=11861 comm="syz.2.3484" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  171.643909][   T29] audit: type=1400 audit(1753455576.463:4264): avc:  denied  { add_name } for  pid=11861 comm="syz.2.3484" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  171.709418][T11865] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  171.709834][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.729266][T11865] ext4 filesystem being mounted at /724/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  171.791154][ T3314] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  171.803214][   T29] audit: type=1326 audit(1753455576.666:4265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11876 comm="syz.2.3488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  171.827148][   T29] audit: type=1326 audit(1753455576.666:4266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11876 comm="syz.2.3488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  171.850844][   T29] audit: type=1326 audit(1753455576.666:4267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11876 comm="syz.2.3488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  171.874500][   T29] audit: type=1326 audit(1753455576.666:4268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11876 comm="syz.2.3488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  171.898103][   T29] audit: type=1400 audit(1753455576.666:4269): avc:  denied  { lock } for  pid=11876 comm="syz.2.3488" path="socket:[35506]" dev="sockfs" ino=35506 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  171.921974][   T29] audit: type=1326 audit(1753455576.666:4270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11876 comm="syz.2.3488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c457e9a9 code=0x7ffc0000
[  171.952716][T11882] netlink: 76 bytes leftover after parsing attributes in process `syz.2.3493'.
[  172.204268][T11850] lo speed is unknown, defaulting to 1000
[  172.212680][T11850] hsr0 speed is unknown, defaulting to 1000
[  172.408227][T11911] loop4: detected capacity change from 0 to 128
[  172.533562][T11926] xt_connbytes: Forcing CT accounting to be enabled
[  172.540425][T11926] set match dimension is over the limit!
[  172.566273][T11930] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3509'.
[  172.664586][T11942] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3516'.
[  172.678415][T11944] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3517'.
[  172.809401][T11955] SELinux: failed to load policy
[  172.852461][T11962] loop2: detected capacity change from 0 to 2048
[  172.888698][T11962] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.905556][T11969] loop0: detected capacity change from 0 to 128
[  172.930514][T11971] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.023987][T11971] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.506054][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.525161][T11971] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.562569][T11991] loop2: detected capacity change from 0 to 1024
[  173.575044][T11991] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.593186][T11971] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.624736][T11991] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.3534: Allocating blocks 449-513 which overlap fs metadata
[  173.659313][T11990] EXT4-fs (loop2): pa ffff888106e9f770: logic 48, phys. 177, len 21
[  173.667453][T11990] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[  173.688781][T12003] loop0: detected capacity change from 0 to 2048
[  173.692334][T11971] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  173.708548][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.721925][T11971] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  173.732594][T12003]  loop0: p1 < > p4
[  173.735133][T11971] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  173.748733][T12003] loop0: p4 size 8388608 extends beyond EOD, truncated
[  173.757869][T11971] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  173.796479][   T79] blk_print_req_error: 530 callbacks suppressed
[  173.796502][   T79] I/O error, dev loop3, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 0
[  173.833650][T12014] loop1: detected capacity change from 0 to 128
[  174.032630][T12039] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.069493][T12039] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.104548][T12042] futex_wake_op: syz.2.3555 tries to shift op by 144; fix this program
[  174.134312][T12039] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.181727][T12039] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.249249][T12046] -1: renamed from syzkaller0
[  174.282817][T12039] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  174.294617][T12039] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  174.306378][T12039] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  174.319028][T12039] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  174.384975][T12050] loop0: detected capacity change from 0 to 1024
[  174.402940][T12050] EXT4-fs: Ignoring removed oldalloc option
[  174.409218][T12050] EXT4-fs: Ignoring removed bh option
[  174.436037][T12050] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.464527][T12059] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3561'.
[  174.671545][T12076] netlink: 'syz.4.3568': attribute type 1 has an invalid length.
[  174.697313][T12076] 8021q: adding VLAN 0 to HW filter on device bond2
[  174.734736][T12076] vlan2: entered allmulticast mode
[  174.739981][T12076] bond2: entered allmulticast mode
[  174.789136][T12050] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.3559: Allocating blocks 1-17 which overlap fs metadata
[  174.817833][T12083] netlink: 'syz.2.3571': attribute type 7 has an invalid length.
[  174.825951][T12083] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3571'.
[  174.839508][T12065] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.3559: Allocating blocks 1-17 which overlap fs metadata
[  175.008357][T10436] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.187271][T12110] syzkaller1: entered promiscuous mode
[  175.193221][T12110] syzkaller1: entered allmulticast mode
[  175.295472][T12122] syzkaller1: entered promiscuous mode
[  175.301122][T12122] syzkaller1: entered allmulticast mode
[  175.411895][T12126] loop3: detected capacity change from 0 to 512
[  175.426503][T12126] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  175.449781][T12126] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=804ec118, mo2=0002]
[  175.472259][T12126] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.3591: corrupted in-inode xattr: e_value size too large
[  175.489501][T12126] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.3591: couldn't read orphan inode 15 (err -117)
[  175.508680][T12126] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.566770][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.617308][T12136] loop3: detected capacity change from 0 to 1024
[  175.658470][T12136] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.672451][   T29] kauditd_printk_skb: 100 callbacks suppressed
[  175.672468][   T29] audit: type=1400 audit(1753455580.818:4371): avc:  denied  { read } for  pid=12141 comm="syz.1.3597" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  175.703981][   T29] audit: type=1400 audit(1753455580.818:4372): avc:  denied  { open } for  pid=12141 comm="syz.1.3597" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  175.709935][T12136] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.3595: inode #233089398: comm syz.3.3595: iget: illegal inode #
[  175.747589][T12136] EXT4-fs (loop3): Remounting filesystem read-only
[  175.756747][T12136] EXT4-fs warning (device loop3): ext4_xattr_block_set:2190: inode #19: comm syz.3.3595: dec ref error=-30
[  175.773326][   T29] audit: type=1400 audit(1753455580.829:4373): avc:  denied  { read write } for  pid=3307 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  175.798167][   T29] audit: type=1400 audit(1753455580.829:4374): avc:  denied  { open } for  pid=3307 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  175.823124][   T29] audit: type=1400 audit(1753455580.829:4375): avc:  denied  { ioctl } for  pid=3307 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  175.849294][   T29] audit: type=1400 audit(1753455580.840:4376): avc:  denied  { mount } for  pid=12135 comm="syz.3.3595" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  175.860942][T12144] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.3598'.
[  175.871931][   T29] audit: type=1400 audit(1753455580.840:4377): avc:  denied  { read write } for  pid=12135 comm="syz.3.3595" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  175.905515][   T29] audit: type=1400 audit(1753455580.840:4378): avc:  denied  { open } for  pid=12135 comm="syz.3.3595" path="/dev/loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  175.930878][   T29] audit: type=1400 audit(1753455580.840:4379): avc:  denied  { setattr } for  pid=12135 comm="syz.3.3595" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  175.954243][   T29] audit: type=1400 audit(1753455580.894:4380): avc:  denied  { create } for  pid=12141 comm="syz.1.3597" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  175.989946][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.018597][T12148] loop2: detected capacity change from 0 to 128
[  176.073861][T12148] syz.2.3601: attempt to access beyond end of device
[  176.073861][T12148] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128
[  176.380164][T12169] wg2: entered promiscuous mode
[  176.386797][T12169] wg2: entered allmulticast mode
[  176.673195][T12190] loop1: detected capacity change from 0 to 1024
[  176.699618][T12190] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.738912][T12190] ext4 filesystem being mounted at /751/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.943453][T12197] lo speed is unknown, defaulting to 1000
[  176.957372][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.977719][T12197] hsr0 speed is unknown, defaulting to 1000
[  177.262802][T12227] loop2: detected capacity change from 0 to 512
[  177.294806][T12227] EXT4-fs (loop2): orphan cleanup on readonly fs
[  177.302077][T12227] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.3628: Failed to acquire dquot type 1
[  177.346598][T12227] EXT4-fs (loop2): 1 truncate cleaned up
[  177.368825][T12227] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  177.401747][T12238] loop1: detected capacity change from 0 to 128
[  177.439179][T12227] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  177.472453][T12227] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 8
[  177.538692][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.546379][T12246] loop4: detected capacity change from 0 to 2048
[  177.574575][T12246] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  177.656441][T12254] loop2: detected capacity change from 0 to 512
[  177.665176][T12254] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  177.666202][T12245] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  177.699119][T12254] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  177.738418][T12254] EXT4-fs error (device loop2): ext4_iget_extra_inode:5035: inode #15: comm syz.2.3640: corrupted in-inode xattr: e_value size too large
[  177.764848][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  177.792341][T12254] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.3640: couldn't read orphan inode 15 (err -117)
[  177.810638][T12254] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.851818][ T3306] ==================================================================
[  177.859992][ T3306] BUG: KCSAN: data-race in free_pid / zap_pid_ns_processes
[  177.867408][ T3306] 
[  177.869753][ T3306] read-write to 0xffff8881152d4148 of 4 bytes by task 12242 on cpu 1:
[  177.878027][ T3306]  free_pid+0x77/0x180
[  177.882113][ T3306]  free_pids+0x7a/0xb0
[  177.886201][ T3306]  release_task+0x9a9/0xb60
[  177.890798][ T3306]  do_exit+0xd81/0x1590
[  177.894985][ T3306]  do_group_exit+0xff/0x140
[  177.899514][ T3306]  get_signal+0xe59/0xf70
[  177.903881][ T3306]  arch_do_signal_or_restart+0x96/0x480
[  177.909532][ T3306]  exit_to_user_mode_loop+0x7a/0x100
[  177.914839][ T3306]  do_syscall_64+0x1d6/0x200
[  177.919441][ T3306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.925351][ T3306] 
[  177.927683][ T3306] read to 0xffff8881152d4148 of 4 bytes by task 3306 on cpu 0:
[  177.935253][ T3306]  zap_pid_ns_processes+0x1ff/0x2d0
[  177.940483][ T3306]  do_exit+0x13dc/0x1590
[  177.944754][ T3306]  do_group_exit+0x139/0x140
[  177.949366][ T3306]  __x64_sys_exit_group+0x1f/0x20
[  177.954412][ T3306]  x64_sys_call+0x2fa4/0x2fb0
[  177.959105][ T3306]  do_syscall_64+0xd2/0x200
[  177.963623][ T3306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.969550][ T3306] 
[  177.971885][ T3306] value changed: 0x00000002 -> 0x00000001
[  177.977641][ T3306] 
[  177.979998][ T3306] Reported by Kernel Concurrency Sanitizer on:
[  177.986199][ T3306] CPU: 0 UID: 0 PID: 3306 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-00105-g2942242dde89 #0 PREEMPT(voluntary) 
[  177.998812][ T3306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  178.008888][ T3306] ==================================================================
[  178.039799][T12263] loop3: detected capacity change from 0 to 128
[  178.065284][T12263] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  178.080111][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.135297][ T3314] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.