ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffffffff00000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1608.467478][T29678] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1608.474407][T29678] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1608.486881][T29695] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1608.512520][T29743] loop1: detected capacity change from 0 to 512 [ 1608.520438][T29745] loop3: detected capacity change from 0 to 1 [ 1608.534038][T29743] EXT4-fs (loop1): bad geometry: first data block 240 is beyond end of filesystem (128) [ 1608.550871][T29695] loop4: detected capacity change from 0 to 1 [ 1608.555351][T29745] loop3: p1 p2 p3 p4 [ 1608.561338][T29745] loop3: p1 start 10 is beyond EOD, truncated 19:16:51 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a002e00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1608.567448][T29745] loop3: p2 start 4194304 is beyond EOD, truncated [ 1608.573953][T29745] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1608.580734][T29745] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:16:51 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000001000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1608.629534][ T1037] loop4: p1 p2 p4 [ 1608.633446][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1608.639556][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1608.663756][T29743] loop1: detected capacity change from 0 to 512 19:16:51 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f00000011c0)="36008e4843c396d2bb988f", 0x0, 0x0, 0x0) clone(0x80000, &(0x7f0000000080)="d10a14a22cd61b5e3da6d8827549e197f7a6460047e94992f7de38e749f7dc7e5b2e31fb8b405d6de7c5deec1b8051149567bd422e4ceab2c2ebedb9d906df07cff038fe6541559b64c92c68f15934425c980c20e8e4fd8c42c73c7a112510996abc6e744629752b6d81e63a31b4f1b2615b35aede9c0f30dcec0db92c7aad182cfd8c378c8c53c1c7a27ac6118722f88b5c7fddd72a2f8a", &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="7010f83e9ab9d61832d476457a66ce04a07133486b7787204a2d1c531da1931d94d2a01972be0832d94a58ec82f2e4f091bbb03d8b36c5b84f60dd11ce6aa5822a0c43e4176eef79095ad70ceb5442ae10656cf0721a662e81ea8008cb5add8b883286df38e14ab38ad7073c8dc9b8d1589c26fabf5c923422cd3610e021af545419cf99f515ba8bc03cb8f2f60cbdd0906dc037347f92e77ff5eef2c60480a8fbc2d2aeb32be78bb3ac0a7ff598ac881fe9d019c499a2252094235f5b7356dab3fd154d095ebabf56c7eb47ba4e3186022e6bd0f221a827ceb31df70c7a6dea09a15efe0d02669988854031475ba24601dbad5c36893661930501241a3cdaa4ae8c280ec98cadf13bb20ee23fe57e0b6aa99c80d3fc1e77dc3d230b47b9474680720a63dcca7e0be5270d5ac751c7f941ecc11c52bbbcd8d9e782c73cd45ec5400ad61ccb12ae893a9e888acc52d7c1fb85b95f81af5f6afa70f0f9de61ef87971b425cb055c2ba583e8d96452818b56571a3de863f129b20aa9fa5225b6b006cc5e382a07241a545320c2df649173b2d846c733a15b7721b80401a48b1a296f7745e2a5a56703390eea53545067ad5b04931a47c53a83796bf4be8e3fdd9a53bb8badb2d67c678417fd1ca37dee99fbc4bf5bc930aa5a408e9bfc97fa197296281899901edade9853c9be3d6f896ee3c1e36c5bc5031b2843a482b1f0134a82609aa9d9535ef78b72f69ca51832e33d9f1e9c11be97592eec7f4d61eb9f6a41c041358ee484347ec08aba4f282eafb3733d366998ba91a1b1503f968817d41a65918bfa98947492c9aae244202e6e6e73896339ca9e9d9b9c55a955d80af47d2f4c4541957c7923e71b56a60ac668ff9ca63aed337750de77492aa37d945ad88068b159d8f71ebe678972297064cfcbc1c026eb9662b91062244db989bcc4248716884e12a8fc1cdf38c2b6f8a5fb2fb6365d045c085f21d10f671902391020736296a85c706320e9efbd9b29ccf314161b27938bf9be846788fb1ece7333db88be4ead14d9566e0c1dbb5d63d72279623b8be1993d42cde732e61e756a191b00ecdeaf0a4dce55e8eba3dc4cb895491f7226e37375b0f0cdb8ec53ea75ee131ee3ef220d5a9cb5ad90fae244f3ff9d288d4067a977011fb0a00b81e606cf49c9632e169ff24319f5b474b550ac87f1c54b64f49e0ebdb4e2dbec9611ca6947210475fbf4a9a248bc8a7997bdb8b19f06e74985038cfa4d0617dfd24a7f3e602042d407851435b34f4cf59fbffd387994922ddd159674bd26940d3f6f5cb8d069339cd8167ef652f8eac102d6f5dc7c701d1ea3341948a31bded6b8d5e12f6ce3ec01526087add30aaa73c9aa8d8f674aa15afa9976326ddae431d351d9d3bf624e353ec7965e01b52a686fb032361c224fe1f0088c0b1e620dc236778d4699cf54e13148ac6651a84a97468622c51dbe1b2493d98db72a4aa779e3b9d71c50c4cd250d6fdb09c8fdda5c6a427461a2c26abd1fdc679b2b519a38e4fbc79a27b5b22d5f42780f54d96edd6b1b44ea912d35bef329ab1a86ce786664c8ab2ef89c7f14c853858a20bb8f80f4d8f507f855cd1624934dc88ec7f9ec6537180a71d04c763e0947fbbad7b056f7f0fa32b1ad56bc6cb226c5e7137ee37db794179e1b209cc6718a294e6808d82d6dcdcb3c59cc6d6766b40a92b8a240991dcb62fbc8c55eb42fbd3d3fbe7284d18f3ed0cc031ec934d9c156252c255df16e05561fdffc0b23e1b82499f75d0db2482195957f9939db9170b6b025f2d3e22c7456bd32ba8e0498f498da5734c4baec62bd0cd02c693d39a7ce47611f63997f9643388044c381143cbea109f842a3a0aceb326bec50a1071e5f6151f8f91add765fea610117c1f932c597390cf7acbc2e40fc6331a3b69c9535e687cf8d52d5246ffb7dfbd4c930f7f103726254a32d5de44e6ab352983e048647e997d36b7ab71826ec34ef138f2003762fb2ec316936b522ff20b41fa50a57ac5ae3324d0ec033fc14cb7d4c5f0530cb9b8824441a3f95ece980152ac52f4f1c1a54aef9f7c714fc30dfb86201090cb71d2239fe51cf6a79d3124a62311a0a33478e44cf50bdaf010ee7265e590f84957211c51dfe967efaa20dc910ca66755b2df49c7d1ef0f20ed91c61504a87d3afaae705bad7f8f0d6ca415dc21de197b4a92ded9a9c1bdf90e8d18ec9b4e77ac8f1e4e90e270f0d8de9db3f5cf746aa89854bdba47d746c5d80a11b28475510049bba58a94d1392723a5301105df45137a4fb336f2a02b810514472ec6302f6ee312f1603859a421e16a29fae46f8124bbafc461e8a39aea90b9fc0b26347dd7422360215efdc69ea819944cb7b1a4b550068a7e808f35e6ae51c7ff687b46f311b385e4d91f9516131c3bea6e7799bff4401ececef4928225c0e4878a04f5ffa9b9b5977ef0fcf6ab957044bbfd997c4b1099771165c414ac6494053aa2cc4d1f3ae8645b9836f4c57bb43d8752ee69804659f7ca206349a1b4ec43aaae3a4dd540621fa4ada3d5bdb3673d804452a8c41eb8013864ae4b99c28f57d7f4b2156272e0f6cd97cd7e2afb216589b0b1ca6fe4fd657038d1edd79e50f21052be0a1e692fe13c61319ebf6ba7cbca90e1546077f9c852da3c0c53cc8579a14f6cea86c79a62fd1d70f883cba81ac94314a580d94b885a9c8d2c252da23a3eb05992c33fd9ff6bb757c1a956c30d7d0c2a92f6d2b50ef9c3fc6dafba95b3dfe40b184520805640649ffb1ac88d31c9bbd9ae700a89b336201e4df6d168cef9ee87d1e61a8b50a4ac38782e5be96867d269739927f06c42f0726ab9fa87a837bb35fc7879d3af0a7cb8f306b7a58f56e01d92fc525eb9505fd8f7407d4f7a2edb5ea821038a9a9ac47e31e1a20798969ea0fcf2202f029b15fc67e2b83a884e1010c37be8be9d1e2e0c4c7dbd69b3697798e68d47bfd602a787dd6c9d6106f581fa08ec8b35dc4ed8277c0db32f5c9977a771e9673001d14b811e2f8681ac7447cadb02d1d2a747e1e7a9b068a8a658bacab77d65a14423bb167e869bb8446940f0a3c4cf692ef84a746cc9d92372afa959f2e781fa21d7b17d2fccbb084882cf0d744d9c5d4adf32eb1f12dfcc9b9324f78668f95673f66ce6a41061f75462f82abdc0616bc10ddb4100b820cc4d3e7a124280ab7b73f43f97c9312b67109ce5aaac97fa494e69098e1b834e463f5adc70850202f8533e3f636745ceb70e0a9cd32f46813638d8e575ec147c67bef1c79b53e840d2588e2c47a3f1c629929c8b9e49b5a8b7aef2980ba7fc53fdf585e88d5bd3145fcf03e243b8b111c3a45636c5b72176ab1a6f389b4d5921dae958e4ea7b4f458300fdb121c830f9f6d90ad4c57db14c86d5ae74213ed296c301f0c6f08ffabbd20a0cf62c806c40c0809b0ad02d2a5e5c6edcf039417aa70141f51a0b5f88c134da66c9374c0a19cc33c56eb3775b17633682084f3c9b7486d2d864236deb4765af241c3f3eeb97596deaff0f7e4d035c53906664696fb87cc097769eaa960ce9c55e9a07672d5b5b0afd970dd6825aaae62a4b01411ff538e41cc777a17e4c08421265763ed61902262366f4b6a5825838b8dd3b7d2fd30080cae44b443ad0346d58f7336cbd7c4b60ac7898816d73917705c7a576ffdb2e916506ff3870a614fa9e6502c5a183fb35b0bae406d5a7c4694cbcd6497057a1198474c9c10a802ffb7a4830dccba99b08c4b78c0b7ed9df1dc57be3036b37928d78aad0b89de14e22eaabdb03f70c1e1212018a6c78b858f0391943a93ed5f429f833f15d74e9345f1564cea6dfdbadf7c2ef23f7ebbd9e82b28e4545ff3a7565ab6cdf9ddf8c18358204277fc21c20fa1aa340263ebdefad900cc5f0a7933db128b5b68ce4ee477f0fa7e5eb0527fde501871a6279003be20fd206d14150cd0ab4578af4577c7c8198a77acdfc283ebbb3293bc53edb97e775fd85881da2b5954a1bec5cb0fcf54ea59e824cdf27276279f4a10ca6a59241499af7eb8c89ca89dbbebb192ce8e685b69d90d7a166ebcb760fb29632b9f47e032d818613e8c356112140e608cdfa03a9af231b182765acb658a30f4341b807e1f034445832678cd0600a754c51326d4a0c1fd5c995c92f1817f48660558f41baf652d857f501a4faa05c5d81d7875cd37cd1f4bb027a4a60bdeb13d42004a497b1b227c8b9c406dbac6a723c6ebe9b34d356763ff614803970ea91e96561c6aaa343fa15861e11c10a333ae111c8fba3bd8d31316713d9bcf8e2e0ea415d247048e95f920669f2000ce7a224aedaa1ab471f11eb0d84927868cee50bbbb3fe8ae8e3154283fa171fd697260da38bbb03b43c701f770fa094599939600c5086b40a08f2055be8bed9189f3819906af0dc50012546e794c821e9943d74d7cf11d1b8deafcdd94a0792eeb030e33bfc06e3796c57a0150ee6bc06d8e6696106b3e1e52c53ee18a82f90029ddde078ae10fe155cf1c1a393140568e177e8ddc83835ef821eb0f8262e35184f652c744f2ea6bdbbf45c522ab25fdea631044541d318a9c5424b5d1cfebe297ff593041c7eecc78d7dd164c289bd68b8e94c1b8c831718d7c2add1838c2b0a28887238874c7185a73b06349831124b77abf33a020115e767cc0725910b0cae5657c91fa072883eefc83b3ffd2be22403d260c2318c30f18d1e4b617330ff5805ad7124f03603b167a632627e14ba5ffcd6e4fc501bc8c9a5e3045d2837554be67e28a78c5f2e9af50d1a0241e945f37a193854727ac3e321437514f2481fabddecbaf05868b84c86dad70b95fe31ceb4ee0c7a237204690289f955ab5902a86389e35fafab5163310c7b157a2224320e438372b9f7aaf600e97b8b2d6ed2c0820e5fcf627fd5c5c724849cc49d3ee7ae821e20f2525c2843cfdc1fa93cd4a0c5affeff48eb833cc4de6ab109d2576239c3364b0cfe6e210be5b038f193e9c7dd043a7e89d68f36eda15777009ca3209089dd02794242c45efe3108d892d16fa8f8837a96d57de7db22ce8170f2c9f8c12a78cec338233a66b8820045d9d84d963f411e5e65608667cc155fe1ada0e9e9ef13d3ea9bda47ab7d2c50743f1fee9adde7acf8f4d855fbd64b1836e52f382bd1bf85ccfca818f9871483f541f62d969fc712f61ec2e2f40d51faa76bb0ee91e9a86eefe3509c62c85ed223b4d5c8f4c1929736272740d9210008f540b39ce2c39533e664b55a55376763d4533ac46a27d3ed639648ac1b47d10f544e5767fef6e52fe13437b37594fecfa4578cef1892bd1b27d6ccc87fe4e5eb066542ac862f1004b229d0b090b3f613e09ad4f440193be55c0b13cb13cd89434cf6fbcb3ec6e202b7bec612559e9a7ea636b4f385bdfd2c3120fffeb9ba515cbb387178a0ad3ec44eaf7e43292780ea802f1b49ed542e944cb0ffb1b8371c458902419136e35bcda1757d3748159d99ec0db7c9715c279b1f5c208283b2b1c481878a97998d17eaae0ddb402102fbdd2443938590f5f060f8543b97e134c612afd765f9fff761f89f260f4f01406ec42aa6c3b69b020d99a4f295b842942bdce7de14d29ed8bde2b3fff0cc24de7f29404b8b991a0b6a219315feaa687039a84d1a47b5dda27b456827796aef915bc35873f93553b9e63e979980bd8e4da093ced52540de250de08d2c3fce5279399044080da535698fc0b0048d02bc0bc8713505cde337c38cf4dd060114b48e58b6b21fb77eda9e9645828c848d37d9") [ 1608.671929][T29743] EXT4-fs (loop1): bad geometry: first data block 240 is beyond end of filesystem (128) [ 1608.675145][T29776] loop3: detected capacity change from 0 to 1 [ 1608.700442][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1608.708215][T29779] loop2: detected capacity change from 0 to 1 [ 1608.717591][T29695] loop4: p1 p2 p4 [ 1608.721430][T29695] loop4: p1 start 10 is beyond EOD, truncated [ 1608.727678][T29695] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1608.745428][T29776] loop3: p1 p2 p3 p4 [ 1608.749617][T29776] loop3: p1 start 10 is beyond EOD, truncated [ 1608.755725][T29776] loop3: p2 size 1073872912 extends beyond EOD, truncated [ 1608.777509][T29779] loop2: p1 p2 p3 p4 [ 1608.781891][T29779] loop2: p1 start 3014666 is beyond EOD, truncated [ 1608.788450][T29779] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1608.795079][T29695] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1608.803587][T29776] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1608.810414][T29776] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1608.815906][T29779] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1608.824356][T29779] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:16:51 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800807000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:51 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffffffff50000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:51 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000002000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:51 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a293b00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1608.925743][T29820] loop1: detected capacity change from 0 to 512 [ 1608.940192][T29820] EXT4-fs (loop1): bad geometry: first data block 245 is beyond end of filesystem (128) [ 1608.951840][T29823] loop3: detected capacity change from 0 to 1 [ 1608.964429][T29829] loop4: detected capacity change from 0 to 1 [ 1609.015355][T29829] loop4: p1 p2 p4 [ 1609.015663][ T1037] loop3: p1 p2 p3 p4 [ 1609.019410][T29829] loop4: p1 start 10 is beyond EOD, truncated [ 1609.023380][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1609.029228][T29829] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1609.035296][ T1037] loop3: p2 size 1073872928 extends beyond EOD, truncated [ 1609.048860][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1609.056410][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1609.063939][T29831] loop2: detected capacity change from 0 to 1 [ 1609.076045][T29820] loop1: detected capacity change from 0 to 512 [ 1609.083121][T29820] EXT4-fs (loop1): bad geometry: first data block 245 is beyond end of filesystem (128) [ 1609.103087][T29823] loop3: p1 p2 p3 p4 [ 1609.107546][T29823] loop3: p1 start 10 is beyond EOD, truncated [ 1609.113665][T29823] loop3: p2 size 1073872928 extends beyond EOD, truncated [ 1609.121719][T29831] loop2: p1 p2 p3 p4 [ 1609.122104][T29829] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1609.126024][T29831] loop2: p1 start 3877130 is beyond EOD, truncated [ 1609.139501][T29831] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1609.147139][T29831] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1609.153915][T29831] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:16:51 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffffffff60000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1609.166050][T29823] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1609.172851][T29823] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1609.187287][T29863] loop1: detected capacity change from 0 to 512 [ 1609.196348][T29863] EXT4-fs (loop1): bad geometry: first data block 246 is beyond end of filesystem (128) 19:16:52 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a003f00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1609.215712][T29829] loop4: detected capacity change from 0 to 1 [ 1609.255322][T29829] loop4: p1 p2 p4 [ 1609.259276][T29829] loop4: p1 start 10 is beyond EOD, truncated 19:16:52 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000009000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1609.265445][T29829] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1609.275616][T29863] loop1: detected capacity change from 0 to 512 [ 1609.290104][T29863] EXT4-fs (loop1): bad geometry: first data block 246 is beyond end of filesystem (128) [ 1609.303244][T29881] loop2: detected capacity change from 0 to 1 [ 1609.315202][T29829] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1609.354106][T29888] loop3: detected capacity change from 0 to 1 19:16:52 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffffffdf90000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:52 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800808000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1609.394631][T29881] loop2: p1 p2 p3 p4 [ 1609.398960][T29881] loop2: p1 start 4128778 is beyond EOD, truncated [ 1609.405631][T29881] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1609.414653][T29888] loop3: p1 p2 p3 p4 [ 1609.419207][T29888] loop3: p1 start 10 is beyond EOD, truncated [ 1609.421773][T29881] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1609.425311][T29888] loop3: p2 size 1073873040 extends beyond EOD, truncated [ 1609.432079][T29881] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1609.454769][ T1037] loop2: p1 p2 p3 p4 [ 1609.466474][ T1037] loop2: p1 start 4128778 is beyond EOD, truncated [ 1609.473069][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1609.484895][T29888] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1609.491750][T29888] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1609.497863][T29909] loop1: detected capacity change from 0 to 512 [ 1609.506661][T29910] loop4: detected capacity change from 0 to 1 [ 1609.517176][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1609.523990][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1609.535172][T29910] loop4: p1 p2 p4 [ 1609.538981][T29910] loop4: p1 start 10 is beyond EOD, truncated 19:16:52 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x18) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/dev\x00') [ 1609.545115][T29910] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1609.553126][T29909] EXT4-fs (loop1): bad geometry: first data block 249 is beyond end of filesystem (128) 19:16:52 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000c000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1609.588538][T29910] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1609.625861][T29909] loop1: detected capacity change from 0 to 512 19:16:52 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a004000ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1609.637303][T29909] EXT4-fs (loop1): bad geometry: first data block 249 is beyond end of filesystem (128) [ 1609.675016][T29947] loop3: detected capacity change from 0 to 1 [ 1609.682338][T29910] loop4: detected capacity change from 0 to 1 [ 1609.705279][T29947] loop3: p1 p2 p3 p4 [ 1609.709645][T29947] loop3: p1 start 10 is beyond EOD, truncated [ 1609.715815][T29947] loop3: p2 size 1073873088 extends beyond EOD, truncated [ 1609.716492][T29910] loop4: p1 p2 p4 [ 1609.729979][T29965] loop2: detected capacity change from 0 to 1 [ 1609.730410][T29947] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1609.742921][T29947] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:16:52 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) sendfile(r0, r1, &(0x7f0000000080)=0x6, 0x80) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) 19:16:52 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffffffffb0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1609.745802][T29910] loop4: p1 start 10 is beyond EOD, truncated [ 1609.756179][T29910] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1609.779087][ T1037] loop3: p1 p2 p3 p4 [ 1609.784795][T29910] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1609.788477][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1609.798120][ T1037] loop3: p2 size 1073873088 extends beyond EOD, truncated [ 1609.806260][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1609.813048][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1609.820785][T29965] loop2: p1 p2 p3 p4 [ 1609.825372][T29965] loop2: p1 start 4194314 is beyond EOD, truncated [ 1609.831903][T29965] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1609.841263][T29965] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1609.841924][T29983] loop1: detected capacity change from 0 to 512 19:16:52 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800809000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1609.848088][T29965] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:16:52 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000001024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1609.881803][ T1037] loop2: p1 p2 p3 p4 [ 1609.888532][T29983] EXT4-fs (loop1): bad geometry: first data block 251 is beyond end of filesystem (128) [ 1609.911731][ T1037] loop2: p1 start 4194314 is beyond EOD, truncated [ 1609.918346][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1609.925366][T30004] loop4: detected capacity change from 0 to 1 [ 1609.926407][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1609.938491][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1609.946832][T30008] loop3: detected capacity change from 0 to 1 19:16:52 executing program 0: r0 = add_key(&(0x7f0000000080)='logon\x00', &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb) r1 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) r2 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000000)={'syz', 0x2}, 0x0, 0x0, r1) keyctl$setperm(0x5, r2, 0x202002) keyctl$read(0x3, r2, 0x0, 0x0) keyctl$KEYCTL_MOVE(0x1e, r0, r2, 0xfffffffffffffffb, 0x0) perf_event_open(&(0x7f0000000000)={0x7, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000180)='big_key\x00', &(0x7f00000001c0)=@secondary) 19:16:52 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a004800ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1609.975593][T30008] loop3: p1 p2 p3 p4 [ 1609.979651][T30004] loop4: p1 p2 p4 [ 1609.983461][T30004] loop4: p1 start 10 is beyond EOD, truncated [ 1609.989642][T30004] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1609.998268][T30008] loop3: p1 start 10 is beyond EOD, truncated [ 1610.004429][T30008] loop3: p2 size 1073873152 extends beyond EOD, truncated [ 1610.023623][T29983] loop1: detected capacity change from 0 to 512 [ 1610.033817][T29983] EXT4-fs (loop1): bad geometry: first data block 251 is beyond end of filesystem (128) [ 1610.044831][T30004] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1610.045577][T30008] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1610.058813][T30008] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:16:52 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000001fc0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1610.076078][T30033] loop2: detected capacity change from 0 to 1 [ 1610.125075][T30033] loop2: p1 p2 p3 p4 [ 1610.138246][T30033] loop2: p1 start 4718602 is beyond EOD, truncated [ 1610.144780][T30033] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:16:52 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080a000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:52 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000002024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1610.173871][T30049] loop1: detected capacity change from 0 to 512 [ 1610.219827][T30066] loop4: detected capacity change from 0 to 1 [ 1610.228381][T30049] EXT4-fs (loop1): bad geometry: first data block 252 is beyond end of filesystem (128) [ 1610.238650][T30033] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1610.245147][T30070] loop3: detected capacity change from 0 to 1 [ 1610.245501][T30033] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1610.264190][ T1037] loop2: p1 p2 p3 p4 19:16:53 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6004c080, &(0x7f0000000080)="017bc8ed4cfe6f67c646f494a42f107855cbca58d8092c797e8fbc272e206f2cdc4c9f46c463587a0b566ffd86ccbdacf855943a54798bc405e526ca3e81cf897781ca708551655f3d5adedd5978e590b394370bb82f4382038584e3eddbcb933c00ce1647fcaf26dacc537e3ec488d9e59bcd856c9427cf970cd82f6556e2e5b1e0b24a50c7bca31d327ca673ea73521ca211f5fd18a620ace8527a517819733665771e19c2a5b9a8db557760cdaff613d17dca665a", 0x0, 0x0, 0x0) [ 1610.265011][T30066] loop4: p1 p2 p4 [ 1610.272082][ T1037] loop2: p1 start 4718602 is beyond EOD, truncated [ 1610.274561][T30066] loop4: p1 start 10 is beyond EOD, truncated [ 1610.278624][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1610.284734][T30066] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1610.306463][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1610.306783][T30070] loop3: p1 p2 p3 p4 [ 1610.313273][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1610.325419][T30049] loop1: detected capacity change from 0 to 512 [ 1610.328946][T30070] loop3: p1 start 10 is beyond EOD, truncated [ 1610.337794][T30070] loop3: p2 size 1073873408 extends beyond EOD, truncated [ 1610.346187][T30049] EXT4-fs (loop1): bad geometry: first data block 252 is beyond end of filesystem (128) [ 1610.347194][T30070] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1610.362696][T30070] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:16:53 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffffffdfd0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:53 executing program 0: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x1}, 0x0, 0x842b}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) ptrace$cont(0x1f, 0x0, 0xe67, 0xad7) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)) r1 = getpgid(0x0) openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x440000, 0x39) process_vm_writev(r1, &(0x7f0000001540)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1, &(0x7f0000001bc0)=[{&(0x7f00000015c0)=""/110, 0x6e}], 0x1, 0x0) tkill(r1, 0x1b) 19:16:53 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a004c00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:53 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000402024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1610.397804][T30066] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1610.474460][T30066] loop4: detected capacity change from 0 to 1 [ 1610.482027][T30109] loop1: detected capacity change from 0 to 512 [ 1610.482188][T30117] loop3: detected capacity change from 0 to 1 [ 1610.495809][T30112] loop2: detected capacity change from 0 to 1 [ 1610.505323][T30066] loop4: p1 p2 p4 [ 1610.509248][T30066] loop4: p1 start 10 is beyond EOD, truncated [ 1610.515369][T30066] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:16:53 executing program 0: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffd, 0x400, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x3, 0x1}, 0x0, 0x0, 0x0, 0x8, 0x2, 0x0, 0x3f, 0x0, 0x2}, 0xffffffffffffffff, 0xfffffffffffffffd, 0xffffffffffffffff, 0xc) clone(0x6204c080, &(0x7f0000000080)="945f995c24541df78116ba371ba0611fde01c8cc63eb2e31c7387e714faf7391d433f1494d968e59460b62f7c0fceb16cc41b39886a92ad6e4004a2158461dd5c2e77d1043bee3ad18451ae89d11200142fd3a823551363ac24929802d36d265662198ea", 0x0, 0x0, 0x0) ptrace$setopts(0x4200, 0xffffffffffffffff, 0x0, 0x2) fsetxattr$security_capability(r0, &(0x7f0000000280), &(0x7f00000002c0)=@v1={0x1000000, [{0x2839}]}, 0xc, 0x2) clone(0x20000000, &(0x7f0000000100)="f59dfd70", &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="083b82921d5806973cfe7bfe3759e15b836b8e7a59cf5b58d343a6a16396930382da85190c7e3d1245ed115003da183eb86c0ec2840121273ebb717cf9bec3b39434f1ae7a5483429240ec217cacd4411db69e9777ad092274d0ffc155055e539450348b1dc3f082bdc4180f7d3e0e9f01ccf9297a0b0baf1fd0428c17aba4bacb42429310681cdcf046464fefcb3a0d1e849f42cb538870c75946530d8151df0bfdd5") [ 1610.523460][ T1037] loop2: p1 p2 p3 p4 [ 1610.527505][T30109] EXT4-fs (loop1): bad geometry: first data block 253 is beyond end of filesystem (128) [ 1610.527659][T30117] loop3: p1 p2 p3 p4 [ 1610.537402][ T1037] loop2: p1 start 4980746 is beyond EOD, truncated [ 1610.547769][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1610.552797][T30066] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1610.562782][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1610.569573][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1610.575228][T30117] loop3: p1 start 10 is beyond EOD, truncated [ 1610.582803][T30117] loop3: p2 size 1073873412 extends beyond EOD, truncated [ 1610.591841][T30112] loop2: p1 p2 p3 p4 [ 1610.596022][T30112] loop2: p1 start 4980746 is beyond EOD, truncated [ 1610.602536][T30112] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:16:53 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080b000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1610.621086][T30112] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1610.627900][T30112] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1610.633868][T30109] loop1: detected capacity change from 0 to 512 [ 1610.644680][T30117] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1610.649243][T30109] EXT4-fs (loop1): bad geometry: first data block 253 is beyond end of filesystem (128) [ 1610.651495][T30117] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:16:53 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x40002}, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x9aa2, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x151a01, 0x0) connect$inet6(r1, &(0x7f0000000300)={0xa, 0x4e22, 0x6c1, @ipv4={'\x00', '\xff\xff', @empty}, 0x7}, 0x1c) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xfffffffd}, 0x1c) fallocate(r0, 0x14, 0x4b, 0x40) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r2, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) sendto$inet6(r2, &(0x7f0000000140)="868931a86c8e9d45e5df27282d593c781ce97973980532f935bd8a252dc746ef02ed4266a6b94bcb654e019e5fc84d59bad278df6b9b21cf8efe087b80ed8971dfdfdfad990e78534f5e883b6621a757ca926685d90a2d04ca2d874e954096c3d8d2b6c0168406b0a1ac5332ea768f66885dd2e0e6f6c53c23ec14a35aad6fdf3a93cfc67bd9d636caa2ecd50a5a6bdc26067354251469d00115c38d912f89eb7b4436515590d63cdf963de331bb3fb79a11934a1032d937ab8362bde26171c7a35c2dcaea8a23b60bd00a5b398159fb53e3b6a4afe63fac512dce94b8357ea68e010ab36528d819eb4b8715a8e6ab", 0xef, 0x0, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @local, 0x9}, 0x1c) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) 19:16:53 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffffffffe0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1610.694955][T30165] loop4: detected capacity change from 0 to 1 [ 1610.737860][T30165] loop4: p1 p2 p4 [ 1610.745986][T30165] loop4: p1 start 10 is beyond EOD, truncated [ 1610.752086][T30165] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1610.772265][T30165] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:16:53 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a006000ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:53 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000003024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1610.796772][T30173] loop1: detected capacity change from 0 to 512 [ 1610.826064][T30173] EXT4-fs (loop1): bad geometry: first data block 254 is beyond end of filesystem (128) [ 1610.880877][T30173] loop1: detected capacity change from 0 to 512 [ 1610.889783][T30173] EXT4-fs (loop1): bad geometry: first data block 254 is beyond end of filesystem (128) [ 1610.904648][T30165] loop4: detected capacity change from 0 to 1 [ 1610.914906][T30199] loop2: detected capacity change from 0 to 1 19:16:53 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)={0x13, 0x3, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @pad1]}, 0x28) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x4, &(0x7f0000000080)=[{0x7, 0x1, 0x1, 0x80000001}, {0x80, 0x81, 0x3f, 0x8}, {0xcc9, 0x35, 0x5, 0x10001}, {0x6, 0x5, 0x8, 0x6}]}) sendfile(r0, r1, 0x0, 0x8) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1610.935348][T30165] loop4: p1 p2 p4 [ 1610.943574][T30165] loop4: p1 start 10 is beyond EOD, truncated [ 1610.949689][T30165] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1610.957906][T30199] loop2: p1 p2 p3 p4 [ 1610.967881][T30208] loop3: detected capacity change from 0 to 1 [ 1610.979122][T30199] loop2: p1 start 6291466 is beyond EOD, truncated 19:16:53 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00000fff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1610.985698][T30199] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1611.024960][T30208] loop3: p1 p2 p3 p4 [ 1611.028926][T30199] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1611.029220][T30208] loop3: p1 start 10 is beyond EOD, truncated [ 1611.035775][T30199] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1611.041800][T30208] loop3: p2 size 1073873664 extends beyond EOD, truncated [ 1611.057044][T30208] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1611.063820][T30208] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1611.064631][T30165] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1611.079877][T30222] loop1: detected capacity change from 0 to 512 [ 1611.102202][T30222] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1611.134973][ T1037] loop2: p1 p2 p3 p4 [ 1611.139299][ T1037] loop2: p1 start 6291466 is beyond EOD, truncated 19:16:53 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000004024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:53 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080c000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:53 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r0 = getpgid(0x0) process_vm_writev(r0, &(0x7f0000001540)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1, &(0x7f0000001bc0)=[{&(0x7f00000015c0)=""/110, 0x6e}], 0x1, 0x0) ptrace$setregs(0xf, r0, 0x5, &(0x7f0000000080)="8cdb5e96e22656afd1fa7ad0ad15f2d0246cef4b9aaf0445bd652b531acf9964143f16e69a8340575da6ff270b56f79bf61a0d7f9ebfb9337db7c14744bdf8063b87071e2a7876ca065a3163abce1b3eef09c7a825f7c38ec7") [ 1611.145878][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1611.157810][T30222] loop1: detected capacity change from 0 to 512 [ 1611.165462][T30222] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1611.182952][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1611.189781][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1611.198074][T30249] loop3: detected capacity change from 0 to 1 19:16:54 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffffff7ff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:54 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a006800ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1611.244844][T30249] loop3: p1 p2 p3 p4 [ 1611.245416][T30262] loop4: detected capacity change from 0 to 1 [ 1611.249125][T30249] loop3: p1 start 10 is beyond EOD, truncated [ 1611.261043][T30249] loop3: p2 size 1073873920 extends beyond EOD, truncated [ 1611.315144][T30262] loop4: p1 p2 p4 [ 1611.319266][T30262] loop4: p1 start 10 is beyond EOD, truncated [ 1611.325395][T30262] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1611.344311][T30289] loop1: detected capacity change from 0 to 512 [ 1611.346977][T30290] loop2: detected capacity change from 0 to 1 19:16:54 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000680)='cpuacct.usage_user\x00', 0x0, 0x0) getpeername(r0, &(0x7f00000006c0)=@ethernet, &(0x7f0000000740)=0x80) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8080}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080)="c844e139f7424f05ad9ca609021dd86b707f8439827c5565f0aa2f4ed7770651c835eaee2f149ccb0448a8b9ee6483d965345d6dcad8f16f4aa78c54015483adbbfc1da75d053dab0900000000000000427a1e1b6494bc05a7f397b2cbc56b7d1d5ab313b03da7f818604e2a5239b3b8a4e98dd6ad4bab3d86f5c94075dc066e425fd9cb", 0x0, 0x0, 0x0) [ 1611.373704][T30289] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1611.374424][T30262] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1611.400134][T30249] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1611.407165][T30249] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1611.439327][T30289] loop1: detected capacity change from 0 to 512 [ 1611.445940][ T1037] loop2: p1 p2 p3 p4 [ 1611.451433][T30289] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1611.468395][ T1037] loop2: p1 start 6815754 is beyond EOD, truncated [ 1611.474949][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1611.506442][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1611.513258][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1611.532143][T30262] loop4: detected capacity change from 0 to 1 [ 1611.549303][T30290] loop2: p1 p2 p3 p4 19:16:54 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000005024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1611.553531][T30290] loop2: p1 start 6815754 is beyond EOD, truncated [ 1611.560140][T30290] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1611.595035][T30290] loop2: p3 start 2127165541 is beyond EOD, truncated 19:16:54 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffffffbff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:54 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080d000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80080, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x8) r0 = getpgid(0x0) process_vm_writev(r0, &(0x7f0000001540)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1, &(0x7f0000001bc0)=[{&(0x7f00000015c0)=""/110, 0x6e}], 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x4b, 0x8, 0x81, 0xe6, 0x0, 0x2, 0x90000, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xc, 0x2, @perf_config_ext={0xfffffffffffffff7}, 0x224, 0x9d40, 0x1f, 0x6, 0x3ff, 0x7fff, 0x7ff, 0x0, 0x101, 0x0, 0x3}, r0, 0xf, 0xffffffffffffffff, 0xf) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) ptrace$setregs(0xf, 0x0, 0x2, &(0x7f0000000080)="84a5afdd36dc1a31d67898237fd6195427bc2160be4a77dd2f127c03bcd98d0c6cda7226598f2b34b84ba03ac4ca4ff8f1d8a3513958dbada72b92b6402b206a1433a873ce154189433e98690b774005581505518c44e3d501879307917ad3a57249a3f9f4c8b382e5dac63afa9b6edfd6a322d77d0636e7758c5fc8fa05632607533cadf951ea95d3e1c2505a3bf42ba7d93fb1c317f8cac0eba2f4e62f2a5ef065ec57016e55a96f997f192e5b18a840926d400d12f7a350973cd18bd6710a3645ec5cfb85801d9fb90a9e05811b8b9667ac3d03370018f8236e7a8ffa34f893336de5d676f5518f2c2dd750c8c0e2ee95f1f06b2815") clone(0x8181600, &(0x7f0000000200)="ae745556b15a73e6b35b33ac2625da156b1bf715c2a1ca3147c98637de224645adbd84619c9450919c10030ce366c5ee9169c0142f482c9c986470bffe6a54308fee72feb362c7a45d263b6e8ee554554bfd4fab", &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)="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") rt_sigqueueinfo(r0, 0x18, &(0x7f0000001300)={0x1f, 0x7, 0x7}) [ 1611.601843][T30290] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:16:54 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a006c00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1611.692154][T30339] loop1: detected capacity change from 0 to 512 [ 1611.698577][T30337] loop3: detected capacity change from 0 to 1 [ 1611.734139][T30339] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1611.748672][T30359] loop4: detected capacity change from 0 to 1 [ 1611.754977][T30337] loop3: p1 p2 p3 p4 [ 1611.759543][T30337] loop3: p1 start 10 is beyond EOD, truncated [ 1611.760420][T30368] loop2: detected capacity change from 0 to 1 [ 1611.765710][T30337] loop3: p2 size 1073874176 extends beyond EOD, truncated 19:16:54 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/partitions\x00', 0x0, 0x0) r1 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x202040, 0xa6) r2 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) read(r2, &(0x7f0000000100)=""/4096, 0x1000) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r3, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000000, 0x40010, r3, 0x17913000) clone3(&(0x7f0000001380)={0x80040000, &(0x7f0000001100)=0xffffffffffffffff, &(0x7f0000001140), &(0x7f0000001180), {0x24}, &(0x7f00000011c0)=""/103, 0x67, &(0x7f0000001240)=""/223, &(0x7f0000001340)=[0x0, 0xffffffffffffffff, 0x0], 0x3, {r1}}, 0x58) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x8, 0x10010, r4, 0x64921000) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000002, 0x4000010, 0xffffffffffffffff, 0x25211000) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1611.798940][T30337] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1611.805779][T30337] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1611.825126][T30359] loop4: p1 p2 p4 [ 1611.829646][ T1037] loop2: p1 p2 p3 p4 [ 1611.833993][T30359] loop4: p1 start 10 is beyond EOD, truncated [ 1611.840228][T30359] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1611.848729][ T1037] loop2: p1 start 7077898 is beyond EOD, truncated [ 1611.855340][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1611.864045][T30339] loop1: detected capacity change from 0 to 512 [ 1611.872984][T30339] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1611.899368][T30359] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1611.909574][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1611.916403][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:16:54 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000006024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:54 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f0003ffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1611.943068][T30368] loop2: p1 p2 p3 p4 [ 1611.953612][T30368] loop2: p1 start 7077898 is beyond EOD, truncated [ 1611.960280][T30368] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1611.981650][T30359] loop4: detected capacity change from 0 to 1 19:16:54 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) r1 = epoll_create1(0x0) ioctl$BTRFS_IOC_ADD_DEV(r0, 0x5000940a, &(0x7f0000000080)={{r1}, "0b50a0374a3139e6b053b82f8df8d856a0c115d428b592b980f361c283d412d57e58a4071abe4f2ac68de00a60ef9963f2d0c99b79fde12c17240dd42b10db5afe68059943cbb8e8ec90cae6a2a13a717b48d2e099c942e2d21afc631249812b36da5c8fde09cb0ebcbd64d0d6ca0634347fa82a3b987c9104393d0da4fabd8a06caa8bfb4b703ebcb3478423cc1c7cf3cf6b542d00bee7b015b4295cbacc4327bb00234fcc2e4eee02bc93166a8b3d3dc5c28b71dd11e7e0873b00333c76ce8a0ca453ed9ed581fb2cb185ec953e85a22db7c2db7d91ba9b6b2ae5252bf91b2006ed17e03cb48d1ab1522f33ebbc87c16391e5aeccce383b5b1e43bfe97aec0d5ccb2c3802b3bd5e3d78dd87bfdb2ac96c0c3fdd121488ad325c2f41755f04b563e4b79693d5fc4cefc13214b8779dbdc3f47e327e11563bb5d8acdd3d820f6aa3d66df100f547dd6ef4f37cf4dd85676f3d0e0037bab42837328e1cfda1f72a8b32152b60c0b3600054d080d5805e74a90bf013d9c932d6461e1b5a57ddf4e9a006014c208e42ac363eeb38d64644eaa804c89edb1798a0a1d28167c5994e74bdea54f203f7e47f90b6562de4603c8efb1a12a0406675833460529a55eb26a6d845b49f801abf4adde8a266c11d1fe29d2bef540e7b8f68fe427c4ec138c46d0ced34ba2cd6ef4301e18c112179be55bb60dfff0e83d8805ac7fdc0a749abf7dff6eba8b2996c4ad23e3ff1baf990abe5613dc670d07c93fac39ca1b703b5bf152916303489ce29640151548a0b6f8ee75f08f77365576535f5f639a531ff069045469efd29a16d3ad430145d4d7f652c1c7915e7d5f2433fa9bd198132de3a6172b1a123d615b963ba3b5daa731c033be884a0848c58b2a62c8d0dc202e843fef97dabf8cc759ba446b42a53fe1d21e649bda11a435fb4fd13719c369be62b7af199054a69a651bd504cab8b7ca10301dbe3f1862215061f66f78ac5f7239a34b418034d01524169716dbf3ab92e6e915af97e17592af2eeaec2e202a9cd7c9d29173ad44d2832b07276386b3e2c83c8610a35790496f4f72b4e36ed74916955deb09c2d5d61db4cfdee685be48771ca5b78c8ba9a79e375d2717c787983ad40495edcabf2cba95570a031d03cb5e366d7f493c1ef15295449367d4da52b666bff4f45abf07018b75529e1f62cf362a885f4035d3554fc8b7e84199f394acc2058547bd9a5343fbc1d217cf4bc0c3a46a14fc3c5ac73580582fbb0bcaf388ff7f38f287670d93883e83135856fb0bc386d2bebbd5f082b745123f1ac5368b108543acea65220bea9e0807679cc0355687901d0bffe81dd943b6d4a5d72973c35270744b24992255aefe7cd0b146bdca634c7e1cc7fe7985f84dbc58d2f92de74a2971a0c5a055131c9d799385794658165b7f2526cedda1531ea3bd1b9b2da6e2d531e3d5d8427ab5d4922971a038c73788ef10292d0963b9f883443728b5fb77efaf8d369e547dc18493289886c20c93fad6d583b6bc9fbc1cf616a94a9c2c0ab92216aa132171ad05a57f6fbfae6d74bfe4dc98480dad0b525d13ba224c369942ea6acb970373abb704f132fe5303d6e1ec55c56392f0348bed870ba6b11635cd1845d93c5e75956e785bc1c2e2fef00eaf28dddd60f3e8a21e667847650f17efc29156ebc330fa465713f2bb884dd716a12a4a8a55058670a11b947f674c82a2a25a6d5b7f587cf9907cd7985d324b9c78bd11afc3841e7fdb9dfe3585ac613d0c0be321b9bdf13af2fb39a5189283243b15d5c1f0264b3661e252e730f671a6b025bf8ceab2a61ed65b872bcc4b6522ee9405263938ea2e81f19bab448409b7bdc0254d44a17a94eb2fd71e11cbaa0fd02520e6cc3f69f0a5bec4704f949e07a71aa807e2c4c620a3aaf97287223dae10b25f1962932590747cc886550c587d81b9b3b5fcdc8cf2d81b5b313ef1ed26ce94116acf619ac37e8b896dd25898c4acac827ff9e9fa38a9f15269dd1f967e0a37362bd2a208fd4252ae7829a1f2e4696f30de69d64687c18036ae72ee6f582596e7a5b37b193bdf4ba79f7e8dd21fd43c7d8d8517d89d40eddb5824d1617fdffc22a2dbd88838045b705f98dc6a3d24dfcaa538010832d832990af90c7e20f9e1fc66d8fecf3055b731c5b69dd6300ea037e0ac8f2f539dfda3873eb8868eb2b00edc652d697bc4ae84fbef1ebbda6e122d277ce83766ff33385875a7d188d485be9fd23cee36ecbe2804055bf51baf96c575fae8dce2842a370bc866f01d2ccee985a935e26addbe4627196af76f91e68aa1941868b7bae51c014e8d95488eabe7bc19b5d410360f43112db6e09db4053266e790e52eec16124c7a66536f9a2f623e1eb506f14e533bef96e7d8b895b44a589c7fa8ae7cb2125ce59d61d7c001b73d8c7528a39a7ba382e40b3059c2f12eea195f321e2c1249fba2546fbe75999f0f7dbaa3c5244b948d6f599f79c4b839801871460093c61e525d88eb196601bc2b9821a326985079ff1a10fc41b24fccbf97d24427434872ba128db4785a582a8ce632ffd16e327d0ad3c05b28e8200b8d35e226f9f89b46e12d3aba33987fc2f0ac9a681204fe69be04d7e5de93b7a6775dc377e03226644097897f30308457b59c461f3dc5d71268013a0ca143ec5ad3384f54b9c565ea12727f8ce503970cc4da7e46eaa95590608657455208b4f82c5e934abf3f0d2e55dcd7c5b1c2d4ecffa650818becb08762e1196dfb8a42364403e5d6a99c48c5c211d496e96bf5ceadecc10f1c2b453967693e1be39173b7b419196700bef6ade174d232ffeed45bfd4bb322b0aab6801c533b191c6af71998f978f24cb677b571ac05d8a9b0fbe40b22216f8953413e47f44f6c558896e02601dea865a7cfffeced896922d799f5803ab10e2473eae7f048e4ad88b4d7e5b0a4becf40be4a8ba1db343f3b250bc2e766be1a2b5568fadfbe9778de126324faf1b5cc40459d0862ca83f7dfbf8f1e7f762df3cc9864eb1ade6db98ed168650344cc99bc3b685e512187c9bf5251c9c001a1cb18674a60d9302e59faf730be89ac11e5451de2ae060857df19d7c753cb684cca367e681234b0d1f374478849e6e8823306b624bb4fc8d2379ac973c7df7ae54fb367e26fdf2c084327cff59762c55579ca01484787f5fe87a98e7830d06aee299d100207da97556fe604213b438e31e10ec7bc02fa83a6abb34bcd36374eff69419ff2674c5984bd6d5dfa53808bcbcfeb3c659e24e455272d5740d36c9b298143e14a51e4f71ee22b1306840edf6dcf3a37bde68a45b8a2222253e7636a4784f48b52d7fafa7bae04f35f8bdb59acbfaef173ba5867aab1dee0cf8ebd1c95db6591be9d2273c6c5aa2e8c4fb552bb5536140a1ffda792e513e6fbf54b36449d07efb87332127db0b2df5edefea2279bc3b4ae2b8e13ea61f179b9206b231524ea4386a0b3ddee3573d17d3fb08fe02dfd5de2a9aabd300224f99f3de62d07c0f9ddc98dbd89d5737a872347ff2fcf9e151951f4e15eb9ee46bedcb971e10c3f232092a8cddf3a50905d87a58e64b4ae69ab3f57e4b25d0632baf120e19310bdcebf4e1ee414f1a135f58212391d24a8058965b57820ef6d28622ba740429ae7fb3175cd0863ff38b8a10ef5ed85022a40398e2cc5b62a1dd1ff6f03d0c2011e79f1b8da39c65fd40d193bece0db5d943b6c41c484ffd3245effd76badfcc83612ef30baaea8d4ff3a74c0f68f9bc4fa833490aa8aabdce89d43240c896660e0c821fcfb67e1541b99ebccac990a05845b517b594e6752b8d6bda24545bdbd53f02baf8dea268bc974559eb41220f05669874ce96a37d5cdf503effcb5dd82acc56248fc871777bed38c5ea382b2c6c4fb623c1aae445294c6cb50e348a1fae8065f7a2a2410b7b3e5767d656682c6515c06ce98b125be542857b1520ddb2feb2cd2be7308b6a6d24eba04d80964c71674f27b9ee7b64b8c6ba8bd628c1f6dd810e8f944e28163173d1ef98e6d95bc64e94378fdc206eaa9c731d2de60dbafa03b424069c41a261022f23bb29101a410e535f3b35de071121fdb50733be0459f342dd38d1d08bd4082585358f679ccb372778e549f04cf01567a482c91b91d07dbce8675a2a88e07fca3c832ebf7369b17860786411f84773dedd32f17e18efa10ae297554ca1556ab35487d9ef17c6b4463e607f494d76aa944e35bd1a8fc55e728256e5c31fd7ffc8252a54e7132b9c1d08146a41afd8ba5cf81aad9c64fceb4b4d56f2c2bf5047324aa4f85703cbe9cb48b083e0f71a92d9f97e9897ca6b195e3a68275a05b3225a59761e1ed082c490e7b683138b8cbcbedf8ea051024c0f43d7f3828bc2ac5138eefbd915cbe82f162dcdba39b6fa9d619d86b7079d5e0847cec46dcfd577a064ed660431589184c7a99251c222158cb13131c46a1bf72cf3454d8c74f82a708a2ed89905f894a2999e24cad0d76e6a3ae00939b9160c7e5e84496b89e3d88a3657035b294e45d416afb4c2bcdc65f076ba698f5ed15af8cd060414da0f3929078dab40a7475c9675272ad7527ee735583a0f67a67278e5b741e95afc89411df693a73f795a37f8a78d3af19381a9ac3208edc0caf51fbdbbecce828f9359776717b1bb4df4bab202f0e24d67ee4cbc1166aef0c43c32ce94c41752ecad8e6fecc54aa0979d21039e2cc11ba4a6d513515a24d3f649ace8e910a0380a8f78b5829917b9dcbd5202330572e7d7b51f0916371385e8c44c4e26b8c01eb5b4f5520547f3fee37cb32e653149d6c9b517fd2b7a0e43c7201b6ea0aeea1dbc2f46f13cfec1c800db833654ad33c8f13dbed4fc6047aa9fd38993222dec4cd1125b4049d3c6e2957f6490b5ee5079da24804b97544d0116135209f82d4bf6752dde951431e389a99fdfbe58083be22beb3136de1eb15944f14aaf73adf90b6326870cca9dc976f471b9a06e9c9bd9a7fcaeb8c2796cc2d149d7f4e10ed7658a840163d8b527ad3424a6881e3450d08ac70738449a192fc43d95b5a49a462eeecd590000a9409e188ae0790d053360a0534822be227255206ceba385e502842b7ca69d387bbf1be721e5c9e10d8af1e7d339d5bd9d36a41ec9a89d4f8a0845a7280c5153cb2f7a89b4ae1786d74cb105d047df4b73d08bb95e861158cd68a3dc8cd7725691982d2449e4ac466731fda938ebf5d0cbaf12ca5ceac70e583fbf9b9d9ee7c3f8395d6678029fb0ffd82603cbafbcedd08ace7fe377bc5f7a4c204f41c4e5290d587e69b7a819a38a7f0e188aaa8fd645f64da590ccc303a584b0ea465bcb55a6b7c751d9a3d43da868d9e2d190b1ecd3c7728cf0f00824b80815cd7076d50fc5d48611171dfe9495c19431e074882e4234867e8f2d639e22592aefc3f01ec5ffdac07720d41adccf7198adc602b14a1000e700917097cae6503ff9e1713eb65551fbbf58659320b0d6a615d518d896263c7a00f6efa1b6bf900a85314aa0fd6f5884a8d98bab8e21c77033e3d42db7f2bbf3b6bc8332dbae3a295e9430349496147818ea52143e29d90d5ab19038cc8b659e66d132ddccf6af3c8d21fe6e8ef8757bd02c6f1ddc81400774aaa6a52ee77e1211a2b62958810e9ddaf91db504d1cf6e3b3301eceda95115e5674ef06f37412f9e751658c89da82b3d5f8be77e980e071928c71170376e75ee992b582bad4147aaeb7cd60229e539ec3e11ea95b3b65cf1e191a5e67521d24a4dbc1e294cd6ea996"}) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1611.990326][T30368] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1611.997165][T30368] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1612.002674][T30416] loop3: detected capacity change from 0 to 1 [ 1612.020928][T30425] loop1: detected capacity change from 0 to 512 [ 1612.027906][T30359] loop4: p1 p2 p4 [ 1612.031732][T30425] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1612.039259][T30359] loop4: p1 start 10 is beyond EOD, truncated [ 1612.047687][T30359] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1612.059818][T30359] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1612.070119][T30416] loop3: p1 p2 p3 p4 [ 1612.076322][T30416] loop3: p1 start 10 is beyond EOD, truncated [ 1612.082425][T30416] loop3: p2 size 1073874432 extends beyond EOD, truncated 19:16:54 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a007400ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1612.109951][T30425] loop1: detected capacity change from 0 to 512 [ 1612.117047][T30425] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1612.144179][T30416] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1612.151027][T30416] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:16:54 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080e000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:54 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001fffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:54 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000406024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1612.176404][ T1037] loop4: p1 p2 p4 [ 1612.180475][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1612.186581][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1612.196277][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1612.203936][T30454] loop2: detected capacity change from 0 to 1 [ 1612.222478][T30477] loop1: detected capacity change from 0 to 512 [ 1612.230818][T30477] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1612.241385][T30454] loop2: p1 p2 p3 p4 [ 1612.246914][T30454] loop2: p1 start 7602186 is beyond EOD, truncated [ 1612.253471][T30454] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1612.260016][T30483] loop3: detected capacity change from 0 to 1 [ 1612.261779][T30454] loop2: p3 start 2127165541 is beyond EOD, truncated 19:16:55 executing program 0: prctl$PR_GET_FPEMU(0x9, &(0x7f0000000180)) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f00000001c0), 0x8}, 0x100, 0x0, 0xfffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x1) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r0 = getpgid(0x0) process_vm_writev(r0, &(0x7f0000001540)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1, &(0x7f0000001bc0)=[{&(0x7f00000015c0)=""/110, 0x6e}], 0x1, 0x0) wait4(r0, &(0x7f0000000080), 0x2, &(0x7f00000000c0)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f0000000200), 0x0) [ 1612.273449][T30454] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1612.292112][T30477] loop1: detected capacity change from 0 to 512 [ 1612.299425][T30477] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1612.315785][T30494] loop4: detected capacity change from 0 to 1 19:16:55 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00e0ffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1612.325069][T30483] loop3: p1 p2 p3 p4 [ 1612.329528][T30483] loop3: p1 start 10 is beyond EOD, truncated [ 1612.335648][T30483] loop3: p2 size 1073874436 extends beyond EOD, truncated [ 1612.344517][T30483] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1612.345579][T30494] loop4: p1 p2 p4 [ 1612.351327][T30483] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1612.355102][T30494] loop4: p1 start 10 is beyond EOD, truncated [ 1612.368255][T30494] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:16:55 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a007a00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:55 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000007024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1612.460045][T30520] loop1: detected capacity change from 0 to 512 [ 1612.493214][T30520] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) 19:16:55 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmstat\x00', 0x0, 0x0) sendto$inet(r0, &(0x7f00000000c0)="857eb7ea1c687bb187b7be5222eaddb18475645a27fc3c0dc5c8a932062fc487559eb02d8700c4a4510d1d5fe0579f180316063ce2191db12065783f839618fe25758e23216f06fe79b9a4fe7f3e062eafdcefe08d41b0911fa90a240352b84073cacf5287be13930da188b739ab54f0fe7d4111f463ffc6de1b1e173a1e9d1ef01e7f99300bbb76e9258447d3c956bdb9f3df828d01342b71645dbf30a4008f3d54d1a6b5c88d57b056824e60", 0xad, 0x48000, &(0x7f0000000180)={0x2, 0x4e20, @remote}, 0x10) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r1 = socket$inet_icmp(0x2, 0x2, 0x1) sendto$inet(r1, &(0x7f00000001c0)="76c9b8694accc16cc0963208ef3e41831266ca92", 0x14, 0x0, 0x0, 0x0) [ 1612.514887][T30531] loop2: detected capacity change from 0 to 1 [ 1612.521142][T30533] loop3: detected capacity change from 0 to 1 [ 1612.528758][T30494] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1612.574849][T30533] loop3: p1 p2 p3 p4 [ 1612.578999][T30533] loop3: p1 start 10 is beyond EOD, truncated [ 1612.585098][T30533] loop3: p2 size 1073874688 extends beyond EOD, truncated [ 1612.593381][ T1037] loop2: p1 p2 p3 p4 [ 1612.604531][T30533] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1612.611339][T30533] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1612.619770][ T1037] loop2: p1 start 7995402 is beyond EOD, truncated [ 1612.626368][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1612.650383][T30520] loop1: detected capacity change from 0 to 512 19:16:55 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080f000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1612.668014][T30520] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1612.688830][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1612.695650][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1612.706285][T30531] loop2: p1 p2 p3 p4 [ 1612.710694][T30531] loop2: p1 start 7995402 is beyond EOD, truncated [ 1612.717318][T30531] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:16:55 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffff7ffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1612.725284][T30531] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1612.732076][T30531] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:16:55 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000008024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:55 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a048000ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:55 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0xfff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1612.815967][T30577] loop4: detected capacity change from 0 to 1 [ 1612.825536][T30587] loop1: detected capacity change from 0 to 512 [ 1612.838192][T30587] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1612.855757][T30592] loop3: detected capacity change from 0 to 1 [ 1612.863289][T30596] loop2: detected capacity change from 0 to 1 [ 1612.884700][T30577] loop4: p1 p2 p4 [ 1612.888727][T30577] loop4: p1 start 10 is beyond EOD, truncated [ 1612.894936][T30577] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1612.904557][T30592] loop3: p1 p2 p3 p4 [ 1612.908708][T30592] loop3: p1 start 10 is beyond EOD, truncated [ 1612.914840][T30592] loop3: p2 size 1073874944 extends beyond EOD, truncated [ 1612.933531][T30592] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1612.940361][T30592] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1612.947877][T30596] loop2: p1 p2 p3 p4 [ 1612.952172][T30596] loop2: p1 start 8389642 is beyond EOD, truncated [ 1612.956764][T30577] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:16:55 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x7fff, 0x0, 0x0, 0x400, 0x0, 0xf2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000100)={0x7, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), r0) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r2, 0x800, 0x70bd25, 0x25dfdbfb, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40004}, 0x4) r3 = getpgid(0x0) process_vm_writev(r3, &(0x7f0000001540)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1, &(0x7f0000001bc0)=[{&(0x7f00000015c0)=""/110, 0x6e}], 0x1, 0x0) perf_event_open(&(0x7f0000000080)={0x4, 0x80, 0x3, 0x2, 0x3, 0x10, 0x0, 0x32bb, 0x60, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0xc00, 0x2, @perf_config_ext={0x10000, 0x4}, 0xc000, 0x140000, 0x1, 0x1, 0xffffffff, 0x5, 0x1f, 0x0, 0x7, 0x0, 0xdf}, r3, 0x2, 0xffffffffffffffff, 0xb) [ 1612.958805][T30596] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1612.973368][T30587] loop1: detected capacity change from 0 to 512 [ 1612.980676][T30587] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1612.984608][T30596] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1612.997198][T30596] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1613.039240][ T1037] loop2: p1 p2 p3 p4 [ 1613.043446][ T1037] loop2: p1 start 8389642 is beyond EOD, truncated [ 1613.050169][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:16:55 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffffbffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:55 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000009024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1613.095273][T30577] loop4: detected capacity change from 0 to 1 [ 1613.105639][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1613.112452][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1613.134691][T30577] loop4: p1 p2 p4 [ 1613.138727][T30577] loop4: p1 start 10 is beyond EOD, truncated 19:16:55 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a009000ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1613.144847][T30577] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1613.153151][T30577] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1613.171622][T30646] loop3: detected capacity change from 0 to 1 19:16:55 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4f00}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183) [ 1613.191756][T30658] loop1: detected capacity change from 0 to 512 19:16:56 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800810000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1613.224640][T30646] loop3: p1 p2 p3 p4 [ 1613.228882][T30646] loop3: p1 start 10 is beyond EOD, truncated [ 1613.235006][T30646] loop3: p2 size 1073875200 extends beyond EOD, truncated [ 1613.245222][T30658] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1613.260634][T30675] loop2: detected capacity change from 0 to 1 [ 1613.281724][T30646] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1613.288652][T30646] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1613.309543][T30688] loop4: detected capacity change from 0 to 1 [ 1613.324278][T30658] loop1: detected capacity change from 0 to 512 [ 1613.324711][T30675] loop2: p1 p2 p3 p4 [ 1613.331975][T30658] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1613.340800][T30675] loop2: p1 start 9437194 is beyond EOD, truncated [ 1613.350804][T30675] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1613.358430][T30688] loop4: p1 p2 p4 [ 1613.367962][ T1037] loop3: p1 p2 p3 p4 [ 1613.373667][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1613.379892][ T1037] loop3: p2 size 1073875200 extends beyond EOD, truncated [ 1613.387443][T30688] loop4: p1 start 10 is beyond EOD, truncated [ 1613.393540][T30688] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1613.402691][T30688] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1613.410812][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1613.417632][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:16:56 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ff9fdffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:56 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000a024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1613.463502][T30675] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1613.470348][T30675] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1613.493009][T30688] loop4: detected capacity change from 0 to 1 19:16:56 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a01a200ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1613.521033][T30722] loop1: detected capacity change from 0 to 512 [ 1613.524557][T30688] loop4: p1 p2 p4 [ 1613.532573][T30688] loop4: p1 start 10 is beyond EOD, truncated [ 1613.538727][T30688] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1613.567104][T30728] loop3: detected capacity change from 0 to 1 [ 1613.581382][T30722] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1613.593177][T30737] loop2: detected capacity change from 0 to 1 [ 1613.620034][T30688] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1613.638431][ T1037] loop4: p1 p2 p4 [ 1613.642263][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1613.648390][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1613.656920][T30728] loop3: p1 p2 p3 p4 [ 1613.661035][T30728] loop3: p1 start 10 is beyond EOD, truncated [ 1613.664525][T30737] loop2: p1 p2 p3 p4 [ 1613.667149][T30728] loop3: p2 size 1073875456 extends beyond EOD, truncated [ 1613.671428][T30737] loop2: p1 start 10617098 is beyond EOD, truncated [ 1613.684852][T30737] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1613.696082][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1613.703937][T30722] loop1: detected capacity change from 0 to 512 [ 1613.710510][T30737] loop2: p3 start 2127165541 is beyond EOD, truncated 19:16:56 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800811000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1613.712584][T30722] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1613.717337][T30737] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1613.736881][T30728] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1613.743707][T30728] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:16:56 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffdfdffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:56 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) openat(r0, &(0x7f0000000080)='./file0\x00', 0x8100, 0x14) syz_io_uring_setup(0x2de1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = inotify_init1(0x80000) r5 = syz_io_uring_setup(0x533, &(0x7f00000000c0), &(0x7f0000ffc000/0x1000)=nil, &(0x7f00001f7000/0x1000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000240)=0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) r9 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000480)='/sys/kernel/kexec_loaded', 0x0, 0x0) preadv(r9, &(0x7f0000000040)=[{&(0x7f0000000140)=""/201, 0xc9}], 0x1, 0x0, 0x0) syz_io_uring_submit(r6, r7, &(0x7f00000004c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r9, 0x0, 0x0, 0x0, {}, 0x0, {0x0, r8}}, 0x0) r10 = openat2$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x106, 0x10}, 0x18) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r10, 0x40189429, &(0x7f0000000340)={0x1, 0x0, 0x7fff}) syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x1, 0x0, r3, &(0x7f00000000c0)={0x80002010}, r4, 0x3, 0x0, 0x1, {0x0, r8}}, 0x40) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) 19:16:56 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a02a200ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:56 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000b024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1613.858549][T30769] loop1: detected capacity change from 0 to 512 [ 1613.869689][T30778] loop4: detected capacity change from 0 to 1 [ 1613.894354][T30779] loop3: detected capacity change from 0 to 1 [ 1613.907821][T30777] loop2: detected capacity change from 0 to 1 [ 1613.914855][T30769] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1613.944445][T30779] loop3: p1 p2 p3 p4 [ 1613.944814][T30778] loop4: p1 p2 p4 [ 1613.948612][T30779] loop3: p1 start 10 is beyond EOD, truncated [ 1613.952465][T30778] loop4: p1 start 10 is beyond EOD, [ 1613.958301][T30779] loop3: p2 size 1073875712 extends beyond EOD, truncated [ 1613.970687][T30778] truncated [ 1613.973786][T30778] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1613.981563][T30777] loop2: p1 p2 p3 p4 [ 1613.981746][T30778] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1613.986644][T30777] loop2: p1 start 10617354 is beyond EOD, truncated [ 1613.999495][T30777] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1614.007996][T30779] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1614.014821][T30779] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1614.025841][T30777] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1614.032151][T30769] loop1: detected capacity change from 0 to 512 [ 1614.032661][T30777] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1614.039564][T30769] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) 19:16:56 executing program 0: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2) r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/exe\x00', 0x80000, 0x0) r4 = dup(r1) sendto$unix(r4, &(0x7f0000000240)="f12f223c0e1d28d1dbc3ab2437bd133ad35cb8ad924def1affab5c4d9896afd709f24f1ac99a01560f2bd8ff1c2c7651f7ed92ab09753a11c724a47b2518f4cd08ced95b644da3a013763cf110d57f25148e6bfc7cc7575c804a08fe6c18a159569d5d498fc30f716579102c006c9fca6796e307", 0x74, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_FALLOCATE={0x11, 0x1, 0x0, @fd, 0x1000, 0x0, 0x80000001, 0x0, 0x1, {0x0, r5}}, 0x3f) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r3) perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x9, 0x0, 0x40, 0x8, 0x0, 0x4000000000003, 0xe8a0, 0xf, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x200004, 0x1, @perf_bp={&(0x7f0000000080), 0x1}, 0x11010, 0x0, 0x81, 0x6, 0x1, 0x4, 0x9, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x4, r0, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0xff, 0x3f, 0xd9, 0x20, 0x0, 0xff, 0x2000, 0xa, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3e, 0x0, @perf_bp={&(0x7f0000000140), 0x7}, 0x414c, 0x9, 0x3000000, 0x3, 0x5564, 0x79, 0x4, 0x0, 0x7b, 0x0, 0x7}, 0x0, 0x7, 0xffffffffffffffff, 0x2) [ 1614.061296][T30778] loop4: detected capacity change from 0 to 1 [ 1614.086409][ T1037] loop2: p1 p2 p3 p4 [ 1614.090582][ T1037] loop2: p1 start 10617354 is beyond EOD, truncated [ 1614.094490][T30778] loop4: p1 p2 p4 [ 1614.097234][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:16:56 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000c024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:56 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f7fffffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1614.117525][T30778] loop4: p1 start 10 is beyond EOD, truncated [ 1614.123660][T30778] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1614.174610][T30778] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1614.179693][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1614.188627][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1614.209101][T30839] loop1: detected capacity change from 0 to 512 19:16:57 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800812000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:57 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00c000ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1614.225214][T30836] loop3: detected capacity change from 0 to 1 [ 1614.233175][T30839] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) 19:16:57 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) r2 = socket(0x10, 0x2, 0x0) flistxattr(r2, &(0x7f0000000040)=""/147, 0x93) r3 = socket(0x2, 0x803, 0x9) ioctl$sock_SIOCADDRT(r3, 0x890b, &(0x7f0000000100)={0x0, @l2tp={0x2, 0x0, @multicast1}, @l2tp={0x2, 0x0, @local}, @xdp={0x2c, 0x3}, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff7}) ioctl$sock_SIOCSPGRP(r3, 0x8902, &(0x7f0000000180)) r4 = accept4(r3, 0x0, 0x0, 0x80800) r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000200), r4) sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="8000", @ANYRES16=r5, @ANYBLOB="00042abd7000fcdbdf2513000000080001007063690011000200303030303a30303a31302e3000000000080003000300000008000b000000000006001100080000000e0001006e657464657673696d0000000f0002006e657464657673696d300000080003000200000008000b0009000000060011002800000024bfcca3964feaea76d4e8bba36797ea11b6cba85aa5431c65c15e51f30ca9e9944e6b79a9552ec8920c687c6540db10bd55d9dbe90e8d3714812357e2e63ba702bbb069153699cf918cb4ee2dc933e159910da21025fc05c853f61769a930d9b9b542d885f64aca554036801d84301633e0f35235"], 0x80}, 0x1, 0x0, 0x0, 0x4}, 0x4000804) sendmsg$DEVLINK_CMD_PORT_SET(r2, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000800)={&(0x7f0000000780)={0x6c, r5, 0x200, 0x70bd28, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}, {0x6}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x6}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40800}, 0x4040014) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r1, &(0x7f0000000240)={&(0x7f0000000080), 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0xac, r5, 0x1, 0x70bd26, 0x25dfdbfb, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}]}, 0xac}, 0x1, 0x0, 0x0, 0x800}, 0x20008010) sendmsg$DEVLINK_CMD_SB_POOL_SET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000400)={&(0x7f0000000180)={0x244, r5, 0x4, 0x70bd2b, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3ff}, {0x6, 0x11, 0x7ff}, {0x8, 0x13, 0x8}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0x7}, {0x8, 0x13, 0x3}, {0x5, 0x14, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0x800}, {0x8, 0x13, 0x401}, {0x5, 0x14, 0x1}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x5}, {0x6, 0x11, 0x1}, {0x8, 0x13, 0x7}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9f2}, {0x6, 0x11, 0x5}, {0x8, 0x13, 0xa}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x5}, {0x6, 0x11, 0x9}, {0x8, 0x13, 0x29f}, {0x5, 0x14, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x6}, {0x8, 0x13, 0x6}, {0x5, 0x14, 0x1}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x1f}, {0x8, 0x13, 0x8}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9147}, {0x6, 0x11, 0xfff}, {0x8, 0x13, 0x10000}, {0x5, 0x14, 0x1}}]}, 0x244}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, r5, 0x8, 0x70bd2d, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x2004) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1614.274475][T30836] loop3: p1 p2 p3 p4 [ 1614.278693][T30836] loop3: p1 start 10 is beyond EOD, truncated [ 1614.284829][T30836] loop3: p2 size 1073875968 extends beyond EOD, truncated [ 1614.295416][T30858] loop4: detected capacity change from 0 to 1 [ 1614.295789][T30839] loop1: detected capacity change from 0 to 512 [ 1614.327845][T30836] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1614.334718][T30836] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1614.344359][T30858] loop4: p1 p2 p4 [ 1614.348361][T30858] loop4: p1 start 10 is beyond EOD, truncated [ 1614.354487][T30858] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1614.362669][T30839] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1614.367380][T30858] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1614.374944][T30870] loop2: detected capacity change from 0 to 1 [ 1614.387928][ T1037] loop3: p1 p2 p3 p4 [ 1614.392220][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1614.398466][ T1037] loop3: p2 size 1073875968 extends beyond EOD, truncated [ 1614.415293][T30872] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=30872 comm=syz-executor.0 19:16:57 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f8cffffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1614.440641][T30858] loop4: detected capacity change from 0 to 1 [ 1614.453228][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1614.460040][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1614.467520][T30870] loop2: p1 p2 p3 p4 [ 1614.471757][T30870] loop2: p1 start 12582922 is beyond EOD, truncated [ 1614.478379][T30870] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:16:57 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000d024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1614.486607][T30870] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1614.489640][T30858] loop4: p1 p2 p4 [ 1614.493486][T30870] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1614.503239][T30858] loop4: p1 start 10 is beyond EOD, truncated [ 1614.510502][T30858] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:16:57 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a04f500ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1614.544532][T30902] loop1: detected capacity change from 0 to 512 [ 1614.557972][T30902] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1614.597911][T30858] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1614.607610][T30919] loop2: detected capacity change from 0 to 1 [ 1614.607610][T30918] loop3: detected capacity change from 0 to 1 [ 1614.634875][T30919] loop2: p1 p2 p3 p4 [ 1614.639576][T30919] loop2: p1 start 16057354 is beyond EOD, truncated [ 1614.646223][T30919] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1614.660443][T30902] loop1: detected capacity change from 0 to 512 [ 1614.669502][T30902] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1614.685359][T30918] loop3: p1 p2 p3 p4 19:16:57 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800813000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1614.695939][T30919] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1614.702282][T30918] loop3: p1 start 10 is beyond EOD, truncated [ 1614.702736][T30919] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1614.708826][T30918] loop3: p2 size 1073876224 extends beyond EOD, truncated 19:16:57 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a0fff00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1614.744460][T30918] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1614.751279][T30918] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:16:57 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000fdaffffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1614.789107][ T1037] loop3: p1 p2 p3 p4 [ 1614.793360][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1614.799487][ T1037] loop3: p2 size 1073876224 extends beyond EOD, truncated [ 1614.822771][T30952] loop4: detected capacity change from 0 to 1 [ 1614.833576][T30957] loop1: detected capacity change from 0 to 512 [ 1614.835868][T30956] loop2: detected capacity change from 0 to 1 [ 1614.847849][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1614.854682][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1614.862180][T30957] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1614.862310][T30952] loop4: p1 p2 p4 [ 1614.878319][T30952] loop4: p1 start 10 is beyond EOD, truncated [ 1614.884438][T30952] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1614.904421][T30956] loop2: p1 p2 p3 p4 [ 1614.908606][T30956] loop2: p1 start 16715530 is beyond EOD, truncated [ 1614.915251][T30956] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1614.930016][T30957] loop1: detected capacity change from 0 to 512 19:16:57 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000e024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1614.955073][T30952] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1614.968598][T30957] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1614.979807][T30956] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1614.986617][T30956] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:16:57 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ff0ffffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:57 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000200ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1615.092511][T30980] loop3: detected capacity change from 0 to 1 [ 1615.099989][T30952] loop4: detected capacity change from 0 to 1 19:16:57 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1615.139226][ T1037] loop3: p1 p2 p3 p4 [ 1615.143642][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1615.149774][ T1037] loop3: p2 size 1073876480 extends beyond EOD, truncated [ 1615.154282][T30952] loop4: p1 p2 p4 [ 1615.159338][T30995] loop1: detected capacity change from 0 to 512 [ 1615.162835][T30952] loop4: p1 start 10 is beyond EOD, truncated [ 1615.173092][T30952] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1615.173388][T30995] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1615.190342][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1615.197150][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1615.197321][T30952] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1615.205142][T30998] loop2: detected capacity change from 0 to 1 [ 1615.233724][T30980] loop3: p1 p2 p3 p4 19:16:58 executing program 0: prctl$PR_GET_UNALIGN(0x5, &(0x7f0000000080)) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x9, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x604ce780, &(0x7f00000000c0)="374152657c47a7650b9e0acb5a34c5dc1acaf9e50068c79ba15a95d091d8", 0x0, 0x0, 0x0) pipe2(&(0x7f0000000180)={0xffffffffffffffff}, 0x84000) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x40, 0x2, 0x4, 0x20, 0x0, 0x2, 0xd8, 0x8, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x0, @perf_config_ext={0x2, 0xa725}, 0x50, 0x3f, 0xfffffeff, 0x7, 0x6, 0xffffffff, 0x80}, 0xffffffffffffffff, 0x0, r0, 0x8) [ 1615.238211][T30980] loop3: p1 start 10 is beyond EOD, truncated [ 1615.244401][T30980] loop3: p2 size 1073876480 extends beyond EOD, truncated [ 1615.260662][T30980] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1615.265171][T30995] loop1: detected capacity change from 0 to 512 [ 1615.267531][T30980] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:16:58 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800824000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:58 executing program 0: fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1615.275313][T30995] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1615.290707][T30998] loop2: p1 p2 p3 p4 [ 1615.294943][T30998] loop2: p1 start 131082 is beyond EOD, truncated [ 1615.301488][T30998] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1615.309310][T30998] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1615.316162][T30998] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:16:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ff5ffffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:58 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000f024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1615.353237][T31039] loop4: detected capacity change from 0 to 1 19:16:58 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000300ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1615.408698][T31039] loop4: p1 p2 p4 [ 1615.413563][T31039] loop4: p1 start 10 is beyond EOD, truncated [ 1615.419796][T31039] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1615.444786][T31052] loop1: detected capacity change from 0 to 512 19:16:58 executing program 0: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) sendfile(r1, r0, &(0x7f0000000000)=0x2, 0x8001) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1615.459354][T31052] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1615.477522][T31039] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1615.482725][T31067] loop3: detected capacity change from 0 to 1 [ 1615.534467][ T1037] loop3: p1 p2 p3 p4 [ 1615.539833][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1615.546081][ T1037] loop3: p2 size 1073876736 extends beyond EOD, truncated [ 1615.553302][T31052] loop1: detected capacity change from 0 to 512 [ 1615.562692][T31052] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1615.573791][T31068] loop2: detected capacity change from 0 to 1 [ 1615.576494][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1615.580123][T31039] loop4: detected capacity change from 0 to 1 [ 1615.587125][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1615.601408][T31067] loop3: p1 p2 p3 p4 [ 1615.605840][T31067] loop3: p1 start 10 is beyond EOD, truncated [ 1615.611918][T31067] loop3: p2 size 1073876736 extends beyond EOD, truncated [ 1615.626401][T31067] loop3: p3 start 2127165541 is beyond EOD, truncated 19:16:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ff6ffffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:58 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000010024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1615.633194][T31067] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1615.634266][T31068] loop2: p1 p2 p3 p4 19:16:58 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800825000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:58 executing program 0: sendmsg$NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000035", @ANYRES16=0x0, @ANYBLOB="00012abd7000fddbdf2515000000"], 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x80) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1615.677654][T31068] loop2: p1 start 196618 is beyond EOD, truncated [ 1615.684141][T31068] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1615.691422][T31111] loop1: detected capacity change from 0 to 512 [ 1615.703490][T31068] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1615.710300][T31068] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:16:58 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000400ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1615.738048][T31127] loop3: detected capacity change from 0 to 1 [ 1615.744488][T31126] loop4: detected capacity change from 0 to 1 19:16:58 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$nfs4(0x0, &(0x7f0000000600)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = inotify_init1(0x0) inotify_add_watch(r0, &(0x7f0000000040)='./file0\x00', 0xc100058a) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) mkdirat(r1, &(0x7f0000000000)='./file0\x00', 0x0) fchownat(r1, &(0x7f0000000240)='./file0\x00', 0x0, 0xee00, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1615.804261][T31127] loop3: p1 p2 p3 p4 [ 1615.804786][T31111] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1615.812425][T31127] loop3: p1 start 10 is beyond EOD, truncated [ 1615.818289][ T1037] loop4: p1 p2 p4 [ 1615.824132][T31127] loop3: p2 size 1073876992 extends beyond EOD, truncated [ 1615.838041][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1615.844194][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1615.861289][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1615.868757][T31151] loop2: detected capacity change from 0 to 1 [ 1615.879966][T31127] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1615.886927][T31127] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1615.896498][T31126] loop4: p1 p2 p4 [ 1615.900640][T31126] loop4: p1 start 10 is beyond EOD, truncated [ 1615.906768][T31126] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1615.920873][T31111] loop1: detected capacity change from 0 to 512 [ 1615.924204][T31151] loop2: p1 p2 p3 p4 [ 1615.931224][T31151] loop2: p1 start 262154 is beyond EOD, truncated [ 1615.937686][T31151] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1615.947120][T31126] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1615.947187][T31151] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1615.955344][T31111] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1615.961097][T31151] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:16:58 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000500ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffbffffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:16:58 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000011024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1616.016080][T31126] loop4: detected capacity change from 0 to 1 19:16:58 executing program 0: uname(&(0x7f00000000c0)=""/4096) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000080)={0x0, 0x10001, 0x2d}) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) tkill(0x0, 0x38) uname(&(0x7f00000010c0)=""/23) [ 1616.104529][ T1037] loop4: p1 p2 p4 [ 1616.108481][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1616.114625][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1616.117809][T31195] loop2: detected capacity change from 0 to 1 [ 1616.142434][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1616.153968][T31205] loop1: detected capacity change from 0 to 512 [ 1616.161674][T31205] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1616.174102][T31195] loop2: p1 p2 p3 p4 [ 1616.178452][T31195] loop2: p1 start 327690 is beyond EOD, truncated [ 1616.185011][T31195] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1616.188986][T31206] loop3: detected capacity change from 0 to 1 [ 1616.199339][T31126] loop4: p1 p2 p4 [ 1616.203812][T31126] loop4: p1 start 10 is beyond EOD, truncated [ 1616.209932][T31126] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1616.219471][T31195] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1616.226304][T31195] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1616.244213][T31206] loop3: p1 p2 p3 p4 [ 1616.248355][T31206] loop3: p1 start 10 is beyond EOD, truncated [ 1616.254593][T31206] loop3: p2 size 1073877248 extends beyond EOD, truncated [ 1616.264051][T31206] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1616.270851][T31206] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1616.276629][T31205] loop1: detected capacity change from 0 to 512 [ 1616.290982][T31205] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) 19:16:59 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) clone(0x20900000, &(0x7f0000000080)="fc011743fcbde0ede3070d94df484825c5d37e4b457b8a805361a215ec4f931ff2d1095756bd6dcf15c60e90a2d9ef6e2c2e5abfa49847cdaddfca9f109d8103440d15baf58021ddf82ff36060ce5d8c6c20d326a53d0068566fed878cc7755cee40bc41c31e6b29b68e7f1661beb99a9b42a020dff3d112c9a851c57680e2aa2bdb97a255dd92f64721959dd4fbf9", &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="55f61d7320888286f0223d28090320c3e6afa150da7e4a21f6b91a29d1ec610e9bc1c77d41a88529451a5aec4ff1c9354df158fa4a2a46b4e854eacba51339b126c2c8f95cc667634ace5f80d174e2a07f3c974fcc53cdde8f4fdd750543c619dc9f9cdbdb535bfb39884d7b35ec269a3120e9f3bd6850615e9b06e2bd0511c1e3ae8a275e188ca15c02b3e07c4f0986f0f6ea93003c10aa6a846dff2795fdef1f895e434e9948a597a90e021cfc11106cac39dd56093e6a6fe8c29a6ab5c86ca9e5d8dc2df6cae7344729aa2c26f11afdc188d566900cf3fa17ce34dc14434b5f9e6f5ad287b31cdebfcddf38fd042c5cb61cb1a46a0795e801d40d58331db42dba356a3aaf099cbd1119d79418ea90f2e46430748193e581e75c57ff5b46bbf7d19600bed2f86189859dbdbf4a89a9afbfa54ddb064cb02b2930c045419fbe8c35f9f1ca2b0fdd5ae4263e8e5d95f50ca38c276d079da1fa4a430a6b87c2780ac0923a2e6daf7d2cbe4adb343271df8170546d5bf6dd5516b5a8671177b90ee6f00bc6732485c6bf23a09314644fadf993f55193edc657795fb98ff084c5a99ed387a44efd83eb7864284b1e3783fda3be3d3ae104f5175abba6eae70c8a3f56044a2ed1865ec736bf78bf9b81f9c42989d2bce43a8aa92f7d6cef7dab7136968741dc3709a6f9428d37c005e66b9a09cd6e8521e11856f6ce2dfa0d92bda9c4a384c9906f0917336a05181a6eee13344f982e992d0f696b1a9e86f8673e8fcdf24cba9f61091fadf7444a97bc9c09da62fb4c8e3de85a1f421f3900606b689c81d16ff52ccbc2300dd35b9cdde4f49b1e2b411260c9e3d9549e63033d9eeaeb2916acaff08d8ec437734d0e8b4aa827ac116cb8798fa53747e71cc796400da149ed9516e01f237070a1f758dbad07003fea56f0b9d96d1aa9ef45a64e15756fc28c5217fa511025d8e08a03d22444e5352354f81bdb133b55da2d8ee550609d4099188e3dff2ea0a837dcd70da6bb5f3ff8079621e7bd623da135c4ad43dc73b4b131d470dce7abe35de83f8632622d801b411847b3107db08d5e5603d58a236710bc1e6986afff04d149f61fa32a56fe81dad3cfda7800f6056fcee2db97f80c2cc524631444b095c4cbade9823c5156c8b34bac5503377b2b205fdb08fba749bdcdd3425ac719ed215737048cc71fb83276d9fcc2b4c4041b2c8fba9112aed18965f11bfd86f5f32c337cedcd90ce505a8b2d43d60f76218e72a85447417abdaccf3fb1db192ad504a767503ff0cc4797c89c62914b4ca031e739f899393cf931b5810097335241e77da33b432218fbe9fa59b59c4c5b69e24b11c64b2f05777051c1a79907d186300e5f00c5d2d1f2aef50e6c9216e3480f4954911b8dab6b056c2c1ce7a7e002d0b69a135b3d706805441f9bc8554665724e6d0430d035b425693f9c332c75a6fbac96d900794960a2f2c01381e16ba6efb956805ff92ea02d52603196113778b5a1f1c7a70421cbc91000af0d44c21d8541761f2019c3923300bcf1a597916e3c3106cb7511c816cedfaeec98509646e72feaf5ae516ba382c2e5e214f51ec91d359b7dcdc56246ff2393018569a1947a249abb7d9b831b0af9ed37628306ba6c262f455d21a4750a3b0d280bfa5b4a0e0507d2b9dc719db78cf56725c15820fccec41dec3557683b43154ae47188f0a5ebba41262f4c2fa799eae7446184ceb6f0d65c6e73db16e428cb514dd04eb8a3f8a5a00d661bbe87c4d52e8f02878540682401981ccc96c1f626058a0250d0487704b089cafffcba1d3f71abee2d26ef76219149150558081e851aaf6f814fd38991e63a9eb9e278302fc041218aa282c7c6fc3cbf3827a8c47448eef84ed9ae7a4e35a41ab8d2fc9d81dc97b9272006c4c8a8814d9aded44c48700223471fcd9234dc569878d9d2ed49359b98556790dd4f8d1f0450ec7d5592bf5b14ec2339eb187615c6d28e0c2486a74636fe665f270e1df7cef24cce56a5423a9aff31dbcb023741056b6243de7e68ef24e87da14609949ad894a3139089b81be9c6744c8b8856309b06e1cd2c5f13d1d964b42321d888d2f57fa6bad5dcc1f6ba8213415f451e9ee93087e624daa66a77a5535f0a49e490d9aeb38723276779dba2b86c7960bd3ad415fd4b43f6bd39dc44374eebb347d2a2c6e9f614d3dbbd06571071013c6cc04f8d75aacac51e2280f6b25d338a56b90b9067d7879cc1d6256a99ebd658e28ae82a3e93d4e05cefcffb1e8f488eaa721483be161c384932de1e996e73c9f878b602c04813e87c9c77ca43cb636c35559ff91acb9300ca17073e4520e65eaf874ea47d3fde8728d0938da1c42bb2c07b36919b9e0cd394eb085383a8d5462e37ba61254c8a474bdacc083c63e2977748091b3a41f2ca16b8866bd0ad8c3bb7e6057c1766f9739eae3ab3e4a9e808561b92e20504602de57c726dded9bedc562355108aa0a80c3f45fd75ee3970a4a240435f3bc2f44ce5a1c6c1b45867dc02c0027765407d8b4c29d2fb9f8631974df3923c5141608dda2fc1cde923082dd9771fd16e83e1fc173d42d50e01485eaadf9c66729e751b12ef713999aa02d497bdd5ca182cadb62bc45daaaa0210d7f0fe567eec34b9da6b5f40a0439693f9177472103edc558de43760040d0f8f05130e7e0e0adecd2e97eb1dc69dcc5d4aa7d30e82714bfa5442eca2aac00ce7e39a6ebf754d41b42776211f6c3b1b136056da34088e391fe96b4d12285a48707ec77cd199367195fa4a6f22ebd6cf97beee10c1e3ed278b2865af0eedfcaefd1a5abc36f2fa6df8b9ceb39a5deccfc25f1e1cee20ee298b08741b7ad9cc05e7dcd42515a1dee046ea47d9442f50ba3ca7e5a8aba6a319405c3c0a8a4463fa62fc76db55a68bf6ca35a636ef46482a0f88c8e8f9740a7da1745fb49376f00afb90ffcef7c58c435fa2f3d2c055166d4667fc9410234d96781c858a95c499a3f3e765716c88513c54142f076716172463ce12c41454c92f2b771348a378ee2f49dbccb93b5c0752b0314beb8f70760f4bfbc6629cf4b9d5a4ec5018e1cf24d156b403b3647659f9e7bc2a68563c969764c96d8299fe0921221016461c3efc83a9bed36b5ef31faa72691b496bab96cd1169f67d7e92e1495a1196c13965b73a3ccc138e09dcaf812856406dee540ee20caca1a861b432d8f5218a61403b22178182db54ad89bffbfd1ff37c6ffe81a24c15138f873bee692892c513e281923252b3f0efc3e5e895e35715c2755af1f0361ae27c576d0c856968e3e0e9d3f0313365a45acbfe786bab87f0d222724fafe752b454de816535509ee7f047af8f8612e9a740f34be641e25ebd4c4c491d017ff5a867e9d2c8cec7a13d0203069d49bcb0c1a50065962abd06a6d5158c9bf65c2253eb8ba9dfe84ec76f8dc09d72bf6df6db62c80e932ff0b6dcc1517b7a27a5ee72d87e7ca307af13808812003ea66f55c8c4008533c3fc8e7056e660d4907dc133457c9ccf753856a07b4e79bb26d32578758c8970af77f1fdb488d7311584e3a022107b27aad56b42e217af60f5c6a61b601eaef6e6ff6b42a9ce7b573678d85d0f5d3bc3dee5686c05a5c947f1201392e528bdac83647301e7ffb85029f040c4b1d3b10d73be490724af7108ef0a90d6196f51da053e381c7d3ed6a3b3905181927bb92803731fa26babef78378bbb77c9f6bd62ac1f98782c1f986acb2ef89152e69665279e1f684790b04480fdf6d1fd0d75c892046ed72d494b31acd18498ba1a0ae3389e1cbb3a4c059796875bf14ab118ed3e8b419a2fe3d60bb9276a8bec8615a50c4b76417186eb1e6d0e0a5fde60cfb9f71bdf1ae89f2a24a1748219dc19c9b55e3b10d613ced48f1d6c497b6ea183ee7fa784422fecc58807229a87146a455e149cc80ade84ada988c9889705996a740e6600d3981ead46c5bf3429b45f27d018f716b15ee7cbff01f44b44bb027ce5354700b2d7b13c97585b179010770a070794fa353b4cb7f28cf604cecd8d823235c9feb6f578be54149bab3838cda12ad026c89a5db961ed25356ba52e1b3bb52522669c116a2c91c44d9e4bfe04e5268b3ee4ab5aaeb1cabc7f1ee85538ce2c487eb4e1dda282a07a9ae073296b1afa32fae74fc1013a7d641175df64b992768fbf8fefddad9cb47ee93cb0d0cc174d3ddd7232e1df725c1da2ceaa7f386c57886a09c38ebba3ec9e63b77249b0289e809859e11dee3c74e05135281a42b0f47265e2e5eba069cbec40bf340617816c3d47161102cd5e85f6fdfdfc5023fe744fcb78895b5afed44f763c6015813c712322e789e6985d54b51a88f8293a92ebcca6676c98bfbb5b7dc22890c057d2f21e8ce87c00516d626b7ed48d1c9ae7ba7ff991afbe137ecd77709726de48b42d08a00be1cea4d9b41bbbb70c57e7c3872a3b687269d9109865fd937b036adf1a9a8e8f6c41dbb11eb2d7df8473bbb1698afe3fccab13fedbbbfc43cfbb064541ea9185d8914faa71aa0a71f9e27a461f386a17658e97a4ed0eb593085b1ee195e9af61fb9acd25d3403a6006a78d2ec36dd6569f5179493d8a16342190159d93f6a7d251533eff23e99534b47fbe79baa2ef70872b691fe84665eaef422526e8928f211d32f137005348310ae61f04c0f77fe246f5d9d817ac6089ea8366c80abfc60ce90f46786be359d61ac1e53a338d023cd02810bdfec838346512f3eff126dc7c7a3b6c4fd9c7c63d963243465299a2ce1869c6da74840505e8f762f9fc56470370336bbc0697ff079cc049bdc3940873a3ff7cea9f734fe46b6b7eb7dc7e40edc75934d9128db0414e7d805014619b40661d7d720a7ac968f0fc7ec3b9fd85347b1863068bd1c0cb115c3e397a0ae9487b514fa4be0d5643aac783a516460105741ef084c9237a5bc12396d307b84f4b7365c75eea20df865e0b8db4ba015281b14d034405bca9fe895a5e42e512aa88b0f3d5df7abec9085d2099b8abb58a3e318865e684f9bb444ea9d49bb5a7227efecacea6b6e98ff901d6fd6c429d6ab1c3256735f6ba7b0a0822efbe5174c9899ba5b33317cf9bcc1fcbea83bbcce7e35abf64849e50fd604ea7c2e7625608c2681aa5383b1987fb44aeb3b0849ab0b4d1e5c74bd0728201560cf5d649c7ced15fcb32400b7dd3601d1dfcbbe0e57c91593c5cd0a0b9fb480da6fd698483e5ad8687158f56d4b54102a650726ea04a1841b88be0dd884e56858ae33842b28f35f28f96307efc68e7aa59116b411b16ca161f2a04bf79c4629a918a0bcf52af736e4d2f88eac7b6f55f2c03b06e9647bc8d4e17e510c20063fa1abcf63eb9411e2dc44cdf00020078ba8f9f9f2d7798831a009d478a8530c3ead866b9f116cdefcdc82d53f43a8cc39f6c8b6a8464091d19cbf0a2e6f14a95a18f04c0d918f30a033d6ea5c00cef9c9b1ebf83b4f8471addd9a4d71cac044f4bde44a426aa3c6e0fc3df4cca033beda273cdaa7af27825f55952a68b844b91e163b373a8037cf6a9aabedff731fb6c84bcd5ff960fd4b8e0a5439e246554ed2102583048e2214cba6af95b98d8ee605a0196ee90600060e9f3d6ef571c124b7345eca20c106f62810792ff64e28e364ee784e08e89b500695d4c9dc77d0404a7f316d4004a8fb9ca9309c9770e5d30cd1948678a104077cda32741159b090473df7c17120ad6aeda0bc1215fda2af05f78dd76f4c4edbc3690cbd8b0c0cd11d5f9c81aaa16c013d46aa45c55e0c9da8a6e7e") [ 1616.302785][T31126] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:16:59 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000600ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:59 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000012024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:59 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffeffffff0000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1616.377450][T31262] loop3: detected capacity change from 0 to 1 [ 1616.398673][T31263] loop1: detected capacity change from 0 to 512 [ 1616.405302][T31262] loop3: p1 p2 p3 p4 [ 1616.405652][T31265] loop2: detected capacity change from 0 to 1 [ 1616.409461][T31262] loop3: p1 start 10 is beyond EOD, truncated 19:16:59 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800826000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1616.421482][T31262] loop3: p2 size 1073877504 extends beyond EOD, truncated [ 1616.445214][T31263] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1616.455379][T31262] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1616.462186][T31262] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1616.519646][T31281] loop4: detected capacity change from 0 to 1 [ 1616.554111][T31265] loop2: p1 p2 p3 p4 [ 1616.558444][T31265] loop2: p1 start 393226 is beyond EOD, truncated [ 1616.564904][T31265] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1616.598788][T31265] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1616.605636][T31265] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1616.614369][ T1037] loop4: p1 p2 p4 [ 1616.618563][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1616.624694][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1616.642760][T31263] loop1: detected capacity change from 0 to 512 19:16:59 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000013024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:59 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1616.650759][T31263] EXT4-fs (loop1): bad geometry: first data block 255 is beyond end of filesystem (128) [ 1616.664413][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:16:59 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000000200000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1616.701356][T31310] loop3: detected capacity change from 0 to 1 [ 1616.708993][T31281] loop4: p1 p2 p4 [ 1616.712922][T31281] loop4: p1 start 10 is beyond EOD, truncated [ 1616.719117][T31281] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:16:59 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000700ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:59 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) tkill(0xffffffffffffffff, 0x38) [ 1616.764066][T31310] loop3: p1 p2 p3 p4 [ 1616.768256][T31310] loop3: p1 start 10 is beyond EOD, truncated [ 1616.774374][T31310] loop3: p2 size 1073877760 extends beyond EOD, truncated [ 1616.793091][T31327] loop1: detected capacity change from 0 to 512 [ 1616.820360][T31331] loop2: detected capacity change from 0 to 1 [ 1616.826934][T31281] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1616.838503][T31327] EXT4-fs (loop1): fragment/cluster size (2048) != block size (4096) [ 1616.847194][T31310] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1616.854057][T31310] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1616.874020][T31331] loop2: p1 p2 p3 p4 [ 1616.879439][T31331] loop2: p1 start 458762 is beyond EOD, truncated [ 1616.885929][T31331] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1616.893997][T31331] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1616.900811][T31331] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:16:59 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000214024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1616.936714][T31327] loop1: detected capacity change from 0 to 512 19:16:59 executing program 0: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f00000000c0)={0x0, 0x80, 0x40, 0xac, 0x1, 0x3f, 0x0, 0x2, 0x106, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, @perf_bp={&(0x7f0000000080), 0x2}, 0xc808, 0x100000001, 0x9, 0x9, 0x0, 0x74800000, 0x4, 0x0, 0x400, 0x0, 0x7fff}) 19:16:59 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000800ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:16:59 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180082e000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1616.977331][T31327] EXT4-fs (loop1): fragment/cluster size (2048) != block size (4096) [ 1617.014848][T31372] loop3: detected capacity change from 0 to 1 [ 1617.029856][T31379] loop2: detected capacity change from 0 to 1 [ 1617.029971][T31378] loop4: detected capacity change from 0 to 1 [ 1617.069016][T31372] loop3: p1 p2 p3 p4 [ 1617.073479][T31372] loop3: p1 start 10 is beyond EOD, truncated 19:16:59 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000000300000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1617.079597][T31372] loop3: p2 size 1073878018 extends beyond EOD, truncated [ 1617.097561][T31378] loop4: p1 p2 p4 [ 1617.104329][T31379] loop2: p1 p2 p3 p4 [ 1617.105561][T31378] loop4: p1 start 10 is beyond EOD, truncated [ 1617.108415][T31379] loop2: p1 start 524298 is beyond EOD, truncated [ 1617.114435][T31378] loop4: p2 size 1073872896 extends beyond EOD, [ 1617.120831][T31379] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1617.129021][T31379] loop2: p3 start 2127165541 is beyond EOD, [ 1617.134365][T31378] truncated [ 1617.143445][T31379] truncated [ 1617.146600][T31379] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1617.150690][T31372] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1617.158394][T31378] loop4: p4 size 3657465856 extends beyond EOD, [ 1617.160575][T31372] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1617.166958][T31378] truncated 19:17:00 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000900ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1617.184827][T31398] loop1: detected capacity change from 0 to 512 [ 1617.214762][T31398] EXT4-fs (loop1): bad block size 8192 [ 1617.245177][T31378] loop4: detected capacity change from 0 to 1 [ 1617.271991][T31398] loop1: detected capacity change from 0 to 512 [ 1617.273979][T31378] loop4: p1 p2 p4 [ 1617.280405][T31398] EXT4-fs (loop1): bad block size 8192 19:17:00 executing program 0: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a3b2900ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:00 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000001a024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:00 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000000400000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1617.294542][T31378] loop4: p1 start 10 is beyond EOD, truncated [ 1617.300642][T31378] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1617.328180][T31422] loop2: detected capacity change from 0 to 1 19:17:00 executing program 0: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a3b2900ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1617.382662][T31378] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1617.385432][T31434] loop3: detected capacity change from 0 to 1 [ 1617.396516][T31422] loop2: p1 p2 p3 p4 [ 1617.401005][T31422] loop2: p1 start 589834 is beyond EOD, truncated [ 1617.407484][T31422] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1617.409895][T31433] loop1: detected capacity change from 0 to 512 [ 1617.415699][T31422] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:00 executing program 0: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a3b2900ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1617.427658][T31422] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1617.433833][T31433] EXT4-fs (loop1): bad block size 16384 [ 1617.458367][ T1037] loop2: p1 p2 p3 p4 [ 1617.462481][ T1037] loop2: p1 start 589834 is beyond EOD, truncated [ 1617.468954][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1617.484001][T31434] loop3: p1 p2 p3 p4 [ 1617.488438][T31434] loop3: p1 start 10 is beyond EOD, truncated [ 1617.491434][T31433] loop1: detected capacity change from 0 to 512 [ 1617.494558][T31434] loop3: p2 size 1073879552 extends beyond EOD, truncated [ 1617.501344][T31433] EXT4-fs (loop1): bad block size 16384 [ 1617.522102][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:00 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800830000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:00 executing program 0: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f00000024c0), 0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) vmsplice(r0, &(0x7f0000002440)=[{&(0x7f0000000080)="45420ba3e31ff086b6fe17c9c38ab7317a3793554a7d6c25625204a2f42941e3ee49ab10d8af1495c65af1c8733fd634521afa7b218bf43ce9b2ae9bc63121f4be7031cf220406b85138007a956a39b759244c5579ddf7e9bc0df15a2f9a", 0x5e}, {&(0x7f0000000100)="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", 0x1000}, {&(0x7f0000001100)="be979b2d44cbf7c50c5dcaeb6025a491ad64a436683dfb90436714bbf96ba8759f2276dd4579dfb1c99f6bec042b322c5da46bb59f7cf0cb8b196035e69da33066afa81f56d38ca1fb9732ef5b4b83132fbd0a7a603afa8cb895904580c9e03a6e801ae13c144cd2f8d40e711b3d51ac182937f42a61b1c0328b6039463a4d167139c1f659b3828924bf3d4b62ac8a024a55ef1e46278a951635d9b23e2649e6f8d461c714118ab9d62f", 0xaa}, {&(0x7f00000011c0)="0d11b0f6345defdb1b23c400688dc00c5494ba45d4f1e165f743e4e676c117e1d43fd18617b29467d06620727ea4af6cf9b5f63360ad63cf44d8881e92ff976db7baa402a49fca2af170fb058c37", 0x4e}, {&(0x7f0000001240)="26a6329f143fe9c1b39593076708709d57f47e645a9530907c27b1249a63aefd66d875288786e333b0cb40ef997807d7370f51ff8c611608d530ceb109b0a44fa2f88614d19e203bdc941f1eca85b3", 0x4f}, {&(0x7f00000012c0)="67e62e5fbea1c2b22517f77eda0d2fc8cf19a6b4387d7ceb882199d64ccfbf0ecb4cc0ba1520c79c97cedd5f2f3b13d51e2c96c54ca58424d8dd20609d0f884920e44b314dca0fb0bc51dc83c8bd89bd0ac49bdcb46cdb0597f56e971b37b7a9000bee22a5465bed25011c9651c91b204b715836c727005b1f339201772e77edbaf462da3f8eab6699932cfc03825cd2d6382016c7666b5a8441d1563918fbf1f8b69a84d7f28fe22ea7c621cf4d56310175672e4d26a023bbcceb1cbbd53f4f1baf5b3862c93c8abcb49b3b983a9dcf9e054ea87effe8", 0xd7}, {&(0x7f00000013c0)="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", 0x1000}, {&(0x7f00000023c0)="c4530777387dfa66ac86ad85d282fddb709fe6748fb1fa3187e381ba19e4ba89599093eddf4bde86f70c16a53c8fa7f3a9e9b73c977c0ba38c3e1c9810145bcab3022cf6f78f7066", 0x48}], 0x8, 0x9) 19:17:00 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000000600000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:00 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000a00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1617.528998][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1617.536451][T31434] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1617.543237][T31434] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:00 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000020024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1617.609309][T31476] loop1: detected capacity change from 0 to 512 [ 1617.638177][T31476] EXT4-fs (loop1): bad block size 65536 19:17:00 executing program 0 (fault-call:6 fault-nth:0): r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x0, 0x0, 0x0) [ 1617.653728][T31490] loop4: detected capacity change from 0 to 1 [ 1617.654988][T31487] loop2: detected capacity change from 0 to 1 [ 1617.693962][ T1037] loop4: p1 p2 p4 [ 1617.697888][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1617.700187][T31488] loop3: detected capacity change from 0 to 1 [ 1617.704013][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1617.723987][T31487] loop2: p1 p2 p3 p4 [ 1617.728453][T31487] loop2: p1 start 655370 is beyond EOD, truncated [ 1617.734973][T31487] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1617.750041][T31476] loop1: detected capacity change from 0 to 512 [ 1617.756968][T31476] EXT4-fs (loop1): bad block size 65536 [ 1617.761789][T31487] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1617.769346][T31487] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1617.783149][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1617.790678][T31488] loop3: p1 p2 p3 p4 [ 1617.796504][T31490] loop4: p1 p2 p4 [ 1617.800498][T31488] loop3: p1 start 10 is beyond EOD, truncated [ 1617.806622][T31488] loop3: p2 size 1073881088 extends beyond EOD, truncated [ 1617.815041][T31490] loop4: p1 start 10 is beyond EOD, truncated [ 1617.821134][T31490] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:00 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000b00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:00 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000000700000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:00 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x0, 0x0, 0x0) [ 1617.855855][T31488] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1617.862715][T31488] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1617.877335][T31490] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:00 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000024024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1617.917336][T31528] loop2: detected capacity change from 0 to 1 [ 1617.922667][T31535] loop1: detected capacity change from 0 to 512 [ 1617.943874][T31535] EXT4-fs (loop1): Invalid log block size: 7 [ 1617.954635][T31528] loop2: p1 p2 p3 p4 [ 1617.959588][T31528] loop2: p1 start 720906 is beyond EOD, truncated [ 1617.966084][T31528] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1617.983786][T31490] loop4: detected capacity change from 0 to 1 [ 1617.995266][T31541] loop3: detected capacity change from 0 to 1 [ 1618.002702][T31528] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1618.009568][T31528] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1618.010791][T31535] loop1: detected capacity change from 0 to 512 [ 1618.023263][T31490] loop4: p1 p2 p4 [ 1618.028401][T31490] loop4: p1 start 10 is beyond EOD, truncated [ 1618.028564][T31535] EXT4-fs (loop1): Invalid log block size: 7 [ 1618.034557][T31490] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1618.049119][T31541] loop3: p1 p2 p3 p4 [ 1618.053930][T31541] loop3: p1 start 10 is beyond EOD, truncated [ 1618.060037][T31541] loop3: p2 size 1073882112 extends beyond EOD, truncated 19:17:00 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000000800000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1618.101079][T31541] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1618.107967][T31541] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1618.119603][ T1037] loop2: p1 p2 p3 p4 [ 1618.124100][ T1037] loop2: p1 start 720906 is beyond EOD, truncated [ 1618.130529][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1618.143766][T31490] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1618.161540][T31571] loop1: detected capacity change from 0 to 512 [ 1618.184129][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1618.190921][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1618.202084][T31571] EXT4-fs (loop1): Invalid log block size: 8 19:17:01 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800848000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:01 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000c00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:01 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000025024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1618.269935][T31571] loop1: detected capacity change from 0 to 512 [ 1618.277416][T31571] EXT4-fs (loop1): Invalid log block size: 8 19:17:01 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000000a00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1618.316205][T31594] loop3: detected capacity change from 0 to 1 [ 1618.322590][T31595] loop2: detected capacity change from 0 to 1 [ 1618.347965][T31599] loop4: detected capacity change from 0 to 1 [ 1618.376991][T31594] loop3: p1 p2 p3 p4 [ 1618.382882][T31594] loop3: p1 start 10 is beyond EOD, truncated [ 1618.389009][T31594] loop3: p2 size 1073882368 extends beyond EOD, truncated [ 1618.397760][ T1037] loop2: p1 p2 p3 p4 [ 1618.401704][T31599] loop4: p1 p2 p4 [ 1618.402065][ T1037] loop2: p1 start 786442 is beyond EOD, truncated [ 1618.407147][T31599] loop4: p1 start 10 is beyond EOD, [ 1618.411946][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1618.417649][ T1037] loop2: p3 start 2127165541 is beyond EOD, [ 1618.419521][T31599] truncated [ 1618.426621][ T1037] truncated [ 1618.432583][T31599] loop4: p2 size 1073872896 extends beyond EOD, [ 1618.435720][ T1037] loop2: p4 size 3657465856 extends beyond EOD, [ 1618.438819][T31599] truncated [ 1618.454613][ T1037] truncated [ 1618.457984][T31594] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1618.464935][T31594] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1618.465943][T31595] loop2: p1 p2 p3 p4 19:17:01 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x2000, 0x0, 0x0, 0x0, 0x0) [ 1618.473820][T31599] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1618.487368][T31608] loop1: detected capacity change from 0 to 512 [ 1618.489917][T31595] loop2: p1 start 786442 is beyond EOD, truncated [ 1618.495259][T31608] EXT4-fs (loop1): Invalid log block size: 10 [ 1618.500214][T31595] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1618.520854][T31595] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1618.527719][T31595] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1618.555425][T31608] loop1: detected capacity change from 0 to 512 [ 1618.564042][T31608] EXT4-fs (loop1): Invalid log block size: 10 19:17:01 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000026024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1618.595571][T31599] loop4: detected capacity change from 0 to 1 [ 1618.633812][T31599] loop4: p1 p2 p4 19:17:01 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000000f00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:01 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000d00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1618.642730][T31599] loop4: p1 start 10 is beyond EOD, truncated [ 1618.648898][T31599] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1618.652913][T31644] loop3: detected capacity change from 0 to 1 [ 1618.708296][T31652] loop1: detected capacity change from 0 to 512 [ 1618.714915][T31644] loop3: p1 p2 p3 p4 [ 1618.719072][T31644] loop3: p1 start 10 is beyond EOD, truncated [ 1618.725234][T31644] loop3: p2 size 1073882624 extends beyond EOD, truncated [ 1618.744368][T31652] EXT4-fs (loop1): Invalid log block size: 15 [ 1618.758263][T31656] loop2: detected capacity change from 0 to 1 [ 1618.768210][T31644] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1618.775049][T31644] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1618.785187][T31599] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:01 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180084c000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1618.823746][ T1037] loop2: p1 p2 p3 p4 [ 1618.827992][ T1037] loop2: p1 start 851978 is beyond EOD, truncated [ 1618.834557][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1618.850768][T31652] loop1: detected capacity change from 0 to 512 [ 1618.857458][T31652] EXT4-fs (loop1): Invalid log block size: 15 [ 1618.865878][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:01 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000002e024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1618.872661][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1618.886063][T31656] loop2: p1 p2 p3 p4 [ 1618.890349][T31656] loop2: p1 start 851978 is beyond EOD, truncated [ 1618.896836][T31656] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1618.915501][T31685] loop4: detected capacity change from 0 to 1 19:17:01 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000001000000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1618.925010][T31656] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1618.931886][T31656] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1618.951311][T31687] loop3: detected capacity change from 0 to 1 [ 1618.961707][T31692] loop1: detected capacity change from 0 to 512 [ 1618.963704][T31685] loop4: p1 p2 p4 19:17:01 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000e00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1618.971798][T31685] loop4: p1 start 10 is beyond EOD, truncated [ 1618.978003][T31685] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1618.986077][T31685] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1618.991579][T31692] EXT4-fs (loop1): Invalid log block size: 16 [ 1619.004265][T31687] loop3: p1 p2 p3 p4 [ 1619.011589][T31687] loop3: p1 start 10 is beyond EOD, truncated [ 1619.017727][T31687] loop3: p2 size 1073884672 extends beyond EOD, truncated 19:17:01 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x0, 0x0, 0x0) 19:17:01 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000001200000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1619.057960][T31687] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1619.064885][T31687] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1619.078076][T31692] loop1: detected capacity change from 0 to 512 [ 1619.084949][T31692] EXT4-fs (loop1): Invalid log block size: 16 [ 1619.087864][T31685] loop4: detected capacity change from 0 to 1 [ 1619.098260][T31713] loop2: detected capacity change from 0 to 1 19:17:01 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000003f024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1619.137852][T31713] loop2: p1 p2 p3 p4 [ 1619.142167][ T1037] loop4: p1 p2 p4 [ 1619.155656][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1619.161844][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1619.170062][T31713] loop2: p1 start 917514 is beyond EOD, truncated [ 1619.176613][T31713] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1619.213499][T31736] loop1: detected capacity change from 0 to 512 [ 1619.229163][T31741] loop3: detected capacity change from 0 to 1 [ 1619.235801][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1619.243349][T31736] EXT4-fs (loop1): Invalid log block size: 18 [ 1619.255005][T31713] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1619.261845][T31713] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1619.279003][T31685] loop4: p1 p2 p4 [ 1619.283222][T31685] loop4: p1 start 10 is beyond EOD, truncated [ 1619.289373][T31685] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1619.320117][T31685] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1619.328600][T31741] loop3: p1 p2 p3 p4 [ 1619.333034][T31741] loop3: p1 start 10 is beyond EOD, truncated [ 1619.339202][T31741] loop3: p2 size 1073889024 extends beyond EOD, truncated [ 1619.349617][T31736] loop1: detected capacity change from 0 to 512 [ 1619.358789][T31736] EXT4-fs (loop1): Invalid log block size: 18 19:17:02 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000f00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1619.408400][T31741] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1619.415246][T31741] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1619.425155][ T1037] loop3: p1 p2 p3 p4 [ 1619.429305][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1619.431766][T31767] loop2: detected capacity change from 0 to 1 [ 1619.435554][ T1037] loop3: p2 size 1073889024 extends beyond EOD, truncated [ 1619.448821][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated 19:17:02 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800854000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:02 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000001400000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1619.455972][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:02 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000040024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1619.504059][T31767] loop2: p1 p2 p3 p4 [ 1619.513303][T31767] loop2: p1 start 983050 is beyond EOD, truncated [ 1619.519787][T31767] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1619.541597][T31785] loop1: detected capacity change from 0 to 512 [ 1619.563383][T31785] EXT4-fs (loop1): Invalid log block size: 20 [ 1619.574062][T31787] loop4: detected capacity change from 0 to 1 [ 1619.583987][T31767] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1619.590767][T31767] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1619.613567][T31787] loop4: p1 p2 p4 [ 1619.617472][T31787] loop4: p1 start 10 is beyond EOD, truncated [ 1619.623718][T31787] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1619.633274][T31785] loop1: detected capacity change from 0 to 512 [ 1619.633382][T31798] loop3: detected capacity change from 0 to 1 [ 1619.641398][T31787] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1619.684789][T31785] EXT4-fs (loop1): Invalid log block size: 20 [ 1619.685073][T31798] loop3: p1 p2 p3 p4 [ 1619.716148][T31787] loop4: detected capacity change from 0 to 1 19:17:02 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a001000ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1619.741655][T31798] loop3: p1 start 10 is beyond EOD, truncated [ 1619.747848][T31798] loop3: p2 size 1073889280 extends beyond EOD, truncated [ 1619.755720][T31787] loop4: p1 p2 p4 [ 1619.761398][T31787] loop4: p1 start 10 is beyond EOD, truncated [ 1619.767575][T31787] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:02 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000641e00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1619.790016][T31825] loop2: detected capacity change from 0 to 1 [ 1619.804939][T31798] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1619.811794][T31798] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1619.824629][T31787] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1619.834169][T31825] loop2: p1 p2 p3 p4 [ 1619.838455][T31825] loop2: p1 start 1048586 is beyond EOD, truncated [ 1619.841374][T31831] loop1: detected capacity change from 0 to 512 [ 1619.844996][T31825] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1619.852810][T31825] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1619.865213][T31825] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:02 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800855000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:02 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000080040024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:02 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a001100ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1619.915147][ T1037] loop4: p1 p2 p4 [ 1619.919143][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1619.925325][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1619.933406][T31831] EXT4-fs (loop1): Invalid log block size: 30 [ 1619.942134][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1620.000170][T31857] loop3: detected capacity change from 0 to 1 [ 1620.015145][T31858] loop2: detected capacity change from 0 to 1 [ 1620.018908][T31856] loop4: detected capacity change from 0 to 1 [ 1620.027670][T31831] loop1: detected capacity change from 0 to 512 19:17:02 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x2, 0x0, 0x0, 0x0) [ 1620.063717][T31858] loop2: p1 p2 p3 p4 [ 1620.067832][T31857] loop3: p1 p2 p3 p4 [ 1620.072056][T31858] loop2: p1 start 1114122 is beyond EOD, truncated [ 1620.078621][T31858] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1620.086159][T31831] EXT4-fs (loop1): Invalid log block size: 30 [ 1620.087345][ T1037] loop4: p1 p2 p4 [ 1620.096669][T31857] loop3: p1 start 10 is beyond EOD, truncated [ 1620.102814][T31857] loop3: p2 start 134217728 is beyond EOD, truncated 19:17:02 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000641f00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1620.109630][T31857] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1620.116451][T31857] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1620.128157][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1620.134297][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1620.152260][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1620.169607][T31858] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1620.176530][T31858] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1620.187771][T31880] loop1: detected capacity change from 0 to 512 [ 1620.195733][T31856] loop4: p1 p2 p4 [ 1620.199883][T31856] loop4: p1 start 10 is beyond EOD, truncated [ 1620.206081][T31856] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1620.209522][T31880] EXT4-fs (loop1): Invalid log block size: 31 19:17:03 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a001200ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:03 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000048024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1620.241162][T31856] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1620.252512][T31880] loop1: detected capacity change from 0 to 512 [ 1620.260899][T31880] EXT4-fs (loop1): Invalid log block size: 31 19:17:03 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000002000000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1620.308461][T31909] loop3: detected capacity change from 0 to 1 [ 1620.315075][T31907] loop2: detected capacity change from 0 to 1 [ 1620.341277][T31856] loop4: detected capacity change from 0 to 1 [ 1620.363542][T31909] loop3: p1 p2 p3 p4 [ 1620.367809][T31909] loop3: p1 start 10 is beyond EOD, truncated [ 1620.373948][T31909] loop3: p2 size 1073891328 extends beyond EOD, truncated [ 1620.374447][T31907] loop2: p1 p2 p3 p4 [ 1620.386616][T31856] loop4: p1 p2 p4 [ 1620.390732][T31856] loop4: p1 start 10 is beyond EOD, truncated [ 1620.396869][T31856] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1620.403576][T31909] loop3: p3 start 2127165541 is beyond EOD, truncated 19:17:03 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800860000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1620.410744][T31909] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1620.418667][T31856] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1620.426615][T31907] loop2: p1 start 1179658 is beyond EOD, truncated [ 1620.433138][T31907] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1620.443550][ T1037] loop4: p1 p2 p4 [ 1620.447393][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1620.453505][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:03 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000004c024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1620.465825][T31929] loop1: detected capacity change from 0 to 512 [ 1620.474248][T31907] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1620.481143][T31907] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1620.490603][T31929] EXT4-fs (loop1): Invalid log block size: 32 [ 1620.493694][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:03 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642000000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1620.550652][T31929] loop1: detected capacity change from 0 to 512 [ 1620.562443][T31929] EXT4-fs (loop1): Invalid log block size: 32 19:17:03 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a001300ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1620.630785][T31962] loop1: detected capacity change from 0 to 512 [ 1620.631554][T31949] loop3: detected capacity change from 0 to 1 [ 1620.645189][T31964] loop4: detected capacity change from 0 to 1 [ 1620.658857][T31962] EXT4-fs (loop1): Invalid log block size: 32 [ 1620.666241][T31969] loop2: detected capacity change from 0 to 1 [ 1620.708127][T31964] loop4: p1 p2 p4 [ 1620.712115][T31964] loop4: p1 start 10 is beyond EOD, truncated [ 1620.718263][T31964] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1620.735994][T31949] loop3: p1 p2 p3 p4 [ 1620.742848][T31969] loop2: p1 p2 p3 p4 [ 1620.745910][T31949] loop3: p1 start 10 is beyond EOD, truncated 19:17:03 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x7, 0x0, 0x0, 0x0) [ 1620.748294][T31969] loop2: p1 start 1245194 is beyond EOD, truncated [ 1620.752935][T31949] loop3: p2 size 1073892352 extends beyond EOD, truncated [ 1620.759464][T31969] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1620.760580][T31962] loop1: detected capacity change from 0 to 512 [ 1620.781268][T31964] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1620.781669][T31962] EXT4-fs (loop1): Invalid log block size: 32 [ 1620.795116][T31969] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1620.801922][T31969] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1620.840579][T31949] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1620.847569][T31949] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:03 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a002400ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:03 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:03 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000060024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1620.897118][T31964] loop4: detected capacity change from 0 to 1 [ 1620.952264][T32005] loop2: detected capacity change from 0 to 1 [ 1621.003826][T32005] loop2: p1 p2 p3 p4 [ 1621.008137][T32005] loop2: p1 start 2359306 is beyond EOD, truncated [ 1621.013865][T31964] loop4: p1 p2 p4 [ 1621.014687][T32005] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1621.033407][T32005] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1621.038660][T32008] loop3: detected capacity change from 0 to 1 [ 1621.040205][T32005] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1621.054211][T32018] loop1: detected capacity change from 0 to 512 [ 1621.056627][T31964] loop4: p1 start 10 is beyond EOD, truncated [ 1621.066573][T31964] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1621.075289][T32018] EXT4-fs (loop1): Invalid log block size: 33 [ 1621.095153][T31964] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1621.108913][T32008] loop3: p1 p2 p3 p4 [ 1621.113393][T32008] loop3: p1 start 10 is beyond EOD, truncated [ 1621.119535][T32008] loop3: p2 size 1073897472 extends beyond EOD, truncated [ 1621.128731][ T1037] loop4: p1 p2 p4 [ 1621.132746][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1621.138859][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1621.147416][T32008] loop3: p3 start 2127165541 is beyond EOD, truncated 19:17:03 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a002500ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:03 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800863000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1621.154251][T32008] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1621.164800][T32018] loop1: detected capacity change from 0 to 512 [ 1621.175967][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1621.183576][T32018] EXT4-fs (loop1): Invalid log block size: 33 [ 1621.201127][T32041] loop2: detected capacity change from 0 to 1 19:17:04 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000002200000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1621.253849][T32041] loop2: p1 p2 p3 p4 19:17:04 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xf, 0x0, 0x0, 0x0) 19:17:04 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000068024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1621.285537][T32041] loop2: p1 start 2424842 is beyond EOD, truncated [ 1621.292102][T32041] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1621.305882][T32055] loop1: detected capacity change from 0 to 512 [ 1621.313546][T32055] EXT4-fs (loop1): Invalid log block size: 34 [ 1621.343045][T32041] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1621.349955][T32041] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1621.380302][T32062] loop4: detected capacity change from 0 to 1 [ 1621.393587][T32055] loop1: detected capacity change from 0 to 512 [ 1621.400648][T32055] EXT4-fs (loop1): Invalid log block size: 34 [ 1621.407660][T32069] loop3: detected capacity change from 0 to 1 [ 1621.433343][T32069] loop3: p1 p2 p3 p4 [ 1621.439245][T32069] loop3: p1 start 10 is beyond EOD, truncated [ 1621.445362][T32069] loop3: p2 size 1073899520 extends beyond EOD, truncated [ 1621.453037][T32062] loop4: p1 p2 p4 [ 1621.457673][T32062] loop4: p1 start 10 is beyond EOD, truncated [ 1621.463939][T32062] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1621.475445][T32069] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1621.482239][T32069] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:04 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642200000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:04 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a002600ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1621.501755][T32062] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1621.530254][T32094] loop1: detected capacity change from 0 to 512 [ 1621.538214][ T1037] loop4: p1 p2 p4 [ 1621.542097][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1621.548224][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1621.561179][T32094] EXT4-fs (loop1): Invalid log block size: 34 [ 1621.561923][T32097] loop2: detected capacity change from 0 to 1 [ 1621.577112][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:04 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000006c024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:04 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800868000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1621.623624][T32097] loop2: p1 p2 p3 p4 [ 1621.628040][T32097] loop2: p1 start 2490378 is beyond EOD, truncated [ 1621.631290][T32094] loop1: detected capacity change from 0 to 512 [ 1621.634641][T32097] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1621.641364][T32094] EXT4-fs (loop1): Invalid log block size: 34 [ 1621.721798][T32097] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1621.728763][T32097] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:04 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000002300000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1621.763460][T32124] loop3: detected capacity change from 0 to 1 [ 1621.770222][T32125] loop4: detected capacity change from 0 to 1 [ 1621.793299][T32124] loop3: p1 p2 p3 p4 [ 1621.797562][T32124] loop3: p1 start 10 is beyond EOD, truncated [ 1621.803686][T32124] loop3: p2 size 1073900544 extends beyond EOD, truncated 19:17:04 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a002e00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1621.811862][T32125] loop4: p1 p2 p4 [ 1621.815969][T32125] loop4: p1 start 10 is beyond EOD, truncated [ 1621.822065][T32125] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1621.830445][T32125] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1621.854837][T32142] loop1: detected capacity change from 0 to 512 [ 1621.870924][T32124] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1621.877800][T32124] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1621.890080][T32142] EXT4-fs (loop1): Invalid log block size: 35 [ 1621.890829][T32147] loop2: detected capacity change from 0 to 1 [ 1621.934543][ T1037] loop3: p1 p2 p3 p4 [ 1621.938958][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1621.945071][ T1037] loop3: p2 size 1073900544 extends beyond EOD, truncated [ 1621.953299][T32147] loop2: p1 p2 p3 p4 [ 1621.957460][T32147] loop2: p1 start 3014666 is beyond EOD, truncated [ 1621.964042][T32147] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1621.972635][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1621.979466][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1621.987286][T32147] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1621.994184][T32147] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1621.999444][T32142] loop1: detected capacity change from 0 to 512 [ 1622.007818][T32125] loop4: detected capacity change from 0 to 1 [ 1622.018735][T32142] EXT4-fs (loop1): Invalid log block size: 35 19:17:04 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642300000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:04 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a004800ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:04 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000074024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1622.053399][T32125] loop4: p1 p2 p4 [ 1622.060817][T32125] loop4: p1 start 10 is beyond EOD, truncated [ 1622.066952][T32125] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1622.078634][T32125] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1622.097405][T32183] loop1: detected capacity change from 0 to 512 19:17:04 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x10, 0x0, 0x0, 0x0) 19:17:04 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180086c000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1622.119221][T32183] EXT4-fs (loop1): Invalid log block size: 35 [ 1622.128516][T32194] loop3: detected capacity change from 0 to 1 [ 1622.143204][T32196] loop2: detected capacity change from 0 to 1 19:17:04 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000002400000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1622.201417][T32194] loop3: p1 p2 p3 p4 [ 1622.208967][T32194] loop3: p1 start 10 is beyond EOD, truncated [ 1622.215110][T32194] loop3: p2 size 1073902592 extends beyond EOD, truncated [ 1622.231148][ T1037] loop2: p1 p2 p3 p4 [ 1622.238698][T32207] loop1: detected capacity change from 0 to 512 [ 1622.241735][T32194] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1622.246479][T32207] EXT4-fs (loop1): Invalid log block size: 36 [ 1622.251808][T32194] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1622.261180][ T1037] loop2: p1 start 4718602 is beyond EOD, truncated [ 1622.271503][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1622.273676][T32215] loop4: detected capacity change from 0 to 1 [ 1622.285197][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1622.291982][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1622.303525][T32215] loop4: p1 p2 p4 [ 1622.307589][T32215] loop4: p1 start 10 is beyond EOD, truncated [ 1622.313738][T32215] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1622.323268][T32196] loop2: p1 p2 p3 p4 [ 1622.327358][T32196] loop2: p1 start 4718602 is beyond EOD, truncated [ 1622.334009][T32196] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1622.343200][T32207] loop1: detected capacity change from 0 to 512 19:17:05 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000007a024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:05 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642400000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1622.354302][T32207] EXT4-fs (loop1): Invalid log block size: 36 [ 1622.363594][T32196] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1622.370370][T32196] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1622.393313][T32215] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1622.417279][T32240] loop3: detected capacity change from 0 to 1 [ 1622.447004][T32246] loop1: detected capacity change from 0 to 512 [ 1622.456041][T32246] EXT4-fs (loop1): Invalid log block size: 36 [ 1622.459964][T32215] loop4: detected capacity change from 0 to 1 [ 1622.469198][T32240] loop3: p1 p2 p3 p4 [ 1622.473861][T32240] loop3: p1 start 10 is beyond EOD, truncated [ 1622.479981][T32240] loop3: p2 size 1073904128 extends beyond EOD, truncated [ 1622.507251][T32246] loop1: detected capacity change from 0 to 512 19:17:05 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a004c00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1622.515635][T32246] EXT4-fs (loop1): Invalid log block size: 36 [ 1622.532379][T32240] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1622.539220][T32240] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1622.546795][T32215] loop4: p1 p2 p4 [ 1622.550729][T32215] loop4: p1 start 10 is beyond EOD, truncated [ 1622.556913][T32215] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:05 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000002500000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1622.559330][T32266] loop2: detected capacity change from 0 to 1 [ 1622.567185][T32215] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:05 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180086e000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:05 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000480024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1622.665293][T32266] loop2: p1 p2 p3 p4 [ 1622.670501][T32266] loop2: p1 start 4980746 is beyond EOD, truncated [ 1622.677061][T32266] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1622.690664][T32282] loop1: detected capacity change from 0 to 512 [ 1622.698056][T32282] EXT4-fs (loop1): Invalid log block size: 37 [ 1622.711717][T32292] loop4: detected capacity change from 0 to 1 [ 1622.724913][T32266] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1622.731721][T32266] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1622.749448][T32282] loop1: detected capacity change from 0 to 512 [ 1622.755884][T32296] loop3: detected capacity change from 0 to 1 [ 1622.764578][T32282] EXT4-fs (loop1): Invalid log block size: 37 [ 1622.773432][T32292] loop4: p1 p2 p4 [ 1622.777456][T32292] loop4: p1 start 10 is beyond EOD, truncated [ 1622.783575][T32292] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1622.792013][ T1037] loop3: p1 p2 p3 p4 [ 1622.796434][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1622.798041][T32292] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:05 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642500000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1622.802589][ T1037] loop3: p2 size 1073905668 extends beyond EOD, truncated [ 1622.850890][T32315] loop1: detected capacity change from 0 to 512 [ 1622.851088][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1622.864139][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1622.872240][T32315] EXT4-fs (loop1): Invalid log block size: 37 [ 1622.884193][T32296] loop3: p1 p2 p3 p4 19:17:05 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x30, 0x0, 0x0, 0x0) 19:17:05 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a006000ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1622.897783][T32296] loop3: p1 start 10 is beyond EOD, truncated [ 1622.903949][T32296] loop3: p2 size 1073905668 extends beyond EOD, truncated [ 1622.915961][T32292] loop4: detected capacity change from 0 to 1 [ 1622.918982][T32296] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1622.928839][T32296] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1622.963455][T32292] loop4: p1 p2 p4 [ 1622.967564][T32292] loop4: p1 start 10 is beyond EOD, truncated [ 1622.973709][T32292] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1622.985316][T32315] loop1: detected capacity change from 0 to 512 [ 1622.991787][T32337] loop2: detected capacity change from 0 to 1 [ 1622.998451][T32292] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1623.000759][T32315] EXT4-fs (loop1): Invalid log block size: 37 19:17:05 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642600000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1623.033114][T32337] loop2: p1 p2 p3 p4 [ 1623.037203][T32337] loop2: p1 start 6291466 is beyond EOD, truncated [ 1623.043745][T32337] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1623.068074][T32337] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1623.074916][T32337] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:05 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800874000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:05 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000ffffff80024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1623.097538][ T1037] loop4: p1 p2 p4 [ 1623.109716][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1623.115861][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1623.141131][T32360] loop1: detected capacity change from 0 to 512 [ 1623.152643][T32360] EXT4-fs (loop1): Invalid log block size: 38 [ 1623.176971][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1623.192764][T32367] loop3: detected capacity change from 0 to 1 19:17:06 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a006800ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1623.220532][T32360] loop1: detected capacity change from 0 to 512 [ 1623.227346][T32360] EXT4-fs (loop1): Invalid log block size: 38 [ 1623.243147][T32367] loop3: p1 p2 p3 p4 [ 1623.252529][T32367] loop3: p1 start 10 is beyond EOD, truncated [ 1623.258764][T32367] loop3: p2 start 4294901760 is beyond EOD, truncated 19:17:06 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642700000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1623.265553][T32367] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1623.272321][T32367] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1623.279850][T32381] loop2: detected capacity change from 0 to 1 [ 1623.296569][T32379] loop4: detected capacity change from 0 to 1 19:17:06 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000008a024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1623.363289][T32381] loop2: p1 p2 p3 p4 [ 1623.367465][ T1037] loop4: p1 p2 p4 [ 1623.371359][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1623.377471][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1623.384709][T32394] loop1: detected capacity change from 0 to 512 [ 1623.391174][T32381] loop2: p1 start 6815754 is beyond EOD, truncated [ 1623.397730][T32381] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1623.434813][T32394] EXT4-fs (loop1): Invalid log block size: 39 [ 1623.454791][T32402] loop3: detected capacity change from 0 to 1 [ 1623.466675][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1623.475020][T32381] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1623.481822][T32381] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1623.494433][T32394] loop1: detected capacity change from 0 to 512 [ 1623.505693][T32394] EXT4-fs (loop1): Invalid log block size: 39 [ 1623.522297][T32379] loop4: p1 p2 p4 [ 1623.526296][T32379] loop4: p1 start 10 is beyond EOD, truncated [ 1623.532466][T32379] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1623.543209][T32402] loop3: p1 p2 p3 p4 [ 1623.547325][T32402] loop3: p1 start 10 is beyond EOD, truncated [ 1623.553502][T32402] loop3: p2 size 1073908224 extends beyond EOD, truncated [ 1623.573269][T32402] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1623.580196][T32402] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1623.596933][T32379] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:06 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642800000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:06 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a006c00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:06 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000ffffff8c024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:06 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x42, 0x0, 0x0, 0x0) [ 1623.655877][T32379] loop4: detected capacity change from 0 to 1 [ 1623.690348][T32436] loop1: detected capacity change from 0 to 512 [ 1623.713051][T32379] loop4: p1 p2 p4 [ 1623.717163][T32379] loop4: p1 start 10 is beyond EOD, truncated [ 1623.723318][T32379] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1623.733281][T32436] EXT4-fs (loop1): Invalid log block size: 40 [ 1623.739550][T32441] loop2: detected capacity change from 0 to 1 [ 1623.744417][T32446] loop3: detected capacity change from 0 to 1 [ 1623.746402][T32379] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:06 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180087a000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1623.761723][ T1037] loop4: p1 p2 p4 [ 1623.765834][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1623.771998][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1623.780819][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1623.788540][T32446] loop3: p1 p2 p3 p4 [ 1623.788577][T32441] loop2: p1 p2 p3 p4 [ 1623.792638][T32446] loop3: p1 start 10 is beyond EOD, truncated [ 1623.801210][T32436] loop1: detected capacity change from 0 to 512 [ 1623.802764][T32446] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1623.802783][T32446] loop3: p3 start 2127165541 is beyond EOD, [ 1623.809458][T32441] loop2: p1 start 7077898 is beyond EOD, [ 1623.815863][T32446] truncated [ 1623.815871][T32446] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1623.837913][T32441] truncated [ 1623.841073][T32441] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1623.852584][T32436] EXT4-fs (loop1): Invalid log block size: 40 19:17:06 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642900000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:06 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000ffffff97024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1623.929192][T32441] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1623.936156][T32441] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1623.968464][T32477] loop1: detected capacity change from 0 to 512 [ 1623.975017][T32480] loop4: detected capacity change from 0 to 1 [ 1623.976336][T32477] EXT4-fs (loop1): Invalid log block size: 41 [ 1623.987446][ T1037] loop2: p1 p2 p3 p4 [ 1623.991760][T32481] loop3: detected capacity change from 0 to 1 [ 1623.998901][ T1037] loop2: p1 start 7077898 is beyond EOD, truncated [ 1624.005504][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1624.020813][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1624.023445][T32480] loop4: p1 p2 p4 [ 1624.027693][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1624.034528][T32480] loop4: p1 start 10 is beyond EOD, truncated [ 1624.044708][T32480] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1624.052103][T32477] loop1: detected capacity change from 0 to 512 [ 1624.058880][T32477] EXT4-fs (loop1): Invalid log block size: 41 [ 1624.063264][T32481] loop3: p1 p2 p3 p4 [ 1624.069923][T32480] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:06 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a007400ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:06 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x204, 0x0, 0x0, 0x0) [ 1624.081670][T32481] loop3: p1 start 10 is beyond EOD, truncated [ 1624.087868][T32481] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1624.094667][T32481] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1624.101449][T32481] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:06 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642a00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1624.141763][ T1037] loop4: p1 p2 p4 [ 1624.152846][T32514] loop2: detected capacity change from 0 to 1 [ 1624.159037][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1624.165189][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:06 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000ffffffa1024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1624.194087][T32521] loop1: detected capacity change from 0 to 512 [ 1624.200412][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1624.207268][T32521] EXT4-fs (loop1): Invalid log block size: 42 [ 1624.214140][T32514] loop2: p1 p2 p3 p4 [ 1624.218307][T32514] loop2: p1 start 7602186 is beyond EOD, truncated [ 1624.224842][T32514] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1624.233442][T32514] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1624.235529][T32530] loop3: detected capacity change from 0 to 1 [ 1624.240236][T32514] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1624.284953][T32521] loop1: detected capacity change from 0 to 512 [ 1624.291457][T32480] loop4: detected capacity change from 0 to 1 [ 1624.299266][T32530] loop3: p1 p2 p3 p4 [ 1624.304519][T32530] loop3: p1 start 10 is beyond EOD, truncated [ 1624.310658][T32530] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1624.317481][T32530] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1624.324277][T32530] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:07 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800890000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:07 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a007a00ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1624.361346][T32521] EXT4-fs (loop1): Invalid log block size: 42 19:17:07 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642b00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:07 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000cb2e1bb3024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1624.468194][T32565] loop2: detected capacity change from 0 to 1 [ 1624.478133][T32570] loop4: detected capacity change from 0 to 1 [ 1624.486105][T32572] loop1: detected capacity change from 0 to 512 [ 1624.513144][T32565] loop2: p1 p2 p3 p4 [ 1624.513153][T32572] EXT4-fs (loop1): Invalid log block size: 43 [ 1624.513291][T32570] loop4: p1 p2 p4 [ 1624.517419][T32565] loop2: p1 start 7995402 is beyond EOD, truncated [ 1624.528913][T32574] loop3: detected capacity change from 0 to 1 [ 1624.533846][T32565] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1624.548452][T32570] loop4: p1 start 10 is beyond EOD, truncated [ 1624.548898][T32565] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1624.554574][T32570] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1624.561339][T32565] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1624.576696][T32572] loop1: detected capacity change from 0 to 512 [ 1624.586171][T32572] EXT4-fs (loop1): Invalid log block size: 43 [ 1624.593352][T32574] loop3: p1 p2 p3 p4 [ 1624.597781][T32574] loop3: p1 start 10 is beyond EOD, truncated [ 1624.603902][T32574] loop3: p2 start 785055744 is beyond EOD, truncated 19:17:07 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a009000ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1624.604343][T32570] loop4: p4 size 3657465856 extends beyond EOD, [ 1624.610679][T32574] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1624.610699][T32574] loop3: p4 size 3657465856 extends beyond EOD, [ 1624.617038][T32570] truncated [ 1624.633299][T32574] truncated 19:17:07 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642c00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1624.657112][ T1037] loop3: p1 p2 p3 p4 [ 1624.661346][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1624.667459][ T1037] loop3: p2 start 785055744 is beyond EOD, truncated [ 1624.674191][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1624.680952][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1624.683283][T32570] loop4: detected capacity change from 0 to 1 [ 1624.694996][T32602] loop2: detected capacity change from 0 to 1 19:17:07 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000ffffffc9024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:07 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x3cf, 0x0, 0x0, 0x0) 19:17:07 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008c0000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1624.762686][T32602] loop2: p1 p2 p3 p4 [ 1624.767030][T32602] loop2: p1 start 9437194 is beyond EOD, truncated [ 1624.773588][T32602] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1624.799086][T32612] loop1: detected capacity change from 0 to 512 [ 1624.810699][T32602] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1624.817550][T32602] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1624.855214][T32612] EXT4-fs (loop1): Invalid log block size: 44 [ 1624.862926][T32618] loop3: detected capacity change from 0 to 1 19:17:07 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00c000ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1624.895423][T32631] loop4: detected capacity change from 0 to 1 [ 1624.903474][T32618] loop3: p1 p2 p3 p4 [ 1624.907775][T32618] loop3: p1 start 10 is beyond EOD, truncated [ 1624.914022][T32618] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1624.920868][T32618] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1624.927783][T32618] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1624.937233][T32638] loop2: detected capacity change from 0 to 1 [ 1624.949112][T32612] loop1: detected capacity change from 0 to 512 [ 1624.983306][T32631] loop4: p1 p2 p4 [ 1624.983483][T32612] EXT4-fs (loop1): Invalid log block size: 44 [ 1624.987568][T32631] loop4: p1 start 10 is beyond EOD, truncated 19:17:07 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000b31b2ecb024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1624.999337][T32631] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1625.006656][T32638] loop2: p1 p2 p3 p4 [ 1625.011079][T32638] loop2: p1 start 12582922 is beyond EOD, truncated [ 1625.017760][T32638] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1625.054802][T32631] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1625.075582][T32652] loop3: detected capacity change from 0 to 1 [ 1625.095014][T32638] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:07 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642d00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1625.101837][T32638] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1625.118616][ T1037] loop4: p1 p2 p4 [ 1625.123230][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1625.129329][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1625.173632][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1625.183262][T32652] loop3: p1 p2 p3 p4 [ 1625.187618][T32652] loop3: p1 start 10 is beyond EOD, truncated [ 1625.193746][T32652] loop3: p2 start 464715776 is beyond EOD, truncated [ 1625.200707][T32652] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1625.207508][T32652] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1625.232258][T32663] loop1: detected capacity change from 0 to 512 19:17:08 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00a201ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:08 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000ffffffe4024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1625.283641][T32663] EXT4-fs (loop1): Invalid log block size: 45 [ 1625.304654][T32631] loop4: detected capacity change from 0 to 1 [ 1625.352942][ T1037] loop4: p1 p2 p4 [ 1625.357204][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1625.363312][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1625.371993][T32685] loop2: detected capacity change from 0 to 1 [ 1625.371993][T32663] loop1: detected capacity change from 0 to 512 [ 1625.389220][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1625.392937][T32691] loop3: detected capacity change from 0 to 1 19:17:08 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008f8000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1625.404123][T32631] loop4: p1 p2 p4 [ 1625.407976][T32663] EXT4-fs (loop1): Invalid log block size: 45 [ 1625.408151][T32631] loop4: p1 start 10 is beyond EOD, truncated [ 1625.420267][T32631] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1625.427771][T32685] loop2: p1 p2 p3 p4 [ 1625.428377][T32631] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1625.432104][T32685] loop2: p1 start 27394058 is beyond EOD, truncated [ 1625.445529][T32685] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:08 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000002e00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1625.456918][T32685] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1625.463115][T32691] loop3: p1 p2 p3 p4 [ 1625.463737][T32685] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1625.467809][T32691] loop3: p1 start 10 is beyond EOD, truncated [ 1625.480849][T32691] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1625.487653][T32691] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1625.494637][T32691] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:08 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000402ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:08 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000026f3024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1625.581314][T32718] loop1: detected capacity change from 0 to 512 [ 1625.592350][T32718] EXT4-fs (loop1): Invalid log block size: 46 [ 1625.605542][T32719] loop4: detected capacity change from 0 to 1 19:17:08 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642e00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1625.628413][T32728] loop2: detected capacity change from 0 to 1 19:17:08 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x402, 0x0, 0x0, 0x0) [ 1625.653141][ T1037] loop4: p1 p2 p4 [ 1625.663483][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1625.669587][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1625.674960][T32728] loop2: p1 p2 p3 p4 [ 1625.678555][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1625.680920][T32728] loop2: p1 start 33816586 is beyond EOD, truncated [ 1625.694562][T32728] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1625.697223][T32733] loop3: detected capacity change from 0 to 1 [ 1625.708300][T32728] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1625.715172][T32728] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1625.722769][T32737] loop1: detected capacity change from 0 to 512 [ 1625.737731][T32719] loop4: p1 p2 p4 [ 1625.741828][T32719] loop4: p1 start 10 is beyond EOD, truncated 19:17:08 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00a202ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1625.747989][T32719] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1625.755822][T32733] loop3: p1 p2 p3 p4 [ 1625.760212][T32733] loop3: p1 start 10 is beyond EOD, truncated [ 1625.766446][T32733] loop3: p2 size 1073935142 extends beyond EOD, truncated [ 1625.774446][T32737] EXT4-fs (loop1): Invalid log block size: 46 [ 1625.808959][T32733] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1625.815849][T32733] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1625.824454][T32719] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1625.828942][T32759] loop2: detected capacity change from 0 to 1 [ 1625.864506][ T1037] loop3: p1 p2 p3 p4 [ 1625.874788][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1625.880890][ T1037] loop3: p2 size 1073935142 extends beyond EOD, truncated [ 1625.888396][T32737] loop1: detected capacity change from 0 to 512 [ 1625.903537][T32759] loop2: p1 p2 p3 p4 [ 1625.908419][T32759] loop2: p1 start 44171274 is beyond EOD, truncated [ 1625.915083][T32759] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1625.925187][T32737] EXT4-fs (loop1): Invalid log block size: 46 [ 1625.926650][T32719] loop4: detected capacity change from 0 to 1 [ 1625.946797][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1625.953638][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:08 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000642f00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1625.974529][T32759] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1625.981384][T32759] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1625.982689][T32719] loop4: p1 p2 p4 [ 1625.992814][T32719] loop4: p1 start 10 is beyond EOD, truncated [ 1625.998965][T32719] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1626.016498][ T315] loop1: detected capacity change from 0 to 512 19:17:08 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000004f5024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1626.023076][T32719] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1626.041639][ T315] EXT4-fs (loop1): Invalid log block size: 47 19:17:08 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800804020000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:08 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000003ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1626.111834][ T315] loop1: detected capacity change from 0 to 512 [ 1626.130024][ T315] EXT4-fs (loop1): Invalid log block size: 47 [ 1626.140987][ T336] loop3: detected capacity change from 0 to 1 19:17:08 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643000000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1626.172712][ T336] loop3: p1 p2 p3 p4 [ 1626.176924][ T336] loop3: p1 start 10 is beyond EOD, truncated [ 1626.183072][ T336] loop3: p2 size 1073935620 extends beyond EOD, truncated [ 1626.185828][ T343] loop2: detected capacity change from 0 to 1 [ 1626.197707][ T342] loop4: detected capacity change from 0 to 1 [ 1626.212223][ T336] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1626.219188][ T336] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1626.228191][ T350] loop1: detected capacity change from 0 to 512 [ 1626.242107][ T350] EXT4-fs (loop1): Invalid log block size: 48 [ 1626.252671][ T343] loop2: p1 p2 p3 p4 [ 1626.256755][ T342] loop4: p1 p2 p4 [ 1626.261771][ T342] loop4: p1 start 10 is beyond EOD, truncated 19:17:09 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000fffffff6024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1626.267897][ T342] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1626.276311][ T343] loop2: p1 start 50331658 is beyond EOD, truncated [ 1626.282962][ T343] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1626.307206][ T350] loop1: detected capacity change from 0 to 512 [ 1626.315040][ T350] EXT4-fs (loop1): Invalid log block size: 48 19:17:09 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x406, 0x0, 0x0, 0x0) [ 1626.324889][ T342] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1626.338010][ T343] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1626.344827][ T343] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:09 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000003100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1626.377159][ T370] loop3: detected capacity change from 0 to 1 [ 1626.407627][ T1037] loop2: p1 p2 p3 p4 [ 1626.411981][ T1037] loop2: p1 start 50331658 is beyond EOD, truncated [ 1626.417517][ T377] loop1: detected capacity change from 0 to 512 [ 1626.418666][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1626.426268][ T377] EXT4-fs (loop1): Invalid log block size: 49 [ 1626.442808][ T370] loop3: p1 p2 p3 p4 [ 1626.446921][ T370] loop3: p1 start 10 is beyond EOD, truncated [ 1626.453136][ T370] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1626.459914][ T370] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1626.466704][ T370] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:09 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a002803ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1626.472655][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1626.480599][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1626.492847][ T342] loop4: detected capacity change from 0 to 1 [ 1626.514269][ T377] loop1: detected capacity change from 0 to 512 [ 1626.521720][ T377] EXT4-fs (loop1): Invalid log block size: 49 [ 1626.533191][ T342] loop4: p1 p2 p4 [ 1626.537406][ T342] loop4: p1 start 10 is beyond EOD, truncated [ 1626.543582][ T342] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:09 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000fffffffb024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:09 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1626.588814][ T342] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1626.622289][ T409] loop2: detected capacity change from 0 to 1 19:17:09 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180081a020000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1626.662065][ T410] loop3: detected capacity change from 0 to 1 [ 1626.675147][ T416] loop1: detected capacity change from 0 to 512 [ 1626.692870][ T416] EXT4-fs (loop1): Invalid log block size: 49 [ 1626.712823][ T409] loop2: p1 p2 p3 p4 [ 1626.721934][ T409] loop2: p1 start 52953098 is beyond EOD, truncated [ 1626.728585][ T409] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1626.737212][ T410] loop3: p1 p2 p3 p4 [ 1626.741356][ T410] loop3: p1 start 10 is beyond EOD, truncated [ 1626.747488][ T410] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1626.754285][ T410] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1626.761053][ T410] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1626.777239][ T429] loop4: detected capacity change from 0 to 1 [ 1626.790826][ T409] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1626.797699][ T409] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1626.822917][ T416] loop1: detected capacity change from 0 to 512 [ 1626.833257][ T429] loop4: p1 p2 p4 [ 1626.837329][ T429] loop4: p1 start 10 is beyond EOD, truncated [ 1626.843441][ T429] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1626.851752][ T416] EXT4-fs (loop1): Invalid log block size: 49 [ 1626.870715][ T429] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1626.889666][ T1037] loop2: p1 p2 p3 p4 [ 1626.894092][ T1037] loop2: p1 start 52953098 is beyond EOD, truncated [ 1626.900754][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:09 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643200000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:09 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000fffffdfd024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1626.923279][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1626.930222][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1626.963077][ T429] loop4: detected capacity change from 0 to 1 [ 1627.002650][ T429] loop4: p1 p2 p4 [ 1627.006621][ T429] loop4: p1 start 10 is beyond EOD, truncated [ 1627.012733][ T429] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1627.020399][ T454] loop1: detected capacity change from 0 to 512 [ 1627.020401][ T429] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1627.034018][ T454] EXT4-fs (loop1): Invalid log block size: 50 [ 1627.040176][ T457] loop3: detected capacity change from 0 to 1 19:17:09 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800840020000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1627.093050][ T457] loop3: p1 p2 p3 p4 [ 1627.107145][ T457] loop3: p1 start 10 is beyond EOD, truncated [ 1627.113339][ T457] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1627.120119][ T457] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1627.126915][ T457] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:09 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x604, 0x0, 0x0, 0x0) 19:17:09 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000204ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1627.144853][ T454] loop1: detected capacity change from 0 to 512 [ 1627.151794][ T454] EXT4-fs (loop1): Invalid log block size: 50 [ 1627.173880][ T1037] loop3: p1 p2 p3 p4 [ 1627.178078][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1627.184205][ T1037] loop3: p2 start 4294901760 is beyond EOD, truncated 19:17:09 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643300000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1627.190971][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1627.197778][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1627.226163][ T485] loop2: detected capacity change from 0 to 1 [ 1627.249086][ T489] loop4: detected capacity change from 0 to 1 [ 1627.266063][ T493] loop1: detected capacity change from 0 to 512 [ 1627.272907][ T485] loop2: p1 p2 p3 p4 [ 1627.277374][ T485] loop2: p1 start 67239946 is beyond EOD, truncated [ 1627.284051][ T485] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1627.292692][ T489] loop4: p1 p2 p4 19:17:10 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000fffffffd024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1627.297308][ T489] loop4: p1 start 10 is beyond EOD, truncated [ 1627.303433][ T489] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1627.328235][ T493] EXT4-fs (loop1): Invalid log block size: 51 [ 1627.351570][ T485] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1627.358477][ T485] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1627.372361][ T507] loop3: detected capacity change from 0 to 1 [ 1627.374426][ T489] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1627.412667][ T1037] loop3: p1 p2 p3 p4 [ 1627.417692][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1627.423820][ T1037] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1627.430585][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1627.437388][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1627.451301][ T493] loop1: detected capacity change from 0 to 512 19:17:10 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000604ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1627.459551][ T489] loop4: detected capacity change from 0 to 1 [ 1627.476230][ T493] EXT4-fs (loop1): Invalid log block size: 51 [ 1627.505742][ T507] loop3: p1 p2 p3 p4 [ 1627.511491][ T527] loop2: detected capacity change from 0 to 1 [ 1627.516370][ T507] loop3: p1 start 10 is beyond EOD, truncated [ 1627.523704][ T507] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1627.530471][ T507] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1627.537265][ T507] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:10 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643400000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1627.552916][ T489] loop4: p1 p2 p4 [ 1627.562636][ T489] loop4: p1 start 10 is beyond EOD, truncated [ 1627.568786][ T489] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1627.576339][ T527] loop2: p1 p2 p3 p4 [ 1627.580406][ T527] loop2: p1 start 67502090 is beyond EOD, truncated [ 1627.587113][ T527] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1627.595217][ T489] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1627.607701][ T527] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1627.614565][ T527] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:10 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800842020000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:10 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000fffffffe024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1627.648197][ T541] loop1: detected capacity change from 0 to 512 [ 1627.664056][ T541] EXT4-fs (loop1): Invalid log block size: 52 19:17:10 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a008004ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:10 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643500000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1627.728512][ T541] loop1: detected capacity change from 0 to 512 [ 1627.735266][ T541] EXT4-fs (loop1): Invalid log block size: 52 [ 1627.752300][ T556] loop3: detected capacity change from 0 to 1 [ 1627.812468][ T556] loop3: p1 p2 p3 p4 [ 1627.816716][ T556] loop3: p1 start 10 is beyond EOD, truncated [ 1627.822491][ T566] loop4: detected capacity change from 0 to 1 [ 1627.822922][ T556] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1627.835817][ T556] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1627.842621][ T556] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1627.856869][ T559] loop2: detected capacity change from 0 to 1 [ 1627.870406][ T572] loop1: detected capacity change from 0 to 512 [ 1627.877394][ T566] loop4: p1 p2 p4 [ 1627.881437][ T566] loop4: p1 start 10 is beyond EOD, truncated [ 1627.887555][ T566] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1627.896487][ T1037] loop3: p1 p2 p3 p4 [ 1627.900958][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1627.907083][ T1037] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1627.913874][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1627.920636][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1627.928464][ T572] EXT4-fs (loop1): Invalid log block size: 53 [ 1627.935170][ T559] loop2: p1 p2 p3 p4 [ 1627.939318][ T559] loop2: p1 start 75497482 is beyond EOD, truncated [ 1627.945964][ T559] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:10 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x700, 0x0, 0x0, 0x0) [ 1627.962574][ T566] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1627.971537][ T559] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1627.978401][ T559] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:10 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000fff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1628.013712][ T572] loop1: detected capacity change from 0 to 512 [ 1628.028342][ T572] EXT4-fs (loop1): Invalid log block size: 53 19:17:10 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643600000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1628.062429][ T593] loop3: detected capacity change from 0 to 1 [ 1628.069424][ T1037] loop2: p1 p2 p3 p4 [ 1628.074480][ T1037] loop2: p1 start 75497482 is beyond EOD, truncated [ 1628.081110][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1628.092418][ T566] loop4: detected capacity change from 0 to 1 19:17:10 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800030000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1628.141617][ T593] loop3: p1 p2 p3 p4 [ 1628.142538][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1628.146294][ T593] loop3: p1 start 10 is beyond EOD, truncated [ 1628.152524][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1628.158583][ T593] loop3: p2 size 1073938191 extends beyond EOD, truncated [ 1628.172808][ T610] loop1: detected capacity change from 0 to 512 [ 1628.186753][ T610] EXT4-fs (loop1): Invalid log block size: 54 [ 1628.193663][ T593] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1628.200513][ T593] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:11 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00f504ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:11 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000ffffefff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1628.236722][ T620] loop4: detected capacity change from 0 to 1 [ 1628.256731][ T610] loop1: detected capacity change from 0 to 512 [ 1628.278003][ T610] EXT4-fs (loop1): Invalid log block size: 54 [ 1628.302468][ T620] loop4: p1 p2 p4 [ 1628.306346][ T620] loop4: p1 start 10 is beyond EOD, truncated [ 1628.308941][ T636] loop2: detected capacity change from 0 to 1 [ 1628.312453][ T620] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1628.339810][ T643] loop3: detected capacity change from 0 to 1 19:17:11 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643700000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1628.355238][ T1037] loop2: p1 p2 p3 p4 [ 1628.359378][ T1037] loop2: p1 start 83165194 is beyond EOD, truncated [ 1628.366018][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1628.380928][ T620] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1628.382612][ T643] loop3: p1 p2 p3 p4 [ 1628.392596][ T643] loop3: p1 start 10 is beyond EOD, truncated [ 1628.398688][ T643] loop3: p2 start 4294901760 is beyond EOD, truncated [ 1628.405528][ T643] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1628.412333][ T643] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1628.414282][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1628.426301][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1628.442580][ T650] loop1: detected capacity change from 0 to 512 [ 1628.449722][ T636] loop2: p1 p2 p3 p4 19:17:11 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000ffefffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1628.453811][ T636] loop2: p1 start 83165194 is beyond EOD, truncated [ 1628.460446][ T636] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1628.469294][ T620] loop4: detected capacity change from 0 to 1 [ 1628.472195][ T636] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1628.482188][ T636] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1628.491676][ T650] EXT4-fs (loop1): Invalid log block size: 55 [ 1628.498410][ T620] loop4: p1 p2 p4 19:17:11 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000005ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1628.505074][ T620] loop4: p1 start 10 is beyond EOD, truncated [ 1628.511258][ T620] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1628.516228][ T670] loop3: detected capacity change from 0 to 1 [ 1628.561184][ T620] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1628.582342][ T670] loop3: p1 p2 p3 p4 [ 1628.586484][ T670] loop3: p1 start 10 is beyond EOD, truncated [ 1628.592597][ T670] loop3: p2 start 4026466304 is beyond EOD, truncated [ 1628.594763][ T650] loop1: detected capacity change from 0 to 512 19:17:11 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008ca030000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1628.599425][ T670] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1628.599445][ T670] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1628.612915][ T650] EXT4-fs (loop1): Invalid log block size: 55 [ 1628.638764][ T684] loop2: detected capacity change from 0 to 1 [ 1628.654244][ T1037] loop3: p1 p2 p3 p4 [ 1628.658671][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1628.664783][ T1037] loop3: p2 start 4026466304 is beyond EOD, truncated [ 1628.671569][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1628.678391][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:11 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xf00, 0x0, 0x0, 0x0) 19:17:11 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643800000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:11 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000fdfdffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1628.722649][ T684] loop2: p1 p2 p3 p4 [ 1628.732642][ T684] loop2: p1 start 83886090 is beyond EOD, truncated [ 1628.739267][ T684] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1628.776912][ T701] loop4: detected capacity change from 0 to 1 [ 1628.783942][ T684] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1628.790735][ T684] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1628.802218][ T712] loop1: detected capacity change from 0 to 512 [ 1628.802989][ T716] loop3: detected capacity change from 0 to 1 [ 1628.813967][ T712] EXT4-fs (loop1): Invalid log block size: 56 [ 1628.820860][ T1037] loop2: p1 p2 p3 p4 [ 1628.825569][ T1037] loop2: p1 start 83886090 is beyond EOD, truncated [ 1628.832205][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1628.840316][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1628.847148][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1628.855057][ T701] loop4: p1 p2 p4 [ 1628.859181][ T701] loop4: p1 start 10 is beyond EOD, truncated [ 1628.865346][ T701] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1628.872753][ T716] loop3: p1 p2 p3 p4 [ 1628.876820][ T716] loop3: p1 start 10 is beyond EOD, truncated [ 1628.882941][ T716] loop3: p2 start 4261216256 is beyond EOD, truncated [ 1628.889711][ T716] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1628.896506][ T716] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1628.906076][ T712] loop1: detected capacity change from 0 to 512 19:17:11 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000006ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:11 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000007fffffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1628.922286][ T712] EXT4-fs (loop1): Invalid log block size: 56 [ 1628.943077][ T701] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:11 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643900000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1628.992774][ T742] loop3: detected capacity change from 0 to 1 [ 1629.024621][ T742] loop3: p1 p2 p3 p4 [ 1629.028293][ T754] loop1: detected capacity change from 0 to 512 [ 1629.028795][ T742] loop3: p1 start 10 is beyond EOD, truncated [ 1629.040968][ T742] loop3: p2 start 4286513152 is beyond EOD, truncated [ 1629.042371][ T754] EXT4-fs (loop1): Invalid log block size: 57 [ 1629.047776][ T742] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1629.055810][ T701] loop4: detected capacity change from 0 to 1 [ 1629.060582][ T742] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1629.075116][ T755] loop2: detected capacity change from 0 to 1 19:17:11 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800802040000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1629.102077][ T754] loop1: detected capacity change from 0 to 512 [ 1629.108819][ T754] EXT4-fs (loop1): Invalid log block size: 57 [ 1629.116614][ T1037] loop3: p1 p2 p3 p4 [ 1629.120649][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1629.126804][ T1037] loop3: p2 start 4286513152 is beyond EOD, truncated [ 1629.133580][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1629.140338][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:11 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x1083, 0x0, 0x0, 0x0) 19:17:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643a00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:12 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000080ffffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1629.164516][ T755] loop2: p1 p2 p3 p4 [ 1629.170202][ T755] loop2: p1 start 100663306 is beyond EOD, truncated [ 1629.176934][ T755] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1629.197040][ T755] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1629.203891][ T755] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:12 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000406ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1629.261933][ T782] loop4: detected capacity change from 0 to 1 [ 1629.296705][ T790] loop3: detected capacity change from 0 to 1 [ 1629.303193][ T793] loop1: detected capacity change from 0 to 512 [ 1629.309949][ T797] loop2: detected capacity change from 0 to 1 [ 1629.317477][ T793] EXT4-fs (loop1): Invalid log block size: 58 [ 1629.353731][ T782] loop4: p1 p2 p4 [ 1629.357607][ T797] loop2: p1 p2 p3 p4 [ 1629.357896][ T790] loop3: p1 p2 p3 p4 [ 1629.361703][ T797] loop2: p1 start 100925450 is beyond EOD, truncated [ 1629.369881][ T782] loop4: p1 start 10 is beyond EOD, [ 1629.372292][ T797] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1629.384702][ T782] truncated [ 1629.387837][ T782] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1629.391562][ T790] loop3: p1 start 10 is beyond EOD, truncated [ 1629.401200][ T790] loop3: p2 start 4286578688 is beyond EOD, truncated [ 1629.408013][ T790] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1629.414807][ T790] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1629.418851][ T797] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1629.428752][ T797] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1629.438770][ T1037] loop2: p1 p2 p3 p4 19:17:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643b00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1629.452192][ T1037] loop2: p1 start 100925450 is beyond EOD, truncated [ 1629.458906][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1629.481846][ T782] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:12 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000008cffffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1629.499614][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1629.506452][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1629.515640][ T821] loop1: detected capacity change from 0 to 512 [ 1629.535512][ T821] EXT4-fs (loop1): Invalid log block size: 59 19:17:12 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800806040000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1629.561496][ T782] loop4: detected capacity change from 0 to 1 [ 1629.567906][ T826] loop3: detected capacity change from 0 to 1 19:17:12 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000007ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1629.625303][ T826] loop3: p1 p2 p3 p4 [ 1629.629561][ T826] loop3: p1 start 10 is beyond EOD, truncated [ 1629.635678][ T826] loop3: p2 start 4287365120 is beyond EOD, truncated [ 1629.642517][ T826] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1629.645342][ T821] loop1: detected capacity change from 0 to 512 [ 1629.649282][ T826] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:12 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000097ffffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1629.674536][ T1037] loop3: p1 p2 p3 p4 [ 1629.687554][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1629.693682][ T1037] loop3: p2 start 4287365120 is beyond EOD, truncated [ 1629.700360][ T849] loop2: detected capacity change from 0 to 1 [ 1629.700463][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1629.713335][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:12 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x2000, 0x0, 0x0, 0x0) [ 1629.725879][ T851] loop4: detected capacity change from 0 to 1 [ 1629.732349][ T849] loop2: p1 p2 p3 p4 [ 1629.737690][ T849] loop2: p1 start 117440522 is beyond EOD, truncated [ 1629.744396][ T849] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643c00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1629.792583][ T849] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1629.799391][ T849] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1629.807193][ T851] loop4: p1 p2 p4 [ 1629.822049][ T851] loop4: p1 start 10 is beyond EOD, truncated [ 1629.828231][ T851] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:12 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000009ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1629.860970][ T851] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1629.893976][ T871] loop1: detected capacity change from 0 to 512 [ 1629.901523][ T869] loop3: detected capacity change from 0 to 1 [ 1629.932201][ T1037] loop3: p1 p2 p3 p4 [ 1629.936503][ T871] EXT4-fs (loop1): Invalid log block size: 60 [ 1629.936575][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1629.948818][ T1037] loop3: p2 start 4288086016 is beyond EOD, truncated [ 1629.955625][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1629.962426][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1629.973849][ T869] loop3: p1 p2 p3 p4 [ 1629.977939][ T869] loop3: p1 start 10 is beyond EOD, truncated [ 1629.984082][ T869] loop3: p2 start 4288086016 is beyond EOD, truncated [ 1629.987736][ T851] loop4: detected capacity change from 0 to 1 [ 1629.990856][ T869] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1630.004207][ T869] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1630.011968][ T891] loop2: detected capacity change from 0 to 1 19:17:12 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800880040000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1630.027906][ T871] loop1: detected capacity change from 0 to 512 [ 1630.035894][ T871] EXT4-fs (loop1): Invalid log block size: 60 [ 1630.062166][ T891] loop2: p1 p2 p3 p4 [ 1630.068393][ T891] loop2: p1 start 150994954 is beyond EOD, truncated [ 1630.075122][ T891] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643d00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:12 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000a1ffffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1630.114207][ T891] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1630.121018][ T891] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1630.144451][ T905] loop4: detected capacity change from 0 to 1 [ 1630.176055][ T913] loop1: detected capacity change from 0 to 512 [ 1630.185502][ T1037] loop2: p1 p2 p3 p4 [ 1630.189835][ T1037] loop2: p1 start 150994954 is beyond EOD, truncated [ 1630.191533][ T913] EXT4-fs (loop1): Invalid log block size: 61 [ 1630.196585][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1630.213049][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1630.219841][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1630.228064][ T905] loop4: p1 p2 p4 [ 1630.232456][ T905] loop4: p1 start 10 is beyond EOD, truncated [ 1630.238591][ T905] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1630.250032][ T919] loop3: detected capacity change from 0 to 1 [ 1630.256354][ T913] loop1: detected capacity change from 0 to 512 [ 1630.259197][ T905] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1630.263018][ T913] EXT4-fs (loop1): Invalid log block size: 61 19:17:13 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000aff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:13 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x3000, 0x0, 0x0, 0x0) [ 1630.302461][ T919] loop3: p1 p2 p3 p4 [ 1630.318700][ T919] loop3: p1 start 10 is beyond EOD, truncated [ 1630.324882][ T919] loop3: p2 start 4288741376 is beyond EOD, truncated [ 1630.328277][ T937] loop2: detected capacity change from 0 to 1 [ 1630.331744][ T919] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1630.344709][ T919] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:13 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643e00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1630.403111][ T937] loop2: p1 p2 p3 p4 [ 1630.407484][ T937] loop2: p1 start 167772170 is beyond EOD, truncated [ 1630.414370][ T937] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:13 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000c9ffffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1630.448496][ T905] loop4: detected capacity change from 0 to 1 [ 1630.454924][ T937] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1630.461700][ T937] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1630.472831][ T955] loop1: detected capacity change from 0 to 512 [ 1630.481254][ T955] EXT4-fs (loop1): Invalid log block size: 62 [ 1630.487972][ T960] loop3: detected capacity change from 0 to 1 [ 1630.492105][ T905] loop4: p1 p2 p4 [ 1630.498274][ T905] loop4: p1 start 10 is beyond EOD, truncated [ 1630.504373][ T905] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1630.512851][ T905] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1630.513127][ T1037] loop2: p1 p2 p3 p4 [ 1630.532788][ T1037] loop2: p1 start 167772170 is beyond EOD, truncated [ 1630.539594][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1630.548064][ T960] loop3: p1 p2 p3 p4 [ 1630.553778][ T960] loop3: p1 start 10 is beyond EOD, truncated [ 1630.559880][ T960] loop3: p2 start 4291362816 is beyond EOD, truncated [ 1630.566682][ T960] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1630.570383][ T1037] loop2: p3 start 2127165541 is beyond EOD, [ 1630.573460][ T960] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1630.581093][ T955] loop1: detected capacity change from 0 to 512 [ 1630.586549][ T1037] truncated 19:17:13 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008f5040000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:13 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000bff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1630.586557][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1630.641540][ T955] EXT4-fs (loop1): Invalid log block size: 62 [ 1630.652182][ T983] loop4: detected capacity change from 0 to 1 19:17:13 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000e4ffffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:13 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000003f00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1630.690650][ T995] loop2: detected capacity change from 0 to 1 [ 1630.697067][ T983] loop4: p1 p2 p4 [ 1630.707447][ T983] loop4: p1 start 10 is beyond EOD, truncated [ 1630.713605][ T983] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1630.724097][ T983] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1630.731842][ T995] loop2: p1 p2 p3 p4 [ 1630.736263][ T995] loop2: p1 start 184549386 is beyond EOD, truncated [ 1630.743001][ T995] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1630.763353][ T1004] loop3: detected capacity change from 0 to 1 [ 1630.772161][ T1010] loop1: detected capacity change from 0 to 512 [ 1630.780366][ T995] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1630.787196][ T995] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1630.794491][ T1010] EXT4-fs (loop1): Invalid log block size: 63 [ 1630.805180][ T1004] loop3: p1 p2 p3 p4 [ 1630.809851][ T1004] loop3: p1 start 10 is beyond EOD, truncated [ 1630.816020][ T1004] loop3: p2 start 4293132288 is beyond EOD, truncated [ 1630.822893][ T1004] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1630.829663][ T1004] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:13 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800050000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1630.841120][ T1037] loop2: p1 p2 p3 p4 [ 1630.846132][ T1037] loop2: p1 start 184549386 is beyond EOD, truncated [ 1630.852852][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1630.865075][ T1010] loop1: detected capacity change from 0 to 512 [ 1630.872350][ T1010] EXT4-fs (loop1): Invalid log block size: 63 [ 1630.890112][ T1029] loop4: detected capacity change from 0 to 1 [ 1630.907564][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1630.914432][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:13 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000cff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:13 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000643f00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1630.941928][ T1029] loop4: p1 p2 p4 [ 1630.947999][ T1029] loop4: p1 start 10 is beyond EOD, truncated [ 1630.954223][ T1029] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:13 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000f6ffffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1630.988317][ T1029] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1631.027839][ T1046] loop1: detected capacity change from 0 to 512 [ 1631.038677][ T1050] loop2: detected capacity change from 0 to 1 [ 1631.066257][ T1046] EXT4-fs (loop1): Invalid log block size: 63 [ 1631.066673][ T1029] loop4: detected capacity change from 0 to 1 [ 1631.089265][ T1056] loop3: detected capacity change from 0 to 1 [ 1631.095806][ T1029] loop4: p1 p2 p4 [ 1631.102339][ T1050] loop2: p1 p2 p3 p4 [ 1631.107171][ T1050] loop2: p1 start 201326602 is beyond EOD, truncated [ 1631.113900][ T1050] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1631.114215][ T1029] loop4: p1 start 10 is beyond EOD, truncated [ 1631.125958][ T1050] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1631.127197][ T1029] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1631.133996][ T1050] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1631.148500][ T1029] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1631.156352][ T1056] loop3: p1 p2 p3 p4 [ 1631.160660][ T1056] loop3: p1 start 10 is beyond EOD, truncated [ 1631.166782][ T1056] loop3: p2 start 4294311936 is beyond EOD, truncated [ 1631.173670][ T1056] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1631.180434][ T1056] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:14 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x4000, 0x0, 0x0, 0x0) 19:17:14 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000fbffffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1631.191475][ T1037] loop2: p1 p2 p3 p4 [ 1631.197512][ T1037] loop2: p1 start 201326602 is beyond EOD, truncated [ 1631.204295][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1631.223769][ T1046] loop1: detected capacity change from 0 to 512 [ 1631.234439][ T1046] EXT4-fs (loop1): Invalid log block size: 63 19:17:14 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800060000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:14 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000004000000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1631.260279][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1631.267168][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1631.283114][ T1086] loop3: detected capacity change from 0 to 1 19:17:14 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000dff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1631.342295][ T1086] loop3: p1 p2 p3 p4 [ 1631.343688][ T1096] loop4: detected capacity change from 0 to 1 [ 1631.346671][ T1086] loop3: p1 start 10 is beyond EOD, truncated [ 1631.358494][ T1086] loop3: p2 start 4294639616 is beyond EOD, truncated [ 1631.365375][ T1086] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1631.372194][ T1086] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1631.471947][ T1096] loop4: p1 p2 p4 [ 1631.475970][ T1096] loop4: p1 start 10 is beyond EOD, truncated [ 1631.482159][ T1096] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1631.522158][ T1096] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1631.532437][ T1107] loop1: detected capacity change from 0 to 512 [ 1631.542973][ T1118] loop2: detected capacity change from 0 to 1 [ 1631.550884][ T1107] EXT4-fs (loop1): Invalid log block size: 64 19:17:14 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000fdffffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1631.571996][ T1118] loop2: p1 p2 p3 p4 [ 1631.576204][ T1118] loop2: p1 start 218103818 is beyond EOD, truncated [ 1631.582992][ T1118] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1631.597583][ T1107] loop1: detected capacity change from 0 to 512 [ 1631.605434][ T1107] EXT4-fs (loop1): Invalid log block size: 64 [ 1631.620256][ T1096] loop4: detected capacity change from 0 to 1 [ 1631.624532][ T1118] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1631.633153][ T1118] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1631.642160][ T1135] loop3: detected capacity change from 0 to 1 [ 1631.650155][ T1037] loop2: p1 p2 p3 p4 [ 1631.654649][ T1037] loop2: p1 start 218103818 is beyond EOD, truncated [ 1631.661342][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:14 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000644000000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1631.671969][ T1096] loop4: p1 p2 p4 [ 1631.676043][ T1096] loop4: p1 start 10 is beyond EOD, truncated [ 1631.679746][ T1135] loop3: p1 p2 p3 p4 [ 1631.682236][ T1096] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1631.687150][ T1135] loop3: p1 start 10 is beyond EOD, truncated [ 1631.699430][ T1135] loop3: p2 start 4294770688 is beyond EOD, truncated [ 1631.706233][ T1135] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1631.713059][ T1135] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1631.722286][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1631.729072][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1631.736956][ T1148] loop1: detected capacity change from 0 to 512 [ 1631.753598][ T1148] EXT4-fs (loop1): Invalid log block size: 64 [ 1631.763653][ T1096] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:14 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000feffffff024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:14 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800804060000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:14 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x4200, 0x0, 0x0, 0x0) 19:17:14 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000eff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1631.815441][ T1148] loop1: detected capacity change from 0 to 512 [ 1631.850602][ T1148] EXT4-fs (loop1): Invalid log block size: 64 19:17:14 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000644100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1631.879954][ T1166] loop3: detected capacity change from 0 to 1 [ 1631.921744][ T1175] loop2: detected capacity change from 0 to 1 [ 1631.932838][ T1166] loop3: p1 p2 p3 p4 [ 1631.951765][ T1166] loop3: p1 start 10 is beyond EOD, truncated [ 1631.957931][ T1166] loop3: p2 start 4294836224 is beyond EOD, truncated [ 1631.964728][ T1166] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1631.971486][ T1166] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1631.994384][ T1185] loop4: detected capacity change from 0 to 1 [ 1632.009777][ T1196] loop1: detected capacity change from 0 to 512 [ 1632.032005][ T1037] loop2: p1 p2 p3 p4 [ 1632.036121][ T1037] loop2: p1 start 234881034 is beyond EOD, truncated [ 1632.042855][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1632.050662][ T1185] loop4: p1 p2 p4 [ 1632.054545][ T1185] loop4: p1 start 10 is beyond EOD, truncated [ 1632.060680][ T1185] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1632.063366][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1632.074591][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:14 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000014000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1632.082898][ T1196] EXT4-fs (loop1): Invalid log block size: 65 [ 1632.096660][ T1185] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1632.126636][ T1175] loop2: p1 p2 p3 p4 [ 1632.130791][ T1175] loop2: p1 start 234881034 is beyond EOD, truncated [ 1632.137677][ T1175] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1632.144726][ T1196] loop1: detected capacity change from 0 to 512 [ 1632.151866][ T1210] loop3: detected capacity change from 0 to 1 [ 1632.160185][ T1196] EXT4-fs (loop1): Invalid log block size: 65 [ 1632.163137][ T1175] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1632.173073][ T1175] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:15 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000644200000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1632.222135][ T1210] loop3: p1 p2 p3 p4 [ 1632.232249][ T1210] loop3: p1 start 10 is beyond EOD, truncated [ 1632.238362][ T1210] loop3: p2 size 1073807360 extends beyond EOD, truncated 19:17:15 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800070000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:15 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000fff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1632.284847][ T1210] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1632.291708][ T1210] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1632.315812][ T1237] loop1: detected capacity change from 0 to 512 [ 1632.325750][ T1237] EXT4-fs (loop1): Invalid log block size: 66 19:17:15 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000020000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1632.325771][ T1242] loop4: detected capacity change from 0 to 1 [ 1632.352125][ T1249] loop2: detected capacity change from 0 to 1 19:17:15 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x60ff, 0x0, 0x0, 0x0) [ 1632.411778][ T1242] loop4: p1 p2 p4 [ 1632.415682][ T1242] loop4: p1 start 10 is beyond EOD, truncated [ 1632.421915][ T1242] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1632.432741][ T1249] loop2: p1 p2 p3 p4 [ 1632.436939][ T1249] loop2: p1 start 251658250 is beyond EOD, truncated [ 1632.443656][ T1249] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1632.461254][ T1237] loop1: detected capacity change from 0 to 512 [ 1632.468096][ T1242] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1632.476153][ T1249] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1632.483040][ T1249] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1632.494780][ T1237] EXT4-fs (loop1): Invalid log block size: 66 [ 1632.501968][ T1270] loop3: detected capacity change from 0 to 1 19:17:15 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000644300000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1632.550546][ T1242] loop4: detected capacity change from 0 to 1 [ 1632.557528][ T1270] loop3: p1 p2 p3 p4 [ 1632.564913][ T1270] loop3: p1 start 10 is beyond EOD, truncated [ 1632.571023][ T1270] loop3: p2 start 33554432 is beyond EOD, truncated [ 1632.577770][ T1270] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1632.584575][ T1270] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:15 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000011ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1632.642038][ T1242] loop4: p1 p2 p4 [ 1632.646026][ T1242] loop4: p1 start 10 is beyond EOD, truncated [ 1632.652247][ T1242] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1632.671992][ T1242] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1632.675537][ T1291] loop2: detected capacity change from 0 to 1 19:17:15 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800090000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:15 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000030000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1632.753434][ T1291] loop2: p1 p2 p3 p4 [ 1632.758022][ T1291] loop2: p1 start 285212682 is beyond EOD, truncated [ 1632.764896][ T1291] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1632.781813][ T1299] loop1: detected capacity change from 0 to 512 [ 1632.798206][ T1299] EXT4-fs (loop1): Invalid log block size: 67 [ 1632.809886][ T1291] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1632.810866][ T1310] loop3: detected capacity change from 0 to 1 [ 1632.816742][ T1291] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1632.834008][ T1037] loop4: p1 p2 p4 [ 1632.837999][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1632.841724][ T1310] loop3: p1 p2 p3 p4 [ 1632.844110][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1632.848092][ T1310] loop3: p1 start 10 is beyond EOD, truncated [ 1632.861314][ T1310] loop3: p2 start 50331648 is beyond EOD, truncated [ 1632.867939][ T1310] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1632.874736][ T1310] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1632.896077][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1632.908439][ T1299] loop1: detected capacity change from 0 to 512 [ 1632.918626][ T1299] EXT4-fs (loop1): Invalid log block size: 67 19:17:15 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000012ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:15 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000644400000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:15 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000040000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1632.979051][ T1329] loop4: detected capacity change from 0 to 1 [ 1633.029526][ T1347] loop1: detected capacity change from 0 to 512 [ 1633.041730][ T1329] loop4: p1 p2 p4 [ 1633.043908][ T1347] EXT4-fs (loop1): Invalid log block size: 68 [ 1633.045756][ T1329] loop4: p1 start 10 is beyond EOD, truncated [ 1633.057683][ T1329] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1633.066723][ T1349] loop3: detected capacity change from 0 to 1 [ 1633.084872][ T1355] loop2: detected capacity change from 0 to 1 [ 1633.105312][ T1329] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1633.142038][ T1355] loop2: p1 p2 p3 p4 [ 1633.143081][ T1349] loop3: p1 p2 p3 p4 [ 1633.148852][ T1355] loop2: p1 start 301989898 is beyond EOD, truncated [ 1633.152112][ T1349] loop3: p1 start 10 is beyond EOD, truncated [ 1633.156801][ T1355] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1633.170056][ T1349] loop3: p2 start 67108864 is beyond EOD, truncated [ 1633.176709][ T1349] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1633.183507][ T1349] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:15 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x8310, 0x0, 0x0, 0x0) [ 1633.190976][ T1355] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1633.197814][ T1355] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1633.220831][ T1347] loop1: detected capacity change from 0 to 512 19:17:16 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000013ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1633.242034][ T1329] loop4: detected capacity change from 0 to 1 [ 1633.243143][ T1347] EXT4-fs (loop1): Invalid log block size: 68 [ 1633.291693][ T1329] loop4: p1 p2 p4 [ 1633.295591][ T1329] loop4: p1 start 10 is beyond EOD, truncated [ 1633.301724][ T1329] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1633.310314][ T1329] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1633.332325][ T1385] loop2: detected capacity change from 0 to 1 19:17:16 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000a0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1633.392360][ T1385] loop2: p1 p2 p3 p4 [ 1633.396939][ T1385] loop2: p1 start 318767114 is beyond EOD, truncated [ 1633.403690][ T1385] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1633.422423][ T1037] loop4: p1 p2 p4 [ 1633.426463][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1633.432578][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:16 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000050000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:16 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000644500000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1633.458494][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1633.486864][ T1385] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1633.493809][ T1385] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1633.511935][ T1402] loop3: detected capacity change from 0 to 1 [ 1633.530011][ T1409] loop1: detected capacity change from 0 to 512 [ 1633.543792][ T1409] EXT4-fs (loop1): Invalid log block size: 69 19:17:16 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000644600000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1633.577302][ T1402] loop3: p1 p2 p3 p4 [ 1633.581810][ T1402] loop3: p1 start 10 is beyond EOD, truncated [ 1633.587908][ T1402] loop3: p2 start 83886080 is beyond EOD, truncated [ 1633.594536][ T1402] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1633.601300][ T1402] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:16 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000020ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1633.633500][ T1424] loop1: detected capacity change from 0 to 512 [ 1633.644363][ T1424] EXT4-fs (loop1): Invalid log block size: 70 [ 1633.644843][ T1420] loop4: detected capacity change from 0 to 1 [ 1633.675943][ T1429] loop2: detected capacity change from 0 to 1 [ 1633.689932][ T1424] loop1: detected capacity change from 0 to 512 [ 1633.696644][ T1424] EXT4-fs (loop1): Invalid log block size: 70 [ 1633.702936][ T1420] loop4: p1 p2 p4 [ 1633.706756][ T1420] loop4: p1 start 10 is beyond EOD, truncated [ 1633.712921][ T1420] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1633.721029][ T1037] loop3: p1 p2 p3 p4 [ 1633.721596][ T1429] loop2: p1 p2 p3 p4 [ 1633.725087][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1633.730074][ T1429] loop2: p1 start 536870922 is beyond EOD, truncated [ 1633.735075][ T1037] loop3: p2 start 83886080 is beyond EOD, truncated [ 1633.741785][ T1429] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1633.748376][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1633.758657][ T1420] loop4: p4 size 3657465856 extends beyond EOD, [ 1633.762255][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:16 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000060000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1633.775769][ T1420] truncated 19:17:16 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000644700000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1633.816294][ T1429] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1633.823146][ T1429] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1633.852682][ T1420] loop4: detected capacity change from 0 to 1 19:17:16 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000024ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1633.901955][ T1037] loop4: p1 p2 p4 [ 1633.905810][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1633.911921][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1633.931505][ T1457] loop1: detected capacity change from 0 to 512 [ 1633.939156][ T1458] loop3: detected capacity change from 0 to 1 [ 1633.947326][ T1457] EXT4-fs (loop1): Invalid log block size: 71 [ 1633.959326][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1633.959483][ T1470] loop2: detected capacity change from 0 to 1 [ 1633.978150][ T1420] loop4: p1 p2 p4 [ 1633.982478][ T1458] loop3: p1 p2 p3 p4 [ 1633.986867][ T1458] loop3: p1 start 10 is beyond EOD, truncated [ 1633.993028][ T1458] loop3: p2 start 100663296 is beyond EOD, truncated [ 1633.999834][ T1458] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1634.006690][ T1458] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1634.015827][ T1420] loop4: p1 start 10 is beyond EOD, truncated [ 1634.022031][ T1420] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1634.034393][ T1420] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1634.041544][ T1470] loop2: p1 p2 p3 p4 [ 1634.041627][ T1470] loop2: p1 start 603979786 is beyond EOD, truncated 19:17:16 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000b0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1634.045577][ T1457] loop1: detected capacity change from 0 to 512 [ 1634.052230][ T1470] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1634.066728][ T1457] EXT4-fs (loop1): Invalid log block size: 71 [ 1634.071413][ T1470] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1634.079553][ T1470] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:16 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000644800000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:16 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x9700, 0x0, 0x0, 0x0) 19:17:16 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000070000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:16 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000025ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1634.197492][ T1510] loop3: detected capacity change from 0 to 1 [ 1634.198832][ T1504] loop1: detected capacity change from 0 to 512 [ 1634.210999][ T1509] loop4: detected capacity change from 0 to 1 [ 1634.221631][ T1510] loop3: p1 p2 p3 p4 [ 1634.227456][ T1510] loop3: p1 start 10 is beyond EOD, truncated [ 1634.232824][ T1504] EXT4-fs (loop1): Invalid log block size: 72 [ 1634.233651][ T1510] loop3: p2 start 117440512 is beyond EOD, truncated [ 1634.246371][ T1510] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1634.253214][ T1510] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1634.265827][ T1517] loop2: detected capacity change from 0 to 1 [ 1634.272056][ T1509] loop4: p1 p2 p4 [ 1634.276811][ T1509] loop4: p1 start 10 is beyond EOD, truncated [ 1634.282956][ T1509] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1634.293257][ T1504] loop1: detected capacity change from 0 to 512 [ 1634.299975][ T1509] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1634.300840][ T1504] EXT4-fs (loop1): Invalid log block size: 72 [ 1634.314453][ T1517] loop2: p1 p2 p3 p4 [ 1634.319507][ T1517] loop2: p1 start 620757002 is beyond EOD, truncated [ 1634.326321][ T1517] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1634.333489][ T1037] loop4: p1 p2 p4 [ 1634.337358][ T1037] loop4: p1 start 10 is beyond EOD, truncated 19:17:17 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000080000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1634.343468][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1634.376514][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1634.385010][ T1517] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1634.388248][ T1543] loop3: detected capacity change from 0 to 1 [ 1634.391961][ T1517] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:17 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000004b00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1634.431624][ T1543] loop3: p1 p2 p3 p4 [ 1634.442538][ T1543] loop3: p1 start 10 is beyond EOD, truncated [ 1634.448671][ T1543] loop3: p2 start 134217728 is beyond EOD, truncated [ 1634.455367][ T1543] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1634.456909][ T1509] loop4: detected capacity change from 0 to 1 [ 1634.462151][ T1543] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:17 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000026ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:17 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xcf03, 0x0, 0x0, 0x0) 19:17:17 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000090000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:17 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000c0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1634.549260][ T1569] loop1: detected capacity change from 0 to 512 [ 1634.575276][ T1575] loop2: detected capacity change from 0 to 1 [ 1634.578739][ T1569] EXT4-fs (loop1): Invalid log block size: 75 [ 1634.601534][ T1579] loop3: detected capacity change from 0 to 1 [ 1634.621815][ T1575] loop2: p1 p2 p3 p4 [ 1634.626179][ T1575] loop2: p1 start 637534218 is beyond EOD, truncated [ 1634.632963][ T1575] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1634.651827][ T1579] loop3: p1 p2 p3 p4 [ 1634.655139][ T1589] loop4: detected capacity change from 0 to 1 [ 1634.656178][ T1579] loop3: p1 start 10 is beyond EOD, truncated [ 1634.668097][ T1579] loop3: p2 start 150994944 is beyond EOD, truncated [ 1634.674803][ T1579] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1634.681612][ T1579] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1634.693161][ T1569] loop1: detected capacity change from 0 to 512 [ 1634.701874][ T1575] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1634.708658][ T1575] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1634.716541][ T1569] EXT4-fs (loop1): Invalid log block size: 75 [ 1634.723129][ T1589] loop4: p1 p2 p4 [ 1634.727672][ T1589] loop4: p1 start 10 is beyond EOD, truncated [ 1634.733786][ T1589] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:17 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000006400000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1634.748610][ T1589] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1634.758865][ T1037] loop3: p1 p2 p3 p4 [ 1634.763584][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1634.769755][ T1037] loop3: p2 start 150994944 is beyond EOD, truncated [ 1634.776448][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1634.783311][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:17 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000328ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1634.864773][ T1615] loop1: detected capacity change from 0 to 512 [ 1634.875058][ T1620] loop2: detected capacity change from 0 to 1 [ 1634.876812][ T1589] loop4: detected capacity change from 0 to 1 [ 1634.892192][ T1615] EXT4-fs (loop1): Invalid log block size: 100 [ 1634.921726][ T1589] loop4: p1 p2 p4 [ 1634.927513][ T1589] loop4: p1 start 10 is beyond EOD, truncated [ 1634.933688][ T1589] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1634.963748][ T1620] loop2: p1 p2 p3 p4 [ 1634.968124][ T1620] loop2: p1 start 671285258 is beyond EOD, truncated [ 1634.974861][ T1620] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1634.990531][ T1615] loop1: detected capacity change from 0 to 512 [ 1635.003823][ T1615] EXT4-fs (loop1): Invalid log block size: 100 19:17:17 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000a0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1635.010339][ T1589] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1635.036862][ T1620] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1635.043731][ T1620] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1635.053934][ T1037] loop2: p1 p2 p3 p4 [ 1635.058228][ T1037] loop2: p1 start 671285258 is beyond EOD, truncated [ 1635.065064][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1635.073926][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:17 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000d0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:17 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000fffff888101a9466800000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1635.080695][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1635.084369][ T1644] loop3: detected capacity change from 0 to 1 [ 1635.132207][ T1644] loop3: p1 p2 p3 p4 [ 1635.137616][ T1644] loop3: p1 start 10 is beyond EOD, truncated [ 1635.143745][ T1644] loop3: p2 start 167772160 is beyond EOD, truncated [ 1635.150444][ T1644] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1635.157301][ T1644] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1635.162346][ T1663] loop1: detected capacity change from 0 to 512 [ 1635.174380][ T1663] EXT4-fs (loop1): Invalid log block size: 104 19:17:17 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a003b29ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1635.197336][ T1037] loop3: p1 p2 p3 p4 [ 1635.212463][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1635.218673][ T1037] loop3: p2 start 167772160 is beyond EOD, truncated [ 1635.225408][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1635.232226][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1635.240343][ T1663] loop1: detected capacity change from 0 to 512 19:17:18 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x104000, 0x0, 0x0, 0x0) [ 1635.244751][ T1670] loop4: detected capacity change from 0 to 1 [ 1635.248115][ T1663] EXT4-fs (loop1): Invalid log block size: 104 [ 1635.263925][ T1688] loop2: detected capacity change from 0 to 1 19:17:18 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000b0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1635.291585][ T1670] loop4: p1 p2 p4 [ 1635.295713][ T1670] loop4: p1 start 10 is beyond EOD, truncated [ 1635.301832][ T1670] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1635.311573][ T1670] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1635.311780][ T1688] loop2: p1 p2 p3 p4 19:17:18 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000000008000000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1635.340444][ T1688] loop2: p1 start 691732490 is beyond EOD, truncated [ 1635.347197][ T1688] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1635.354864][ T1688] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1635.361668][ T1688] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1635.369580][ T1708] loop3: detected capacity change from 0 to 1 [ 1635.378010][ T1037] loop4: p1 p2 p4 [ 1635.381916][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1635.388003][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1635.396429][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1635.405543][ T1710] loop1: detected capacity change from 0 to 512 [ 1635.411334][ T1708] loop3: p1 p2 p3 p4 [ 1635.415987][ T1708] loop3: p1 start 10 is beyond EOD, truncated [ 1635.422081][ T1708] loop3: p2 start 184549376 is beyond EOD, truncated [ 1635.425289][ T1710] EXT4-fs (loop1): Invalid log block size: 128 [ 1635.428755][ T1708] loop3: p3 start 2127165541 is beyond EOD, truncated 19:17:18 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00002eff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1635.428788][ T1708] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1635.472676][ T1670] loop4: detected capacity change from 0 to 1 19:17:18 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000c0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1635.505924][ T1670] loop4: p1 p2 p4 [ 1635.509938][ T1670] loop4: p1 start 10 is beyond EOD, truncated [ 1635.516159][ T1670] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1635.526628][ T1710] loop1: detected capacity change from 0 to 512 [ 1635.535534][ T1710] EXT4-fs (loop1): Invalid log block size: 128 [ 1635.547240][ T1766] loop2: detected capacity change from 0 to 1 19:17:18 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000e0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:18 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000fffff88812d32519800000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1635.554431][ T1670] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1635.582551][ T1037] loop4: p1 p2 p4 [ 1635.583642][ T1774] loop3: detected capacity change from 0 to 1 [ 1635.586606][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1635.598552][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1635.631342][ T1766] loop2: p1 p2 p3 p4 [ 1635.635694][ T1766] loop2: p1 start 771751946 is beyond EOD, truncated [ 1635.637200][ T1782] loop1: detected capacity change from 0 to 512 [ 1635.642494][ T1766] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1635.655993][ T1782] EXT4-fs (loop1): Invalid log block size: 152 [ 1635.657677][ T1774] loop3: p1 p2 p3 p4 [ 1635.662516][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1635.666829][ T1774] loop3: p1 start 10 is beyond EOD, truncated [ 1635.679404][ T1774] loop3: p2 start 201326592 is beyond EOD, truncated [ 1635.686213][ T1774] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1635.693000][ T1774] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1635.712077][ T1766] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1635.718940][ T1766] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:18 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000d0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1635.748444][ T1782] loop1: detected capacity change from 0 to 512 [ 1635.756693][ T1782] EXT4-fs (loop1): Invalid log block size: 152 19:17:18 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00293bff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:18 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000fffff88812d325d9800000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1635.830581][ T1800] loop3: detected capacity change from 0 to 1 [ 1635.851383][ T1814] loop4: detected capacity change from 0 to 1 [ 1635.858331][ T1815] loop2: detected capacity change from 0 to 1 [ 1635.871472][ T1037] loop3: p1 p2 p3 p4 [ 1635.875544][ T1822] loop1: detected capacity change from 0 to 512 [ 1635.882503][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1635.888595][ T1037] loop3: p2 start 218103808 is beyond EOD, truncated [ 1635.891356][ T1814] loop4: p1 p2 p4 [ 1635.895288][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1635.895323][ T1037] loop3: p4 size 3657465856 extends beyond EOD, [ 1635.902500][ T1814] loop4: p1 start 10 is beyond EOD, [ 1635.905801][ T1037] truncated [ 1635.912124][ T1814] truncated [ 1635.923631][ T1814] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1635.931205][ T1815] loop2: p1 p2 p3 p4 [ 1635.935450][ T1822] EXT4-fs (loop1): Invalid log block size: 152 [ 1635.936204][ T1815] loop2: p1 start 992542730 is beyond EOD, truncated [ 1635.948325][ T1815] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1635.961588][ T1800] loop3: p1 p2 p3 p4 [ 1635.965949][ T1800] loop3: p1 start 10 is beyond EOD, truncated [ 1635.966102][ T1815] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1635.972084][ T1800] loop3: p2 start 218103808 is beyond EOD, truncated [ 1635.978826][ T1815] loop2: p4 size 3657465856 extends beyond EOD, [ 1635.985615][ T1800] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1635.985634][ T1800] loop3: p4 size 3657465856 extends beyond EOD, [ 1635.991973][ T1815] truncated [ 1635.998703][ T1800] truncated [ 1636.012430][ T1814] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1636.023933][ T1822] loop1: detected capacity change from 0 to 512 19:17:18 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000e0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:18 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x105400, 0x0, 0x0, 0x0) 19:17:18 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000fffff888101a944a800000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1636.030919][ T1822] EXT4-fs (loop1): Invalid log block size: 152 [ 1636.069895][ T1814] loop4: detected capacity change from 0 to 1 19:17:18 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00003fff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1636.120360][ T1855] loop3: detected capacity change from 0 to 1 [ 1636.126907][ T1814] loop4: p1 p2 p4 [ 1636.130831][ T1814] loop4: p1 start 10 is beyond EOD, truncated [ 1636.136955][ T1814] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1636.148705][ T1814] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1636.151213][ T1866] loop2: detected capacity change from 0 to 1 [ 1636.165598][ T1864] loop1: detected capacity change from 0 to 512 [ 1636.172987][ T1864] EXT4-fs (loop1): Invalid log block size: 168 [ 1636.214002][ T1037] loop3: p1 p2 p3 p4 [ 1636.218071][ T1866] loop2: p1 p2 p3 p4 [ 1636.224342][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1636.230437][ T1037] loop3: p2 start 234881024 is beyond EOD, truncated [ 1636.237148][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1636.244053][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1636.251809][ T1866] loop2: p1 start 1056964618 is beyond EOD, truncated 19:17:19 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000f0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1636.258642][ T1866] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1636.269288][ T1864] loop1: detected capacity change from 0 to 512 [ 1636.282017][ T1864] EXT4-fs (loop1): Invalid log block size: 168 [ 1636.299344][ T1866] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1636.306158][ T1866] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:19 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00000000000002b900000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1636.316792][ T1855] loop3: p1 p2 p3 p4 [ 1636.320977][ T1855] loop3: p1 start 10 is beyond EOD, truncated [ 1636.327150][ T1855] loop3: p2 start 234881024 is beyond EOD, truncated [ 1636.333866][ T1855] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1636.340667][ T1855] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1636.390824][ T1894] loop4: detected capacity change from 0 to 1 [ 1636.409179][ T1898] loop1: detected capacity change from 0 to 512 [ 1636.421349][ T1894] loop4: p1 p2 p4 [ 1636.427190][ T1894] loop4: p1 start 10 is beyond EOD, truncated [ 1636.433345][ T1894] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:19 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000040ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1636.438718][ T1898] EXT4-fs (loop1): Invalid log block size: 185 [ 1636.459952][ T1894] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:19 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000f0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1636.491937][ T1037] loop4: p1 p2 p4 [ 1636.496404][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1636.502535][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1636.518588][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1636.526996][ T1917] loop2: detected capacity change from 0 to 1 19:17:19 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800110000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1636.559757][ T1898] loop1: detected capacity change from 0 to 512 [ 1636.568427][ T1898] EXT4-fs (loop1): Invalid log block size: 185 [ 1636.575300][ T1917] loop2: p1 p2 p3 p4 [ 1636.579488][ T1917] loop2: p1 start 1073741834 is beyond EOD, truncated [ 1636.586334][ T1917] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1636.609328][ T1925] loop3: detected capacity change from 0 to 1 [ 1636.618219][ T1935] loop4: detected capacity change from 0 to 1 19:17:19 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00000000ffffffc000000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1636.651209][ T1925] loop3: p1 p2 p3 p4 [ 1636.657247][ T1925] loop3: p1 start 10 is beyond EOD, truncated [ 1636.657429][ T1917] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1636.663462][ T1925] loop3: p2 start 251658240 is beyond EOD, truncated [ 1636.670327][ T1917] loop2: p4 size 3657465856 extends beyond EOD, [ 1636.676990][ T1925] loop3: p3 start 2127165541 is beyond EOD, [ 1636.676997][ T1917] truncated [ 1636.692492][ T1925] truncated [ 1636.695691][ T1925] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1636.721550][ T1037] loop4: p1 p2 p4 [ 1636.725525][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1636.731714][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1636.741362][ T1945] loop1: detected capacity change from 0 to 512 19:17:19 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x200000, 0x0, 0x0, 0x0) [ 1636.753602][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1636.814991][ T1945] EXT4-fs (loop1): Invalid log block size: 192 [ 1636.828161][ T1935] loop4: p1 p2 p4 [ 1636.847668][ T1935] loop4: p1 start 10 is beyond EOD, truncated [ 1636.853827][ T1935] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:19 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000100000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:19 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000048ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1636.868064][ T1945] loop1: detected capacity change from 0 to 512 [ 1636.906187][ T1945] EXT4-fs (loop1): Invalid log block size: 192 19:17:19 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000fffff888101a942e800000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1636.926700][ T1935] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1636.937438][ T1977] loop3: detected capacity change from 0 to 1 [ 1636.954293][ T1983] loop2: detected capacity change from 0 to 1 [ 1636.991156][ T1977] loop3: p1 p2 p3 p4 [ 1636.995646][ T1977] loop3: p1 start 10 is beyond EOD, truncated [ 1636.997443][ T1935] loop4: detected capacity change from 0 to 1 [ 1637.001766][ T1977] loop3: p2 start 268435456 is beyond EOD, truncated [ 1637.014599][ T1977] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1637.021395][ T1977] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1637.030043][ T1983] loop2: p1 p2 p3 p4 [ 1637.034553][ T1983] loop2: p1 start 1207959562 is beyond EOD, truncated [ 1637.041403][ T1983] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1637.057693][ T1983] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1637.064549][ T1983] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1637.072520][ T1037] loop4: p1 p2 p4 [ 1637.076551][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1637.082765][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:19 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00004cff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1637.114824][ T1996] loop1: detected capacity change from 0 to 512 [ 1637.132157][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1637.142618][ T1996] EXT4-fs (loop1): Invalid log block size: 232 [ 1637.153729][ T1935] loop4: p1 p2 p4 19:17:19 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000110000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1637.166664][ T1935] loop4: p1 start 10 is beyond EOD, truncated [ 1637.172840][ T1935] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1637.187829][ T1935] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1637.205120][ T2016] loop2: detected capacity change from 0 to 1 19:17:20 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800120000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1637.235192][ T2022] loop3: detected capacity change from 0 to 1 [ 1637.251394][ T2016] loop2: p1 p2 p3 p4 [ 1637.255816][ T2016] loop2: p1 start 1275068426 is beyond EOD, truncated [ 1637.262639][ T2016] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1637.275736][ T1996] loop1: detected capacity change from 0 to 512 19:17:20 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x400000, 0x0, 0x0, 0x0) [ 1637.281287][ T2022] loop3: p1 p2 p3 p4 [ 1637.282650][ T1996] EXT4-fs (loop1): Invalid log block size: 232 [ 1637.286127][ T2022] loop3: p1 start 10 is beyond EOD, truncated [ 1637.298295][ T2022] loop3: p2 start 285212672 is beyond EOD, truncated [ 1637.305023][ T2022] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1637.311916][ T2022] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1637.314445][ T2016] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1637.325834][ T2016] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:20 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000007ffffff200000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:20 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000060ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:20 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000120000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1637.428169][ T2042] loop4: detected capacity change from 0 to 1 [ 1637.436329][ T2052] loop1: detected capacity change from 0 to 512 [ 1637.460228][ T2052] EXT4-fs (loop1): Invalid log block size: 242 [ 1637.461270][ T2042] loop4: p1 p2 p4 [ 1637.470409][ T2042] loop4: p1 start 10 is beyond EOD, truncated [ 1637.476597][ T2042] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1637.498366][ T2060] loop2: detected capacity change from 0 to 1 [ 1637.504561][ T2068] loop3: detected capacity change from 0 to 1 [ 1637.516243][ T2052] loop1: detected capacity change from 0 to 512 [ 1637.518999][ T2042] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1637.530223][ T2052] EXT4-fs (loop1): Invalid log block size: 242 [ 1637.541180][ T2060] loop2: p1 p2 p3 p4 [ 1637.545398][ T2068] loop3: p1 p2 p3 p4 [ 1637.549786][ T2060] loop2: p1 start 1610612746 is beyond EOD, truncated [ 1637.556646][ T2060] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1637.565653][ T2068] loop3: p1 start 10 is beyond EOD, truncated [ 1637.571808][ T2068] loop3: p2 start 301989888 is beyond EOD, truncated [ 1637.578554][ T2068] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1637.585347][ T2068] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1637.609319][ T2042] loop4: detected capacity change from 0 to 1 [ 1637.612253][ T2060] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:20 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000007ffffff800000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1637.622232][ T2060] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:20 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000130000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:20 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000068ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1637.656333][ T2042] loop4: p1 p2 p4 [ 1637.660335][ T2042] loop4: p1 start 10 is beyond EOD, truncated [ 1637.666545][ T2042] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1637.739083][ T2101] loop3: detected capacity change from 0 to 1 [ 1637.745552][ T2097] loop1: detected capacity change from 0 to 512 [ 1637.764586][ T2104] loop2: detected capacity change from 0 to 1 [ 1637.781032][ T2042] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1637.841190][ T2101] loop3: p1 p2 p3 p4 [ 1637.845562][ T2097] EXT4-fs (loop1): Invalid log block size: 248 [ 1637.852061][ T2104] loop2: p1 p2 p3 p4 [ 1637.868085][ T2104] loop2: p1 start 1744830474 is beyond EOD, truncated [ 1637.874955][ T2104] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1637.883027][ T2101] loop3: p1 start 10 is beyond EOD, truncated [ 1637.889199][ T2101] loop3: p2 start 318767104 is beyond EOD, truncated [ 1637.895930][ T2101] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1637.902734][ T2101] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1637.930795][ T2104] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:20 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800130000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1637.937616][ T2104] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1637.950817][ T2097] loop1: detected capacity change from 0 to 512 [ 1637.959246][ T2097] EXT4-fs (loop1): Invalid log block size: 248 [ 1637.989370][ T1037] loop2: p1 p2 p3 p4 [ 1637.993564][ T1037] loop2: p1 start 1744830474 is beyond EOD, truncated [ 1638.000398][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1638.009993][ T2127] loop4: detected capacity change from 0 to 1 [ 1638.027182][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:20 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000007ffffff900000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:20 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00006cff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:20 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000001a0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1638.034004][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1638.077902][ T2142] loop1: detected capacity change from 0 to 512 [ 1638.088895][ T2142] EXT4-fs (loop1): Invalid log block size: 249 [ 1638.091736][ T2127] loop4: p1 p2 p4 [ 1638.099388][ T2127] loop4: p1 start 10 is beyond EOD, truncated [ 1638.105495][ T2127] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1638.106088][ T2145] loop3: detected capacity change from 0 to 1 19:17:20 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x401000, 0x0, 0x0, 0x0) [ 1638.133344][ T2127] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1638.143988][ T2156] loop2: detected capacity change from 0 to 1 [ 1638.153657][ T2142] loop1: detected capacity change from 0 to 512 [ 1638.161240][ T2142] EXT4-fs (loop1): Invalid log block size: 249 [ 1638.170269][ T2145] loop3: p1 p2 p3 p4 [ 1638.181202][ T2156] loop2: p1 p2 p3 p4 [ 1638.185649][ T2156] loop2: p1 start 1811939338 is beyond EOD, truncated [ 1638.192516][ T2156] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1638.200833][ T1037] loop4: p1 p2 p4 [ 1638.205030][ T2145] loop3: p1 start 10 is beyond EOD, truncated [ 1638.211151][ T2145] loop3: p2 start 436207616 is beyond EOD, truncated [ 1638.217846][ T2145] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1638.224621][ T2145] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:21 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000ffffffffffffffffe00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1638.238537][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1638.244731][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1638.259365][ T2156] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1638.266261][ T2156] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1638.291980][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1638.303265][ T2178] loop1: detected capacity change from 0 to 512 [ 1638.325305][ T2178] EXT4-fs (loop1): Invalid log block size: 254 19:17:21 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008021a0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:21 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000074ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:21 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000240000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1638.401789][ T2178] loop1: detected capacity change from 0 to 512 [ 1638.411613][ T2178] EXT4-fs (loop1): Invalid log block size: 254 19:17:21 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000000003ffff00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1638.442356][ T2200] loop4: detected capacity change from 0 to 1 [ 1638.450550][ T2208] loop2: detected capacity change from 0 to 1 [ 1638.485082][ T2213] loop3: detected capacity change from 0 to 1 [ 1638.501021][ T1037] loop4: p1 p2 p4 [ 1638.511109][ T2208] loop2: p1 p2 p3 p4 [ 1638.511245][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1638.516445][ T2208] loop2: p1 start 1946157066 is beyond EOD, truncated [ 1638.521316][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1638.528089][ T2208] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1638.537373][ T2213] loop3: p1 p2 p3 p4 [ 1638.546689][ T2213] loop3: p1 start 10 is beyond EOD, truncated [ 1638.552876][ T2213] loop3: p2 start 603979776 is beyond EOD, truncated [ 1638.559550][ T2213] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1638.566008][ T2222] loop1: detected capacity change from 0 to 512 [ 1638.566387][ T2213] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1638.582458][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1638.585098][ T2222] EXT4-fs (loop1): Invalid log block size: 255 [ 1638.590600][ T2208] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1638.602722][ T2208] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1638.610526][ T2200] loop4: p1 p2 p4 [ 1638.615495][ T2200] loop4: p1 start 10 is beyond EOD, truncated [ 1638.621609][ T2200] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:21 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000250000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1638.633451][ T2200] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1638.655081][ T2222] loop1: detected capacity change from 0 to 512 [ 1638.661992][ T2222] EXT4-fs (loop1): Invalid log block size: 255 [ 1638.679200][ T2247] loop3: detected capacity change from 0 to 1 19:17:21 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00007aff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:21 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000000007fffffff00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1638.714162][ T2200] loop4: detected capacity change from 0 to 1 [ 1638.731078][ T2247] loop3: p1 p2 p3 p4 [ 1638.735328][ T2247] loop3: p1 start 10 is beyond EOD, truncated [ 1638.741452][ T2247] loop3: p2 start 620756992 is beyond EOD, truncated [ 1638.748133][ T2247] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1638.754924][ T2247] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1638.794799][ T1037] loop4: p1 p2 p4 [ 1638.798702][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1638.804803][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1638.813316][ T2264] loop1: detected capacity change from 0 to 512 [ 1638.819813][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1638.820011][ T2265] loop2: detected capacity change from 0 to 1 [ 1638.836161][ T2200] loop4: p1 p2 p4 19:17:21 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x4af000, 0x0, 0x0, 0x0) 19:17:21 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000260000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1638.840222][ T2200] loop4: p1 start 10 is beyond EOD, truncated [ 1638.846348][ T2200] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1638.868809][ T2264] EXT4-fs (loop1): Invalid log block size: 255 [ 1638.894158][ T2200] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1638.911922][ T2284] loop3: detected capacity change from 0 to 1 [ 1638.938159][ T2265] loop2: p1 p2 p3 p4 [ 1638.942622][ T2265] loop2: p1 start 2046820362 is beyond EOD, truncated [ 1638.949539][ T2265] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1638.961273][ T2264] loop1: detected capacity change from 0 to 512 [ 1638.969184][ T2264] EXT4-fs (loop1): Invalid log block size: 255 [ 1638.981293][ T2284] loop3: p1 p2 p3 p4 19:17:21 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800200000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1638.987615][ T2284] loop3: p1 start 10 is beyond EOD, truncated [ 1638.993730][ T2284] loop3: p2 start 637534208 is beyond EOD, truncated [ 1639.000486][ T2284] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1639.007270][ T2284] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1639.035131][ T2265] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1639.041983][ T2265] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1639.059666][ T1037] loop2: p1 p2 p3 p4 19:17:21 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000002e0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:21 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00000000ffffffff00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1639.080784][ T1037] loop2: p1 start 2046820362 is beyond EOD, truncated [ 1639.087655][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1639.112068][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1639.118959][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1639.126221][ T2317] loop3: detected capacity change from 0 to 1 [ 1639.132835][ T2315] loop4: detected capacity change from 0 to 1 [ 1639.140094][ T2321] loop1: detected capacity change from 0 to 512 [ 1639.148263][ T2321] EXT4-fs (loop1): Invalid log block size: 255 [ 1639.181037][ T2315] loop4: p1 p2 p4 [ 1639.184853][ T2317] loop3: p1 p2 p3 p4 [ 1639.189185][ T2315] loop4: p1 start 10 is beyond EOD, truncated [ 1639.195384][ T2315] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1639.205532][ T2317] loop3: p1 start 10 is beyond EOD, truncated [ 1639.211648][ T2317] loop3: p2 start 771751936 is beyond EOD, truncated [ 1639.218371][ T2317] loop3: p3 start 2127165541 is beyond EOD, truncated 19:17:22 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000480ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1639.225236][ T2317] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1639.252780][ T2321] loop1: detected capacity change from 0 to 512 [ 1639.260403][ T2321] EXT4-fs (loop1): Invalid log block size: 255 [ 1639.281722][ T2340] loop2: detected capacity change from 0 to 1 [ 1639.298744][ T2315] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1639.328075][ T1037] loop4: p1 p2 p4 [ 1639.331961][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1639.338041][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1639.346159][ T2340] loop2: p1 p2 p3 p4 [ 1639.359027][ T2340] loop2: p1 start 2147745802 is beyond EOD, truncated [ 1639.359261][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:22 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f0007ffffffffffff00000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1639.365871][ T2340] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1639.400548][ T2340] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1639.407398][ T2340] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:22 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000480000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:22 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800240000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1639.457580][ T2355] loop1: detected capacity change from 0 to 512 [ 1639.508629][ T2355] EXT4-fs (loop1): Invalid log block size: 255 [ 1639.527099][ T1037] loop2: p1 p2 p3 p4 [ 1639.531651][ T1037] loop2: p1 start 2147745802 is beyond EOD, truncated [ 1639.538438][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1639.547119][ T2369] loop3: detected capacity change from 0 to 1 [ 1639.564585][ T2373] loop4: detected capacity change from 0 to 1 [ 1639.599604][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1639.606474][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1639.621219][ T2369] loop3: p1 p2 p3 p4 [ 1639.625868][ T2369] loop3: p1 start 10 is beyond EOD, truncated [ 1639.632028][ T2369] loop3: p2 start 1207959552 is beyond EOD, truncated [ 1639.638799][ T2369] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1639.645590][ T2369] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1639.658971][ T2355] loop1: detected capacity change from 0 to 512 [ 1639.666039][ T2373] loop4: p1 p2 p4 [ 1639.670167][ T2373] loop4: p1 start 10 is beyond EOD, truncated [ 1639.676325][ T2373] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1639.687050][ T2355] EXT4-fs (loop1): Invalid log block size: 255 19:17:22 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000090ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:22 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000200000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1639.727739][ T2373] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:22 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000004c0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:22 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x4fd000, 0x0, 0x0, 0x0) [ 1639.797627][ T2398] loop2: detected capacity change from 0 to 1 [ 1639.830943][ T2406] loop1: detected capacity change from 0 to 512 [ 1639.841347][ T1037] loop2: p1 p2 p3 p4 [ 1639.845509][ T1037] loop2: p1 start 2415919114 is beyond EOD, truncated [ 1639.852514][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1639.859715][ T2373] loop4: detected capacity change from 0 to 1 [ 1639.872451][ T2406] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1639.873239][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1639.887284][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1639.899083][ T2420] loop3: detected capacity change from 0 to 1 [ 1639.905947][ T2406] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1639.913813][ T2406] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1639.924197][ T2406] ext4_test_bit(bit=16, block=18) = 0 [ 1639.929674][ T2406] EXT4-fs mount: 17 callbacks suppressed [ 1639.929686][ T2406] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1639.947215][ T2398] loop2: p1 p2 p3 p4 [ 1639.951589][ T2398] loop2: p1 start 2415919114 is beyond EOD, truncated [ 1639.958446][ T2398] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1639.970939][ T2420] loop3: p1 p2 p3 p4 [ 1639.975307][ T2420] loop3: p1 start 10 is beyond EOD, truncated [ 1639.981459][ T2420] loop3: p2 start 1275068416 is beyond EOD, truncated [ 1639.988254][ T2420] loop3: p3 start 2127165541 is beyond EOD, truncated 19:17:22 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800250000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:22 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000300000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:22 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000400)={{}, 0x0, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16]}, @devid}) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001c40)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') sendmsg$NLBL_CIPSOV4_C_REMOVE(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r1, @ANYRES32, @ANYRESOCT, @ANYRES32, @ANYRES32, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000047bc0)={{0x0, 0x9, 0x4, 0x4, 0x1, 0x3, 0x0, 0x101, 0x7, 0x200, 0x4, 0x0, 0x7, 0x8, 0xcda}}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000048bc0)={0x0, 0x0, "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", "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"}) r6 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r7, 0x50009418, &(0x7f0000000400)={{}, r9, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16=r10]}, @devid}) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r6, 0x84009422, &(0x7f0000001c40)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r12, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r12, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') sendmsg$NLBL_CIPSOV4_C_REMOVE(r12, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r11, @ANYRES32=r10, @ANYRESOCT, @ANYRES32=r8, @ANYRES32, @ANYRES64, @ANYRESHEX=r6], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000049bc0)={0x84e, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {r5}, {0x0, r8}], 0x0, "68d8be868a3a09"}) [ 1639.995109][ T2420] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:22 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000600000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1640.028466][ T2398] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1640.035354][ T2398] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1640.077461][ T2448] loop4: detected capacity change from 0 to 1 [ 1640.083667][ T2450] loop1: detected capacity change from 0 to 512 [ 1640.110837][ T2450] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1640.121414][ T2455] loop3: detected capacity change from 0 to 1 19:17:22 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a0001a2ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1640.128540][ T2450] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1640.130858][ T2448] loop4: p1 p2 p4 [ 1640.141729][ T2448] loop4: p1 start 10 is beyond EOD, truncated [ 1640.147824][ T2448] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1640.155223][ T2450] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1640.165643][ T2450] ext4_test_bit(bit=16, block=18) = 0 [ 1640.171043][ T2450] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1640.174453][ T2448] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1640.192051][ T1037] loop3: p1 p2 p3 p4 [ 1640.196697][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1640.202819][ T1037] loop3: p2 start 1610612736 is beyond EOD, truncated [ 1640.209628][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1640.210817][ T2481] loop2: detected capacity change from 0 to 1 [ 1640.216427][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1640.248263][ T2455] loop3: p1 p2 p3 p4 [ 1640.250763][ T2481] loop2: p1 p2 p3 p4 [ 1640.253537][ T2455] loop3: p1 start 10 is beyond EOD, truncated [ 1640.256398][ T2481] loop2: p1 start 2717974538 is beyond EOD, truncated [ 1640.262482][ T2455] loop3: p2 start 1610612736 is beyond EOD, truncated 19:17:23 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000400000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:23 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000680000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1640.269234][ T2481] loop2: p2 size 1073872896 extends beyond EOD, [ 1640.276084][ T2455] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1640.282428][ T2481] truncated [ 1640.292462][ T2455] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1640.304998][ T2481] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1640.306350][ T2448] loop4: detected capacity change from 0 to 1 [ 1640.311824][ T2481] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1640.354127][ T2448] loop4: p1 p2 p4 [ 1640.358902][ T2448] loop4: p1 start 10 is beyond EOD, truncated [ 1640.365011][ T2448] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:23 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a0002a2ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1640.421267][ T2526] loop1: detected capacity change from 0 to 512 [ 1640.434578][ T2448] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1640.443095][ T2530] loop3: detected capacity change from 0 to 1 [ 1640.449344][ T2526] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1640.458485][ T2526] EXT4-fs (loop1): orphan cleanup on readonly fs 19:17:23 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000080)) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) 19:17:23 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800260000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1640.470877][ T2530] loop3: p1 p2 p3 p4 [ 1640.475153][ T2530] loop3: p1 start 10 is beyond EOD, truncated [ 1640.481253][ T2530] loop3: p2 start 1744830464 is beyond EOD, truncated [ 1640.488091][ T2530] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1640.494876][ T2530] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1640.523823][ T2526] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1640.534308][ T2526] ext4_test_bit(bit=16, block=18) = 0 [ 1640.539781][ T2526] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1640.556786][ T2548] loop2: detected capacity change from 0 to 1 19:17:23 executing program 5: r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x1ff]}, 0x8, 0x80000) ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f00000000c0)) r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r2 = fsopen(&(0x7f0000000100)='afs\x00', 0x1) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x8, 0x4010, r2, 0xf3f5d000) dup2(r1, r1) [ 1640.610380][ T2548] loop2: p1 p2 p3 p4 19:17:23 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x541000, 0x0, 0x0, 0x0) 19:17:23 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000500000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:23 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000006c0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1640.641684][ T2548] loop2: p1 start 2718040074 is beyond EOD, truncated [ 1640.648491][ T2548] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1640.668629][ T2561] loop4: detected capacity change from 0 to 1 [ 1640.675055][ T2548] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1640.681877][ T2548] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:23 executing program 5: ioctl$SNDRV_TIMER_IOCTL_CONTINUE(0xffffffffffffffff, 0x54a2) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x80, 0x4, 0x3f, 0x4, 0x0, 0x7fffffff, 0x92408, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x6, 0x4, @perf_config_ext={0xc, 0xffffffff}, 0x4001, 0x9, 0x7, 0x9, 0x5, 0x8000, 0x7, 0x0, 0x7, 0x0, 0x7}, 0xffffffffffffffff, 0x3, r0, 0x1) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1640.700822][ T2561] loop4: p1 p2 p4 [ 1640.704675][ T2561] loop4: p1 start 10 is beyond EOD, truncated [ 1640.710772][ T2561] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1640.719874][ T2561] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1640.729174][ T2587] loop1: detected capacity change from 0 to 512 [ 1640.736271][ T2597] loop3: detected capacity change from 0 to 1 [ 1640.771568][ T2597] loop3: p1 p2 p3 p4 [ 1640.778230][ T2587] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1640.779542][ T2597] loop3: p1 start 10 is beyond EOD, truncated [ 1640.790702][ T2587] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1640.792280][ T2597] loop3: p2 start 1811939328 is beyond EOD, truncated [ 1640.800042][ T2587] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1640.805384][ T2597] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1640.815702][ T2587] ext4_test_bit(bit=16, block=18) = 0 [ 1640.815731][ T2587] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1640.822495][ T2597] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:23 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008e4270000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:23 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000600000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:23 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a0000c0ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:23 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000740000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1640.949774][ T2631] loop4: detected capacity change from 0 to 1 [ 1640.972644][ T2644] loop2: detected capacity change from 0 to 1 [ 1641.008121][ T2631] loop4: p1 p2 p4 [ 1641.034665][ T2631] loop4: p1 start 10 is beyond EOD, truncated [ 1641.041158][ T2631] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1641.069856][ T2631] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1641.077107][ T2650] loop1: detected capacity change from 0 to 512 19:17:23 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x600cc080, &(0x7f0000000080)='\x00'/11, 0x0, 0x0, 0x0) [ 1641.083427][ T2653] loop3: detected capacity change from 0 to 1 [ 1641.094435][ T2650] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1641.105063][ T2653] loop3: p1 p2 p3 p4 [ 1641.115247][ T2644] loop2: p1 p2 p3 p4 [ 1641.122666][ T2644] loop2: p1 start 3221225482 is beyond EOD, truncated [ 1641.129623][ T2644] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1641.141464][ T2653] loop3: p1 start 10 is beyond EOD, truncated [ 1641.147570][ T2653] loop3: p2 start 1946157056 is beyond EOD, truncated [ 1641.154410][ T2653] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1641.161246][ T2653] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1641.198738][ T2650] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1641.206403][ T2650] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1641.216860][ T2650] ext4_test_bit(bit=16, block=18) = 0 [ 1641.222265][ T2650] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:24 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0xb) clone(0x10000, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1641.249343][ T2631] loop4: detected capacity change from 0 to 1 [ 1641.255798][ T2644] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1641.262641][ T2644] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:24 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a0004f5ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1641.300183][ T2631] loop4: p1 p2 p4 [ 1641.310970][ T2631] loop4: p1 start 10 is beyond EOD, truncated [ 1641.317115][ T2631] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1641.326742][ T2631] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:24 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000700000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1641.369056][ T2695] loop2: detected capacity change from 0 to 1 [ 1641.410981][ T2695] loop2: p1 p2 p3 p4 [ 1641.416028][ T2695] loop2: p1 start 4110680074 is beyond EOD, truncated [ 1641.422863][ T2695] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1641.463705][ T2695] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1641.470530][ T2695] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1641.478722][ T2705] loop1: detected capacity change from 0 to 512 [ 1641.486832][ T1037] loop2: p1 p2 p3 p4 [ 1641.491341][ T1037] loop2: p1 start 4110680074 is beyond EOD, truncated [ 1641.498121][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:24 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x970000, 0x0, 0x0, 0x0) 19:17:24 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000007a0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:24 executing program 5: set_thread_area(&(0x7f0000000080)={0x200, 0x100000, 0x4000, 0x0, 0x1, 0x1}) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) 19:17:24 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008002e0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1641.508903][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1641.515719][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1641.538674][ T2705] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1641.550990][ T2705] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1641.551334][ T2723] loop4: detected capacity change from 0 to 1 19:17:24 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000fffff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1641.568429][ T2705] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1641.578847][ T2705] ext4_test_bit(bit=16, block=18) = 0 [ 1641.584261][ T2705] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1641.596777][ T2726] loop3: detected capacity change from 0 to 1 [ 1641.640533][ T2723] loop4: p1 p2 p4 [ 1641.640811][ T2726] loop3: p1 p2 p3 p4 [ 1641.644488][ T2723] loop4: p1 start 10 is beyond EOD, truncated [ 1641.648728][ T2726] loop3: p1 start 10 is beyond EOD, truncated [ 1641.654353][ T2723] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1641.660416][ T2726] loop3: p2 start 2046820352 is beyond EOD, truncated [ 1641.674306][ T2726] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1641.681089][ T2726] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:24 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000800000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:24 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0xd8, 0xf9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) gettid() [ 1641.694266][ T2723] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1641.715316][ T2752] loop2: detected capacity change from 0 to 1 19:17:24 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000008a0000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1641.749023][ T2759] loop1: detected capacity change from 0 to 512 [ 1641.756429][ T2752] loop2: p1 p2 p3 p4 [ 1641.761863][ T2752] loop2: p1 start 4279173130 is beyond EOD, truncated [ 1641.768778][ T2752] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1641.796592][ T2723] loop4: detected capacity change from 0 to 1 [ 1641.818009][ T2759] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1641.830839][ T2723] loop4: p1 p2 p4 [ 1641.835523][ T2723] loop4: p1 start 10 is beyond EOD, truncated [ 1641.841640][ T2723] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1641.860464][ T2775] loop3: detected capacity change from 0 to 1 [ 1641.866977][ T2759] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1641.890462][ T2752] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1641.897257][ T2752] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1641.920334][ T2759] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1641.930736][ T2759] ext4_test_bit(bit=16, block=18) = 0 [ 1641.936105][ T2759] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1641.941495][ T2723] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1641.960557][ T2775] loop3: p1 p2 p3 p4 19:17:24 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) ptrace$setregs(0xd, 0xffffffffffffffff, 0x504a2cbc, &(0x7f0000000080)="db93320c3fff9b") ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r0) 19:17:24 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000900000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1641.965367][ T2775] loop3: p1 start 10 is beyond EOD, truncated [ 1641.971506][ T2775] loop3: p2 start 2315255808 is beyond EOD, truncated [ 1641.978338][ T2775] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1641.985160][ T2775] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1641.995411][ T1037] loop2: p1 p2 p3 p4 [ 1641.999784][ T1037] loop2: p1 start 4279173130 is beyond EOD, truncated [ 1642.006670][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:24 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xc04a01, 0x0, 0x0, 0x0) 19:17:24 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800300000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1642.054853][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1642.061689][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:24 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000002ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:24 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000900000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1642.149424][ T2832] loop2: detected capacity change from 0 to 1 [ 1642.155687][ T2824] loop1: detected capacity change from 0 to 512 [ 1642.172176][ T2841] loop4: detected capacity change from 0 to 1 [ 1642.181232][ T2824] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1642.191103][ T2824] EXT4-fs (loop1): orphan cleanup on readonly fs 19:17:25 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000140), 0x40, 0x0) r1 = perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x6d, 0x9, 0x0, 0x3f, 0x0, 0x10001, 0x0, 0x8, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0xfc, 0x0, @perf_bp={&(0x7f0000000080), 0xb}, 0x400, 0x81, 0x1, 0x4, 0x100000000, 0x10000, 0x0, 0x0, 0x3, 0x0, 0x36}, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0x1) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) clone(0x41400, &(0x7f0000000180)="390be53887145b0be6fc56534f8c75c554315ce824a73e9e5bbf00e31f812e2036658665f81c051ee909fa29106d841970ad23a788901460859bb2fd63f41bb5831633bd66a56177b377897a6890632a8fb291397ebb846852c43b9c7c41391157adf294c986ecf62ae4cf226eb04b5141d1b84e95e7c16d9fc525035fdff3a9e27650c850046c8b873592389e7283fcccb5bd19bf742519d6555c3229005eacc6920255fdb7343a0564579ca569f57e23c71d5ee5881efb8028b017f24045f305c5223bbfcfb3bba4a716e075", &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)="c93995da1efeb4ca42e61fa5fbe1384cd409a1fb24d7c0a33f53f9385833b464c11e3a14916811ede0c999df8f64dd768894988bdde127d2f49305420b4c02a03eb8a2a36d4234c4b6905f68f906195515564fe778caa567ec5769d78cb5ff22c9ebee3744e3be0307381fcba64b25dae171b68f0b9f4477ef0d7a782600974babed3e66b84b6ba29bd3fd9fa8a1f272b8148d0510acfe3d2d660c604404a66b236a124e72da90fefa8904fdb642db9256ac66422e424f3e2c45f3691c397219e15680fe56e3d26caec5af957ee1d2c0ab880f01db169ff49c48c85c34b4e177cbb1cfe901db1206afdf6fa94c9dced06bde8cc392343906") preadv(r1, &(0x7f0000000440)=[{&(0x7f0000000400)=""/40, 0x28}], 0x1, 0x7, 0x81) [ 1642.199264][ T2845] loop3: detected capacity change from 0 to 1 [ 1642.199735][ T2824] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1642.215822][ T2824] ext4_test_bit(bit=16, block=18) = 0 [ 1642.221212][ T2824] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1642.235036][ T1037] loop4: p1 p2 p4 [ 1642.235052][ T2832] loop2: p1 p2 p3 p4 [ 1642.239268][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1642.244656][ T2832] loop2: p1 start 33554442 is beyond EOD, truncated [ 1642.249024][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1642.255623][ T2832] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1642.270403][ T2832] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1642.277236][ T2832] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1642.284531][ T2845] loop3: p1 p2 p3 p4 [ 1642.289320][ T2845] loop3: p1 start 10 is beyond EOD, truncated 19:17:25 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000a00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:25 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000003ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1642.295577][ T2845] loop3: p2 start 2415919104 is beyond EOD, truncated [ 1642.302355][ T2845] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1642.309116][ T2845] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1642.397758][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1642.415677][ T2873] loop2: detected capacity change from 0 to 1 [ 1642.417667][ T2841] loop4: p1 p2 p4 [ 1642.426050][ T2841] loop4: p1 start 10 is beyond EOD, truncated [ 1642.432244][ T2841] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1642.440816][ T2841] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1642.456477][ T2891] loop1: detected capacity change from 0 to 512 [ 1642.490791][ T2873] loop2: p1 p2 p3 p4 [ 1642.491622][ T2891] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:17:25 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000c00000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:25 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xd04f00, 0x0, 0x0, 0x0) [ 1642.495293][ T2873] loop2: p1 start 50331658 is beyond EOD, truncated [ 1642.509351][ T2873] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1642.529867][ T2841] loop4: detected capacity change from 0 to 1 [ 1642.530124][ T2891] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1642.544793][ T2873] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:25 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0xe0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x46, 0x0, @perf_config_ext={0xffff, 0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0x2, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) clone(0x400, &(0x7f0000000080)="48c2f5eb5f7365fdd24e5adcbbcca36c6cfe204de73b807b692dd11c86176d5be38a280bf6881627effe3adf3c7ba2b3de023c8f3a0f1e9f4fa5d648fce276095b5be7175613bf0d9363fa294493692ddbda911889026d8c62d30c9437bbe02bbfe1281d8fbbfb8d6e861e01c64e3032f95e0acb2b69a16c063a1100187002edacc327c32908905229985f726ace4972b87df62b32f56aecf254a9ab7a1f", &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="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") [ 1642.548302][ T2891] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1642.551639][ T2873] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1642.562111][ T2891] ext4_test_bit(bit=16, block=18) = 0 [ 1642.574505][ T2891] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1642.586604][ T2911] loop3: detected capacity change from 0 to 1 [ 1642.586919][ T1037] loop2: p1 p2 p3 p4 [ 1642.597418][ T2841] loop4: p1 p2 p4 [ 1642.601577][ T2841] loop4: p1 start 10 is beyond EOD, truncated [ 1642.607662][ T2841] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1642.610456][ T1037] loop2: p1 start 50331658 is beyond EOD, truncated [ 1642.621514][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1642.621763][ T2841] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1642.630464][ T2911] loop3: p1 p2 p3 p4 [ 1642.641520][ T2911] loop3: p1 start 10 is beyond EOD, truncated [ 1642.647607][ T2911] loop3: p2 start 3221225472 is beyond EOD, truncated 19:17:25 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000b00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:25 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008003f0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1642.654480][ T2911] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1642.661274][ T2911] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1642.683399][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1642.690253][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:25 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000040200024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:25 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}}, 0x0, 0x6, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) 19:17:25 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000004ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1642.758312][ T2950] loop1: detected capacity change from 0 to 512 19:17:25 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r0 = getpgid(0x0) process_vm_writev(r0, &(0x7f0000001540)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1, &(0x7f0000001bc0)=[{&(0x7f00000015c0)=""/110, 0x6e}], 0x1, 0x0) r1 = getpgid(0x0) r2 = getpgid(0x0) process_vm_writev(r2, &(0x7f0000001540)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1, &(0x7f0000001bc0)=[{&(0x7f00000015c0)=""/110, 0x6e}], 0x1, 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0) perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x7, 0x20, 0x6, 0x9, 0x0, 0x965, 0x100, 0xf, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0xfbb7, 0x4, @perf_config_ext={0x7f, 0x80}, 0x0, 0x40, 0x1d7f7fe0, 0x1, 0x8997, 0x3, 0x3f, 0x0, 0x200, 0x0, 0x10001}, r2, 0xf, r3, 0x1) process_vm_writev(r1, &(0x7f0000001540)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1, &(0x7f0000001bc0)=[{&(0x7f00000015c0)=""/110, 0x6e}], 0x1, 0x0) ptrace$setregs(0xffffffffffffffff, r1, 0x1000, &(0x7f0000000100)="b87798af039f864e018018a4bfa0b6a1f735c0bfe53b95523280257ee885ac24cb422b9d46437223a3734aaaca161ed358f186cef41b30e92c25a92fa8b9689d77490683f06b995752a65847c481320bd447973f15e2defad5411b084d92be087d5c43a58bac184c39000b92f56f58fbfeefb24a0e89cb4501b9b7483cba7417b1bc2eeee3a15d5173f1df28118e584449e6eb377db91988492eb3f59286f3a632ce2feb4733eb2ca69387") ptrace$setregs(0xd, r0, 0x9, &(0x7f0000000080)="efc142e5f07b1c418326bcab9272eca15ed96a06914327583f4b6551850469db910aeac97c80dfeb9c82f663c0290209c9a33827c357b9e4911d169686f6ae95c311480fc8fdf52d9e081bc8d14a4521607b85a08552572fc0d3b10ebec7b8245523c257a6c136") [ 1642.821171][ T2950] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1642.835690][ T2967] loop3: detected capacity change from 0 to 1 [ 1642.855211][ T2977] loop2: detected capacity change from 0 to 1 [ 1642.860824][ T2950] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1642.861495][ T2961] loop4: detected capacity change from 0 to 1 [ 1642.879817][ T2950] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1642.890221][ T2950] ext4_test_bit(bit=16, block=18) = 0 [ 1642.895595][ T2950] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1642.906788][ T2967] loop3: p1 p2 p3 p4 [ 1642.911258][ T2967] loop3: p1 start 10 is beyond EOD, truncated [ 1642.911666][ T2977] loop2: p1 p2 p3 p4 19:17:25 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xf04a00, 0x0, 0x0, 0x0) 19:17:25 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000c00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1642.917362][ T2967] loop3: p2 start 67108864 is beyond EOD, truncated [ 1642.928334][ T2967] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1642.935131][ T2967] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1642.942467][ T2961] loop4: p1 p2 p4 [ 1642.947784][ T2961] loop4: p1 start 10 is beyond EOD, truncated [ 1642.953950][ T2961] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:25 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000140200024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1642.984648][ T2977] loop2: p1 start 67108874 is beyond EOD, truncated [ 1642.991290][ T2977] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1643.004445][ T2977] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1643.011271][ T2977] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1643.021833][ T2961] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:25 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @empty}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x20}}, {0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x42}}, 0x10, 0x0, 0x0, 0x0, 0x800, &(0x7f0000000080)='veth0_to_batadv\x00', 0x3f, 0x8, 0x200}) rseq(0x0, 0x0, 0xfffffffffffffffd, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1643.035839][ T1037] loop2: p1 p2 p3 p4 [ 1643.044988][ T1037] loop2: p1 start 67108874 is beyond EOD, truncated [ 1643.051626][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1643.069701][ T3016] loop3: detected capacity change from 0 to 1 [ 1643.083590][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1643.090448][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1643.098365][ T2961] loop4: detected capacity change from 0 to 1 [ 1643.110568][ T3016] loop3: p1 p2 p3 p4 [ 1643.113116][ T3035] loop1: detected capacity change from 0 to 512 [ 1643.115026][ T3016] loop3: p1 start 10 is beyond EOD, truncated [ 1643.126903][ T3016] loop3: p2 start 335544320 is beyond EOD, truncated 19:17:25 executing program 5: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100)={0x0}, &(0x7f0000000140)=0xc) r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x30a, 0x20000, 0x80}, r0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0xfb, 0x7, 0x8, 0xea, 0x0, 0x5, 0x20004, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x4, @perf_config_ext={0x4b, 0x3f}, 0x43e12, 0xfffffffffffffff7, 0x4, 0x1, 0x5, 0x5, 0x5, 0x0, 0x20c, 0x0, 0x7fff}, 0xffffffffffffffff, 0xe, r1, 0x9) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) gettid() [ 1643.133624][ T3016] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1643.140438][ T3016] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1643.148153][ T2961] loop4: p1 p2 p4 [ 1643.153690][ T2961] loop4: p1 start 10 is beyond EOD, truncated [ 1643.159833][ T2961] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1643.178855][ T3035] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:17:25 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000005ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1643.180072][ T2961] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1643.195450][ T1037] loop3: p1 p2 p3 p4 [ 1643.199671][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1643.202875][ T3035] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1643.205890][ T1037] loop3: p2 start 335544320 is beyond EOD, truncated [ 1643.218866][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1643.225642][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:26 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800400000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1643.252122][ T3070] loop2: detected capacity change from 0 to 1 [ 1643.262980][ T3035] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1643.273457][ T3035] ext4_test_bit(bit=16, block=18) = 0 [ 1643.278851][ T3035] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:26 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x424002, 0x143) r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x9}, 0x0, 0x0, r0, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) write$binfmt_script(r1, &(0x7f0000000100)={'#! ', './file0', [], 0xa, "83c77183b2d961188bb2f5842c3a8ca78bef0f845dbf61045b6b4e5b04ec8bb00bf3e518415c9f4f23e8b36d1ab7cb24ff0572f2bbc7139ba769723b8aecc5c2ea262b34574ca44e1cb25e59ad965c40736c7e0f553a5d9bfb0fa8bb397cff897b887428a6265f4fa849cb77c5ae988135464472cea31f2c7b48a543648e1a0b492a99e15c19564dded4bccf8b5fdbca9855aa2a04d2421bf91b9284386daa9a08526914230d687b908450c70670461c5280868bbc3f2bc1bedae1ab5992cea619505f8194d2cb554759d8971bd3"}, 0xd9) setxattr$trusted_overlay_redirect(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x8, 0x2) 19:17:26 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000300024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1643.340465][ T3070] loop2: p1 p2 p3 p4 [ 1643.344717][ T3070] loop2: p1 start 83886090 is beyond EOD, truncated [ 1643.351358][ T3070] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1643.387346][ T3070] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1643.394176][ T3070] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1643.402571][ T3098] loop4: detected capacity change from 0 to 1 [ 1643.411538][ T1037] loop2: p1 p2 p3 p4 [ 1643.415801][ T1037] loop2: p1 start 83886090 is beyond EOD, truncated [ 1643.422471][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:26 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000d00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:26 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000006ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1643.431310][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1643.438355][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1643.444586][ T3099] loop3: detected capacity change from 0 to 1 [ 1643.490519][ T3098] loop4: p1 p2 p4 [ 1643.494567][ T3098] loop4: p1 start 10 is beyond EOD, truncated [ 1643.500680][ T3098] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1643.520973][ T3099] loop3: p1 p2 p3 p4 [ 1643.525103][ T3099] loop3: p1 start 10 is beyond EOD, truncated [ 1643.531255][ T3099] loop3: p2 size 1073872899 extends beyond EOD, truncated 19:17:26 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xf2, 0x8, 0x6, 0xd8, 0x0, 0x0, 0x4, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x91c02ca1b3bd5e6f, @perf_config_ext={0xec4, 0x3}, 0x10020, 0x7, 0x4, 0x8, 0x81, 0x7f, 0x1, 0x0, 0x1}, 0xffffffffffffffff, 0x8, r0, 0x2) [ 1643.543935][ T3099] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1643.550749][ T3099] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1643.560508][ T3098] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1643.595671][ T3130] loop1: detected capacity change from 0 to 512 [ 1643.615786][ T3142] loop2: detected capacity change from 0 to 1 [ 1643.624441][ T3098] loop4: detected capacity change from 0 to 1 [ 1643.632221][ T3130] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1643.659325][ T3130] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1643.661688][ T3098] loop4: p1 p2 p4 [ 1643.670583][ T1037] loop2: p1 p2 p3 p4 [ 1643.674701][ T1037] loop2: p1 start 100663306 is beyond EOD, truncated [ 1643.681506][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1643.689715][ T3130] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1643.690926][ T3098] loop4: p1 start 10 is beyond EOD, truncated [ 1643.700129][ T3130] ext4_test_bit(bit=16, block=18) = 0 [ 1643.700157][ T3130] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1643.706190][ T3098] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1643.736927][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1643.743764][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1643.751327][ T3098] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1643.762079][ T3142] loop2: p1 p2 p3 p4 [ 1643.766677][ T3142] loop2: p1 start 100663306 is beyond EOD, truncated [ 1643.773445][ T3142] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1643.783705][ T3142] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1643.790521][ T3142] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:26 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x1000000, 0x0, 0x0, 0x0) 19:17:26 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000020400024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:26 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = getpgid(0x0) process_vm_writev(r0, &(0x7f0000001540)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1, &(0x7f0000001bc0)=[{&(0x7f00000015c0)=""/110, 0x6e}], 0x1, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xe1, 0x80, 0x9a, 0x3f, 0x0, 0x1, 0x80102, 0x7, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x26, 0x1, @perf_config_ext={0x2, 0x8}, 0x4000, 0x4, 0x92a, 0x2, 0x8, 0x7, 0xfff, 0x0, 0x2, 0x0, 0x661f}, r0, 0x97, 0xffffffffffffffff, 0xf) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000100), 0x9, 0xc04840) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000200)=0x0) perf_event_open(&(0x7f0000000180)={0x7, 0x80, 0x3, 0x3, 0x0, 0x9, 0x0, 0x4e0f, 0x483, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x800, 0x2, @perf_config_ext={0xba25, 0x5}, 0x10008, 0x8, 0x1, 0x0, 0x1, 0x1, 0x7d5, 0x0, 0x93ee, 0x0, 0x3}, r3, 0x7, r1, 0x0) openat(r2, &(0x7f0000000140)='./file0\x00', 0x202100, 0x8) 19:17:26 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000e00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:26 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800802400000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:26 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000007ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1643.825261][ T1037] loop4: p1 p2 p4 [ 1643.829549][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1643.835667][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1643.847228][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1643.864539][ T3205] loop1: detected capacity change from 0 to 512 [ 1643.882301][ T3202] loop3: detected capacity change from 0 to 1 [ 1643.910638][ T3209] loop4: detected capacity change from 0 to 1 [ 1643.917522][ T3205] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1643.930722][ T3202] loop3: p1 p2 p3 p4 [ 1643.935343][ T3202] loop3: p1 start 10 is beyond EOD, truncated [ 1643.941164][ T3209] loop4: p1 p2 p4 [ 1643.941465][ T3202] loop3: p2 start 33554432 is beyond EOD, truncated [ 1643.945462][ T3209] loop4: p1 start 10 is beyond EOD, [ 1643.951716][ T3202] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1643.951735][ T3202] loop3: p4 size 3657465856 extends beyond EOD, [ 1643.956998][ T3209] truncated [ 1643.957003][ T3209] loop4: p2 size 1073872896 extends beyond EOD, [ 1643.963758][ T3202] truncated 19:17:26 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000080)={0x0, 0x0, {}, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1643.970070][ T3209] truncated [ 1643.970724][ T3209] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1643.995857][ T1037] loop4: p1 p2 p4 [ 1643.998857][ T3205] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1644.004083][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1644.010672][ T3205] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1644.012094][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:26 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000060400024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1644.022521][ T3205] ext4_test_bit(bit=16, block=18) = 0 [ 1644.035011][ T3205] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1644.046230][ T3241] loop2: detected capacity change from 0 to 1 [ 1644.053981][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:26 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000f00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:26 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800802420000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1644.090304][ T3241] loop2: p1 p2 p3 p4 [ 1644.094453][ T3241] loop2: p1 start 117440522 is beyond EOD, truncated [ 1644.101166][ T3241] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1644.147390][ T3241] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1644.154392][ T3241] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1644.161972][ T3261] loop3: detected capacity change from 0 to 1 [ 1644.169864][ T1037] loop2: p1 p2 p3 p4 [ 1644.174121][ T1037] loop2: p1 start 117440522 is beyond EOD, truncated [ 1644.180918][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1644.191545][ T3261] loop3: p1 p2 p3 p4 [ 1644.205929][ T3261] loop3: p1 start 10 is beyond EOD, truncated [ 1644.212156][ T3261] loop3: p2 start 100663296 is beyond EOD, truncated [ 1644.218889][ T3261] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1644.225676][ T3261] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1644.236156][ T3287] loop4: detected capacity change from 0 to 1 [ 1644.242679][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1644.249549][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1644.257590][ T3288] loop1: detected capacity change from 0 to 512 19:17:27 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000008ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1644.310310][ T3287] loop4: p1 p2 p4 [ 1644.314365][ T3288] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1644.314506][ T3287] loop4: p1 start 10 is beyond EOD, truncated [ 1644.328390][ T3287] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:27 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000800400024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1644.363097][ T3288] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1644.370460][ T3287] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1644.378130][ T3288] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1644.388784][ T3288] ext4_test_bit(bit=16, block=18) = 0 [ 1644.394195][ T3288] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1644.408353][ T3315] loop2: detected capacity change from 0 to 1 [ 1644.426471][ T3287] loop4: detected capacity change from 0 to 1 [ 1644.460412][ T3315] loop2: p1 p2 p3 p4 [ 1644.464848][ T3315] loop2: p1 start 134217738 is beyond EOD, truncated [ 1644.471597][ T3315] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1644.480417][ T3287] loop4: p1 p2 p4 [ 1644.484192][ T3287] loop4: p1 start 10 is beyond EOD, truncated [ 1644.490317][ T3287] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1644.498737][ T3320] loop3: detected capacity change from 0 to 1 19:17:27 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x14ac000, 0x0, 0x0, 0x0) 19:17:27 executing program 5: r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x89101) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010300040000000000000000000008001c01"], 0x1c}}, 0x0) sendmsg$NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r1, 0x2, 0x70bd27, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x4804) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) 19:17:27 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001000000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1644.499165][ T3315] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1644.511849][ T3315] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1644.519492][ T3287] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:27 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000009ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:27 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800480000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1644.554329][ T3320] loop3: p1 p2 p3 p4 [ 1644.559061][ T3320] loop3: p1 start 10 is beyond EOD, truncated [ 1644.565180][ T3320] loop3: p2 start 2147483648 is beyond EOD, truncated [ 1644.571982][ T3320] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1644.578809][ T3320] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1644.620948][ T3349] loop1: detected capacity change from 0 to 512 [ 1644.641424][ T1037] loop3: p1 p2 p3 p4 [ 1644.649881][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1644.655988][ T1037] loop3: p2 start 2147483648 is beyond EOD, truncated [ 1644.662769][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated 19:17:27 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = getpgid(0xffffffffffffffff) perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x8, 0x5, 0x0, 0x27, 0x0, 0x420, 0x2, 0xb, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, @perf_config_ext={0x0, 0x8}, 0x24ca, 0x4, 0x400, 0x1, 0x64b9464b, 0x6, 0x6, 0x0, 0x400, 0x0, 0x7ff}, r0, 0x10, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r1 = syz_open_dev$vcsu(&(0x7f0000000540), 0x4, 0x51b100) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open(&(0x7f00000005c0)={0x0, 0x80, 0x4, 0x3, 0xe6, 0x7, 0x0, 0xfffffffffffffffe, 0x100, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x20, 0x0, @perf_config_ext={0x0, 0xffff}, 0x20, 0x3, 0x7, 0x3, 0x3f, 0x13f4, 0x1, 0x0, 0x5, 0x0, 0x8}, r0, 0x6, r2, 0x1) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000580)='(+\'@-\x00') clone(0x200, &(0x7f0000000300)="a33d433df107e9126f7feea66f3b0015ecb97e4ebff6c8105434102e90baa7bf7b1ad9f87966332699f5f08b7b0697188e866f4968ef8157f3173f171b278ae39fa580714692e63df8d5049404", &(0x7f0000000380), &(0x7f00000003c0), &(0x7f0000000400)="af3ad113e3bfcf03f22dca85f2fb6c0d95a9520d7ad6dcfadba64862fff44c0c67aab9f23ab128f35eb66549120cc6ebb465d6bb8fca45267c6ca991d8cce11a98758f705cbceacaa9412f953006e82c815a12322dedf1d4d9dcdec298e12a189e4c6f1aa5ed2467dd2b50402ade0f9e2cbe3b1a44dba4cc7b2a3e0ef034837ce0a4063651") clone(0x0, &(0x7f0000000080)="1ff9598aa7d064ca2ab5c9cf87451c39391e96662e119aaa65ceaf4984c7269a1625d98cf5653d459f1b845625681452359b26aca10a9ece6dc20ee188391e32812353e38583d36e59d603a8bfb9b4ddbd6913fefef304e1c927364bd7db30e6406625355b7b01952fdc8e0dcde60e6eb77d570cc7dbe03a5851778621794d5f1cb4b3c37685f43209833d7235fe3c59a1ff2bfa22a431d072bd90d6ec87a6ed7a516d46de1b00d448a20906754dc6622fc5457d1d641fa387e3f2ffba549cb86878f1ff559c4a84b5d550324c4342c35efa91becd0943ad8fd961c912", &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)="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") 19:17:27 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000f50400024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1644.666918][ T3360] loop2: detected capacity change from 0 to 1 [ 1644.669548][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1644.681548][ T3349] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1644.693304][ T3376] loop4: detected capacity change from 0 to 1 [ 1644.700863][ T3349] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1644.726542][ T3349] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1644.737294][ T3349] ext4_test_bit(bit=16, block=18) = 0 [ 1644.742822][ T3349] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1644.770447][ T3376] loop4: p1 p2 p4 [ 1644.774624][ T3360] loop2: p1 p2 p3 p4 [ 1644.779179][ T3376] loop4: p1 start 10 is beyond EOD, truncated [ 1644.785332][ T3376] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1644.796314][ T3360] loop2: p1 start 150994954 is beyond EOD, truncated [ 1644.803075][ T3360] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1644.830008][ T3399] loop3: detected capacity change from 0 to 1 [ 1644.840774][ T3376] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1644.850999][ T3360] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1644.857780][ T3360] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1644.865708][ T3399] loop3: p1 p2 p3 p4 [ 1644.869763][ T3399] loop3: p1 start 10 is beyond EOD, truncated 19:17:27 executing program 5: sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="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"], 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x4000010) r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f0000000340)) connect$inet6(r1, &(0x7f0000000300)={0xa, 0x4e21, 0x1, @private2, 0x200}, 0x1c) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x7, 0xbe, 0x6, 0x81, 0x0, 0xffffffff7fffffff, 0x2000, 0x8, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f00000000c0), 0x4}, 0x810, 0x3, 0x6, 0x0, 0x7, 0x1ff, 0x1, 0x0, 0x100, 0x0, 0x40}, 0xffffffffffffffff, 0xc, r0, 0xa) [ 1644.875864][ T3399] loop3: p2 start 4110417920 is beyond EOD, truncated [ 1644.882664][ T3399] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1644.889432][ T3399] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1644.899319][ T1037] loop2: p1 p2 p3 p4 [ 1644.906679][ T1037] loop2: p1 start 150994954 is beyond EOD, truncated [ 1644.913444][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:27 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001100000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:27 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000500024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1644.941220][ T3376] loop4: detected capacity change from 0 to 1 [ 1644.967176][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1644.973992][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1644.990786][ T3376] loop4: p1 p2 p4 [ 1644.994851][ T3376] loop4: p1 start 10 is beyond EOD, truncated [ 1644.995677][ T3433] loop3: detected capacity change from 0 to 1 [ 1645.001044][ T3376] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1645.026320][ T3376] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1645.033764][ T3433] loop3: p1 p2 p3 p4 19:17:27 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000aff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1645.037972][ T3433] loop3: p1 start 10 is beyond EOD, truncated [ 1645.044075][ T3433] loop3: p2 size 1073872901 extends beyond EOD, truncated [ 1645.061054][ T3433] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1645.067843][ T3433] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1645.072904][ T3461] loop2: detected capacity change from 0 to 1 19:17:27 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xfa12, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1645.090270][ T3456] loop1: detected capacity change from 0 to 512 [ 1645.120190][ T3461] loop2: p1 p2 p3 p4 [ 1645.124503][ T3461] loop2: p1 start 167772170 is beyond EOD, truncated [ 1645.131334][ T3461] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1645.148366][ T3461] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1645.155284][ T3461] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1645.165384][ T3456] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1645.181047][ T3456] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1645.231860][ T3456] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1645.242255][ T3456] ext4_test_bit(bit=16, block=18) = 0 [ 1645.247699][ T3456] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:28 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x2000000, 0x0, 0x0, 0x0) 19:17:28 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008004c0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:28 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000600024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:28 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000bff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:28 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r0 = getpgid(0x0) process_vm_writev(r0, &(0x7f0000001540)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1, &(0x7f0000001bc0)=[{&(0x7f00000015c0)=""/110, 0x6e}], 0x1, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x2, 0x1, 0x5, 0xfc, 0x0, 0x2d02, 0x3a83, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000080), 0x4}, 0x12, 0x3, 0x1, 0x4, 0x7, 0xfffffff8, 0x101, 0x0, 0x400, 0x0, 0x2}, r0, 0xa, r1, 0x8) 19:17:28 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001200000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1645.562427][ T3522] loop3: detected capacity change from 0 to 1 [ 1645.612233][ T3522] loop3: p1 p2 p3 p4 [ 1645.617656][ T3522] loop3: p1 start 10 is beyond EOD, truncated [ 1645.623799][ T3522] loop3: p2 size 1073872902 extends beyond EOD, truncated [ 1645.641755][ T3525] loop2: detected capacity change from 0 to 1 [ 1645.648183][ T3524] loop1: detected capacity change from 0 to 512 [ 1645.655134][ T3519] loop4: detected capacity change from 0 to 1 19:17:28 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0xd2d2c000) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r1 = syz_open_dev$vcsn(&(0x7f00000005c0), 0x3ff, 0x8a9b3f55f0536dcd) io_uring_enter(r1, 0x52c4, 0xf653, 0x0, &(0x7f0000000600)={[0x1ff]}, 0x8) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r2, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) readv(r2, &(0x7f0000000200)=[{&(0x7f0000000080)=""/206, 0xce}, {&(0x7f0000000180)=""/76, 0x4c}], 0x2) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000640), 0x720c00, 0x0) sendmsg$nl_xfrm(r3, &(0x7f0000000580)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000540)={&(0x7f0000000400)=@getsa={0x140, 0x12, 0x10, 0x70bd2a, 0x25dfdbfd, {@in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x4d6, 0xa, 0x2b}, [@replay_thresh={0x8, 0xb, 0x400}, @coaddr={0x14, 0xe, @in=@rand_addr=0x64010100}, @algo_aead={0xeb, 0x12, {{'gcm(cast6-generic)\x00'}, 0x4f8, 0x200, "422877ee8da065eb50da5433129aa0689108f07f7549f1854cee0fba680ed8fbbf529dbda8c4ab75ed484cff9e3faa783ebea0c88dcd11a1a94704c8740927d2dd1c6051612dc938513352a6c03823ef56d3c367a66624045649e9ee4e4db15cd1e513f6499e9186a413a088efd46e443f4c2fd4e01a9550972441e7907ca2f572bb27eb7b4f8efaafa79d12825b59c3b26e0e07fa60b78e3a80b68206dd3e"}}, @replay_thresh={0x8}, @replay_thresh={0x8}]}, 0x140}, 0x1, 0x0, 0x0, 0x20000800}, 0x800) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000240)=0x0) ptrace$setregs(0xa, r4, 0x89c, &(0x7f0000000280)="023a15ab382d81f1971148dd9965d163dd7dd80daf583f8119dabdb086c45a9e43fd09f00bb568c07ace01a7f0c8d02177ebf2221044ec37238442c39af00a69a042928e9967f3efd735bc1d4dd87e6629dcef7e014b5a4488ad6770da4a657531bbb10449046e8997d492d5ab862dc3505234388a282f84cb071f270a7b4ff1fbe927132523adaf82dd48aac6bf1dfa4c57d76bd9f1139889d6908327ef7e0e58e7113335b0c8af5b27152fd7130238d576c4ad2d83a090f42e11a08c58057f02c3deaf9e2a0ee4a8ca48b226bf088acd49") [ 1645.697820][ T3522] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1645.704675][ T3522] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1645.714906][ T3525] loop2: p1 p2 p3 p4 [ 1645.719292][ T3525] loop2: p1 start 184549386 is beyond EOD, truncated [ 1645.719465][ T3519] loop4: p1 p2 p4 [ 1645.726034][ T3525] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1645.729779][ T3519] loop4: p1 start 10 is beyond EOD, truncated [ 1645.742988][ T3519] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1645.753953][ T3519] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1645.767081][ T3524] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1645.771607][ T3525] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1645.781916][ T3525] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:28 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000040600024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:28 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800540000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:28 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001800000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1645.831183][ T3524] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1645.837644][ T3524] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1645.848071][ T3524] ext4_test_bit(bit=16, block=18) = 0 [ 1645.853560][ T3524] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:28 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000cff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1645.906314][ T3580] loop3: detected capacity change from 0 to 1 [ 1645.954038][ T1037] loop3: p1 p2 p3 p4 [ 1645.958403][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1645.959593][ T3584] loop4: detected capacity change from 0 to 1 [ 1645.964610][ T1037] loop3: p2 start 67108864 is beyond EOD, truncated [ 1645.977333][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1645.984128][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1645.993654][ T3590] loop2: detected capacity change from 0 to 1 [ 1645.995150][ T3591] loop1: detected capacity change from 0 to 512 [ 1646.007598][ T3580] loop3: p1 p2 p3 p4 [ 1646.011965][ T3580] loop3: p1 start 10 is beyond EOD, truncated [ 1646.018086][ T3580] loop3: p2 start 67108864 is beyond EOD, truncated [ 1646.024716][ T3580] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1646.031513][ T3580] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1646.040290][ T3590] loop2: p1 p2 p3 p4 [ 1646.040324][ T3584] loop4: p1 p2 p4 19:17:28 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000700024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1646.044656][ T3591] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1646.048152][ T3584] loop4: p1 start 10 is beyond EOD, truncated [ 1646.056984][ T3590] loop2: p1 start 201326602 is beyond EOD, [ 1646.062059][ T3584] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1646.075451][ T3590] truncated [ 1646.078561][ T3590] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1646.086574][ T3584] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1646.097371][ T3591] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1646.114909][ T3591] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1646.125452][ T3591] ext4_test_bit(bit=16, block=18) = 0 [ 1646.130852][ T3591] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1646.158906][ T3584] loop4: detected capacity change from 0 to 1 [ 1646.172139][ T3590] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1646.178962][ T3590] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1646.251303][ T3584] loop4: p1 p2 p4 19:17:29 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x2040000, 0x0, 0x0, 0x0) 19:17:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001900000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:29 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000dff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:29 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800550000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1646.273101][ T3584] loop4: p1 start 10 is beyond EOD, truncated [ 1646.279211][ T3584] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1646.288963][ T3620] loop3: detected capacity change from 0 to 1 [ 1646.298568][ T3584] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1646.307801][ T3636] loop2: detected capacity change from 0 to 1 [ 1646.330055][ T3620] loop3: p1 p2 p3 p4 [ 1646.334318][ T3620] loop3: p1 start 10 is beyond EOD, truncated [ 1646.335629][ T3636] loop2: p1 p2 p3 p4 [ 1646.340440][ T3620] loop3: p2 size 1073872903 extends beyond EOD, truncated [ 1646.344456][ T3636] loop2: p1 start 218103818 is beyond EOD, truncated [ 1646.358349][ T3636] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1646.366373][ T3636] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1646.373321][ T3636] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1646.383864][ T1037] loop2: p1 p2 p3 p4 [ 1646.389460][ T3646] loop1: detected capacity change from 0 to 512 [ 1646.391077][ T1037] loop2: p1 start 218103818 is beyond EOD, truncated [ 1646.396958][ T3620] loop3: p3 start 2127165541 is beyond EOD, [ 1646.402445][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1646.415531][ T3620] truncated [ 1646.418643][ T3620] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1646.427438][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1646.434254][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1646.444315][ T3646] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1646.452831][ T3646] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1646.459812][ T3646] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1646.470334][ T3646] ext4_test_bit(bit=16, block=18) = 0 19:17:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001b00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:29 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000eff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1646.475718][ T3646] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1646.487785][ T3663] loop4: detected capacity change from 0 to 1 [ 1646.536297][ T3675] loop2: detected capacity change from 0 to 1 [ 1646.574118][ T3663] loop4: p1 p2 p4 [ 1646.578240][ T3663] loop4: p1 start 10 is beyond EOD, truncated [ 1646.584397][ T3663] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1646.592167][ T3663] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1646.599402][ T3675] loop2: p1 p2 p3 p4 [ 1646.605828][ T3675] loop2: p1 start 234881034 is beyond EOD, truncated [ 1646.612702][ T3675] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1646.613193][ T3681] loop1: detected capacity change from 0 to 512 [ 1646.636936][ T3681] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1646.650742][ T3681] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1646.657621][ T3675] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1646.664447][ T3675] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1646.680754][ T3681] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1646.691126][ T3681] ext4_test_bit(bit=16, block=18) = 0 [ 1646.696541][ T3681] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:29 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x4, 0xda4c03ac7acf5d69, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0xc7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000100)="299ba4b00e6bd00989d244a1d8b748aed6c6a973c5e7923ac4b42c1ea23ff3f39a779976fe9899fcaa6e7fe75f1d90e4420b7d4d8eaf8d89bb58c547c838e48ee8d05f577a03d9de4918fc94162025182e8fa01caa6bd27a2f197dd3386fe69578469045df53da4c423e2e1d0fbe0b15640ebacd192350b60444fa6032ac0bee652976e9766494ba159a88db2dae4b2abcea275e6462c79249ae6ce84b123f621ee05b0ba60fbe8b7e3506771522751257219c11acbe65a1cd95e7f702493684616adfcb4373cd3d4fd969828be52a867ba0cf288fa21b0bf4d3da39ec215ed5c8098ad18cf4f9ebe3918c3a94f40216a4431848aea89c", 0x0, 0x0, 0x0) 19:17:29 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000900024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f002200000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:29 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x6040000, 0x0, 0x0, 0x0) [ 1646.749993][ T3663] loop4: detected capacity change from 0 to 1 [ 1646.760861][ T3711] loop3: detected capacity change from 0 to 1 [ 1646.775973][ T3663] loop4: p1 p2 p4 [ 1646.780031][ T3711] loop3: p1 p2 p3 p4 [ 1646.784168][ T3711] loop3: p1 start 10 is beyond EOD, truncated [ 1646.790279][ T3711] loop3: p2 size 1073872905 extends beyond EOD, truncated [ 1646.799405][ T3711] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1646.804055][ T3663] loop4: p1 start 10 is beyond EOD, truncated [ 1646.806223][ T3711] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1646.812278][ T3663] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1646.820287][ T3724] loop1: detected capacity change from 0 to 512 [ 1646.838568][ T3724] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:17:29 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00000fff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f002300000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1646.847015][ T3724] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1646.854056][ T3724] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1646.864424][ T3724] ext4_test_bit(bit=16, block=18) = 0 [ 1646.869824][ T3724] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:29 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xff, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1646.896219][ T3733] loop2: detected capacity change from 0 to 1 [ 1646.909307][ T3663] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:29 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800600000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:29 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000a00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1646.944606][ T3749] loop1: detected capacity change from 0 to 512 [ 1646.961865][ T1037] loop4: p1 p2 p4 [ 1646.970718][ T3733] loop2: p1 p2 p3 p4 [ 1646.974996][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1646.981196][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1646.989492][ T3733] loop2: p1 start 251658250 is beyond EOD, truncated [ 1646.996243][ T3733] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1647.004051][ T3749] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1647.016972][ T3749] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1647.024234][ T3765] loop3: detected capacity change from 0 to 1 [ 1647.030637][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1647.038180][ T3749] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1647.048670][ T3749] ext4_test_bit(bit=16, block=18) = 0 [ 1647.054054][ T3749] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1647.077106][ T3733] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1647.083958][ T3733] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1647.089989][ T3765] loop3: p1 p2 p3 p4 19:17:29 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r0 = eventfd(0x7) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) dup3(r0, r1, 0x80000) 19:17:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f002400000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1647.095316][ T3765] loop3: p1 start 10 is beyond EOD, truncated [ 1647.101452][ T3765] loop3: p2 size 1073872906 extends beyond EOD, truncated [ 1647.111267][ T3765] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1647.118033][ T3765] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:29 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000b00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:29 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000010ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1647.207163][ T3805] loop4: detected capacity change from 0 to 1 [ 1647.213631][ T3804] loop1: detected capacity change from 0 to 512 [ 1647.235010][ T3804] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1647.248331][ T3804] EXT4-fs (loop1): orphan cleanup on readonly fs 19:17:30 executing program 5: perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1647.252517][ T3818] loop2: detected capacity change from 0 to 1 [ 1647.255655][ T3804] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1647.261609][ T3819] loop3: detected capacity change from 0 to 1 [ 1647.271453][ T3804] ext4_test_bit(bit=16, block=18) = 0 [ 1647.271467][ T3804] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:30 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f002500000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1647.310047][ T3805] loop4: p1 p2 p4 [ 1647.314147][ T3805] loop4: p1 start 10 is beyond EOD, truncated [ 1647.320328][ T3805] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1647.342217][ T3805] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1647.380454][ T3818] loop2: p1 p2 p3 p4 [ 1647.394408][ T3818] loop2: p1 start 268435466 is beyond EOD, truncated [ 1647.396734][ T3805] loop4: detected capacity change from 0 to 1 [ 1647.401210][ T3818] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1647.414833][ T3819] loop3: p1 p2 p3 p4 [ 1647.424293][ T3819] loop3: p1 start 10 is beyond EOD, truncated [ 1647.430446][ T3819] loop3: p2 size 1073872907 extends beyond EOD, truncated [ 1647.438542][ T3819] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1647.438639][ T3845] loop1: detected capacity change from 0 to 512 [ 1647.445345][ T3819] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1647.461080][ T1037] loop3: p1 p2 p3 p4 [ 1647.465112][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1647.471294][ T1037] loop3: p2 size 1073872907 extends beyond EOD, truncated [ 1647.471426][ T3818] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1647.479571][ T3805] loop4: p1 p2 p4 [ 1647.485243][ T3818] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1647.489448][ T3805] loop4: p1 start 10 is beyond EOD, truncated [ 1647.502151][ T3805] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1647.513515][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1647.520335][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1647.521109][ T3845] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1647.536204][ T3805] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1647.545392][ T3845] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1647.552363][ T3845] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1647.562777][ T3845] ext4_test_bit(bit=16, block=18) = 0 [ 1647.568178][ T3845] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:30 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x7000000, 0x0, 0x0, 0x0) 19:17:30 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x2) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) 19:17:30 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000c00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:30 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800630000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:30 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000011ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:30 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f002600000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1647.678551][ T3878] loop4: detected capacity change from 0 to 1 [ 1647.696529][ T3881] loop2: detected capacity change from 0 to 1 [ 1647.705292][ T3882] loop3: detected capacity change from 0 to 1 [ 1647.731266][ T3881] loop2: p1 p2 p3 p4 [ 1647.736380][ T3881] loop2: p1 start 285212682 is beyond EOD, truncated [ 1647.743134][ T3881] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1647.753642][ T3878] loop4: p1 p2 p4 [ 1647.753929][ T3882] loop3: p1 p2 p3 p4 [ 1647.757596][ T3878] loop4: p1 start 10 is beyond EOD, truncated [ 1647.762879][ T3881] loop2: p3 start 2127165541 is beyond EOD, [ 1647.767509][ T3878] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:30 executing program 5: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/ip_vs\x00') ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'ip6_vti0\x00', &(0x7f00000000c0)={'ip6tnl0\x00', 0x0, 0x2f, 0x20, 0x76, 0x382, 0x65, @remote, @private2, 0x1, 0x7, 0x80000000, 0x1f}}) socket$inet6(0xa, 0x800, 0x9) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000180)={r1, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x10) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/class/rfkill', 0x88000, 0x11) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1647.769292][ T3878] loop4: p4 size 3657465856 extends beyond EOD, [ 1647.773547][ T3881] truncated [ 1647.773553][ T3881] loop2: p4 size 3657465856 extends beyond EOD, [ 1647.780704][ T3878] truncated [ 1647.786998][ T3881] truncated [ 1647.787053][ T3891] loop1: detected capacity change from 0 to 512 [ 1647.798022][ T3882] loop3: p1 start 10 is beyond EOD, truncated [ 1647.815009][ T3882] loop3: p2 size 1073872908 extends beyond EOD, truncated [ 1647.827992][ T3891] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1647.839446][ T3882] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1647.846308][ T3882] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:30 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000012ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1647.889309][ T3891] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1647.930580][ T3891] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1647.940986][ T3891] ext4_test_bit(bit=16, block=18) = 0 [ 1647.946416][ T3891] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1647.978016][ T3925] loop2: detected capacity change from 0 to 1 19:17:30 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000d00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:30 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f002700000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1648.021088][ T3925] loop2: p1 p2 p3 p4 [ 1648.026053][ T3925] loop2: p1 start 301989898 is beyond EOD, truncated [ 1648.032779][ T3925] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1648.040554][ T3925] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1648.047321][ T3925] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1648.063919][ T3878] loop4: detected capacity change from 0 to 1 19:17:30 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000013ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:30 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd1, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) vmsplice(r0, &(0x7f0000000180)=[{&(0x7f0000000080)="5026ea350f7c582f88e2e034fce037dbfb0126d364380b11cd68405ce6e7ae4a8b57bf4cadbea617c4842031dcc1e623156f588ab06d30b525f86488be87331fe2bb88efc3e6121b011bd43faa4b5c4ba6b9b21d54e6e013751fbf1898496bb8dd6c4d56", 0x64}, {&(0x7f0000000100)="124c53ed3ab5405d5aa85e3e584094bcc840178c363f9e5093c9d351ef63cd25082f75a20f264e283a4357a9b94731e7b40eaa9f14aea353ac397477da1bff73cf0cc8e20fcf24fa3154fb7462da147c0b30d3859745f1fdfbb311d0cc6b8025568dc2", 0x63}], 0x2, 0x8) clone(0x2314000, &(0x7f00000001c0)="40b1e081f7f07c75c02ce08f0893c10aae10c32a42442288435eda07efc2b6acfe764211c706a1a1ca84b51c9de838fcc1e0912752e2a0c77371ef5db8bd245fbed146f54d6b02d669a8ee4c1730999cb27ba773e420687ee91fe7e89d447b4d10f95f4640c0482358797229f8a1d8bdd538d4b55a6571191ace9d6ffed72546096adbc7c409d54088d6921d20749a", &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)="301bd39a7a767089442957b66f51e512ea68727bd84169eb06e05ddc7779634b") clone(0x28000000, &(0x7f0000000340)="4bb30aca71dcdaa4e0a7fecfe0691947563e6308b9d2fc751b6cf99ea016acfd0e651b4a27e614fd9cf18a154faf20f7039c952159376f0689e67c69819d857593aba9ea4470cd9d2e5e9ba463af9ba8561cca9da6bf3f30fa6d5137023ed3432e4c022934d3392e2a400f48c11aece7cefc1b4cda0f4e631a646cea61e4e015875d3d769cc8d6ae796457b37f21f633df45706cffa30253a7c02a01c6f7279abc969f105daf0294a1384509dc9e70492a038d7552", &(0x7f0000000400), &(0x7f0000000440), &(0x7f0000000480)="a99d0cc16b33da5977b4841d49627d055617996ddbce5a60bab25303438909e8b3eeee50e540ccff0234f7bd640b133f5e15cb24056a8d5018ecb5475187168f94cd4a2be34c8b578976d23b666a81251264f80291110839edbf0acf3683021eff3f649c31595fe275a3a70a65c6496d5b5d6cc61fdb72b17541995020585546abd24736632fa1a3b144c4ace3a87a01c09869f46c923e76bb790e3fa22299a3c076b8dfbacc7cdcb3108fa3baf342ca3abdb828956005f9e75c93bd18cbac1d2f278559859bd92f6ba619de1f9110f15df2e368cdfde5c59f85ba482966ee2b44d8aa6f") [ 1648.113169][ T3947] loop3: detected capacity change from 0 to 1 [ 1648.117230][ T3878] loop4: p1 p2 p4 [ 1648.132226][ T3878] loop4: p1 start 10 is beyond EOD, truncated [ 1648.138324][ T3878] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1648.139774][ T3947] loop3: p1 p2 p3 p4 [ 1648.165120][ T3965] loop1: detected capacity change from 0 to 512 [ 1648.169858][ T3947] loop3: p1 start 10 is beyond EOD, truncated [ 1648.177493][ T3947] loop3: p2 size 1073872909 extends beyond EOD, truncated [ 1648.195045][ T3964] loop2: detected capacity change from 0 to 1 [ 1648.207231][ T3965] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1648.223386][ T3965] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1648.232289][ T3878] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1648.251316][ T3965] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1648.261728][ T3965] ext4_test_bit(bit=16, block=18) = 0 [ 1648.267167][ T3965] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1648.269963][ T3964] loop2: p1 p2 p3 p4 [ 1648.300918][ T3947] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1648.307700][ T3947] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1648.318503][ T3964] loop2: p1 start 318767114 is beyond EOD, truncated [ 1648.325236][ T3964] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1648.336158][ T3964] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1648.342991][ T3964] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1648.350435][ T1037] loop4: p1 p2 p4 [ 1648.354511][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1648.360628][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1648.378207][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:31 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xf000000, 0x0, 0x0, 0x0) 19:17:31 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0xffffffffffffffb5, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180)}, 0x2020}, 0x0, 0xd, 0xffffffffffffffff, 0xa) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) wait4(0xffffffffffffffff, &(0x7f0000000080), 0xa371df0b35a33b4d, &(0x7f00000000c0)) 19:17:31 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000e00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:31 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800680000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:31 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f002800000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:31 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000024ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1648.525495][ T4021] loop2: detected capacity change from 0 to 1 [ 1648.547225][ T4022] loop4: detected capacity change from 0 to 1 [ 1648.554046][ T4027] loop1: detected capacity change from 0 to 512 [ 1648.561001][ T4028] loop3: detected capacity change from 0 to 1 [ 1648.593037][ T4021] loop2: p1 p2 p3 p4 [ 1648.597359][ T4021] loop2: p1 start 603979786 is beyond EOD, truncated [ 1648.604089][ T4021] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1648.616089][ T4022] loop4: p1 p2 p4 [ 1648.620008][ T4028] loop3: p1 p2 p3 p4 [ 1648.620333][ T4022] loop4: p1 start 10 is beyond EOD, truncated [ 1648.630141][ T4022] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1648.630689][ T4028] loop3: p1 start 10 is beyond EOD, truncated [ 1648.643522][ T4028] loop3: p2 size 1073872910 extends beyond EOD, truncated [ 1648.669969][ T4021] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1648.676790][ T4021] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1648.684499][ T4022] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:31 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) clone(0x2000, &(0x7f0000000080)="ead23c38b11c0d9fa5558c6d29c207c242e556200f5c4e644a28b09dfc6759f4f875a961ad74ec01d92802d8d29adfcb0adf7e69c6ac409e1f707f6fccd4d552ffe7d1621c359a526d47d5399bb3b41a60477aadfdd0ceaaf6a21ea2fba0802d81f351c1bb641eca5f172faab84548402c55e9e382c99873a0dfd127100be0e46de28c19d55f3b68dbd36425a4c621440f42a8bbb5bd37337fd7a55089386f50c4dd88e4a8778d5adf8f68de61a98eafe4f588e658c489cfa8874618f588bea9ccbeb3c35f7b53ef8693184e48fce045a57a394e90efa25f3c72bcca0e0d2ffb93b9629eb434", &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)) [ 1648.688093][ T4027] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1648.701606][ T4027] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1648.715262][ T4027] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1648.725642][ T4027] ext4_test_bit(bit=16, block=18) = 0 [ 1648.731046][ T4027] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1648.765558][ T4028] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1648.772496][ T4028] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:31 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000025ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1648.809610][ T4022] loop4: detected capacity change from 0 to 1 [ 1648.844353][ T1037] loop4: p1 p2 p4 [ 1648.852358][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1648.858462][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1648.897997][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:31 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000f00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:31 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f002e00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1648.909580][ T4079] loop2: detected capacity change from 0 to 1 [ 1648.926436][ T4022] loop4: p1 p2 p4 [ 1648.934300][ T4079] loop2: p1 p2 p3 p4 [ 1648.942607][ T4079] loop2: p1 start 620757002 is beyond EOD, truncated [ 1648.949419][ T4079] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:31 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8080, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x0, 0xe, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) [ 1648.958248][ T4022] loop4: p1 start 10 is beyond EOD, truncated [ 1648.964373][ T4022] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1648.972105][ T4100] loop3: detected capacity change from 0 to 1 [ 1648.989474][ T4079] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1648.996277][ T4079] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1649.018546][ T4108] loop1: detected capacity change from 0 to 512 [ 1649.031586][ T4022] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1649.047071][ T4108] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1649.055515][ T4100] loop3: p1 p2 p3 p4 [ 1649.060767][ T4100] loop3: p1 start 10 is beyond EOD, truncated 19:17:31 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008006c0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1649.066902][ T4100] loop3: p2 size 1073872911 extends beyond EOD, truncated [ 1649.094190][ T4108] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1649.101097][ T4108] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1649.104274][ T4100] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1649.111485][ T4108] ext4_test_bit(bit=16, block=18) = 0 [ 1649.118234][ T4100] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1649.123589][ T4108] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1649.180074][ T4141] loop4: detected capacity change from 0 to 1 19:17:32 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x10000000, 0x0, 0x0, 0x0) 19:17:32 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000026ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:32 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f003200000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:32 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = fork() r2 = perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x5, 0x6, 0xd0, 0x40, 0x0, 0x5f78, 0x84188, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0xffff, 0x1ec165ee}, 0x1040, 0x7, 0xffff6d36, 0x7, 0x7ff, 0x9, 0x9, 0x0, 0x10000, 0x0, 0x7}, r1, 0x8, r0, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000000140)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x369, r0, &(0x7f0000000080)="d618754aa1e3a67f380c9c06147a008ce145332ca7f0fcdfc21a3fb8b460cc214bc7680aa3b299a99a26a63bc4202c87c58b50372497a88a04cbffa877b76b540856c1ff7ec009efcb5b5469dabf395f1f77b10729ce4e47a98e5761eed61524eda927d8c4e7ae24c78e4e33476a89264eb1c52b", 0x74, 0x100000001, 0x0, 0x1}]) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) lseek(r2, 0x5, 0x4) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r4, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) preadv(r4, &(0x7f0000000540)=[{&(0x7f0000000240)=""/37, 0x25}, {&(0x7f0000000280)=""/198, 0xc6}, {&(0x7f0000000380)}, {&(0x7f00000003c0)=""/122, 0x7a}, {&(0x7f0000000440)=""/47, 0x2f}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/17, 0x11}], 0x7, 0xf65, 0x3ff) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000200)='+{\x00') 19:17:32 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000001100024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1649.230280][ T1037] loop4: p1 p2 p4 [ 1649.234284][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1649.240391][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1649.256775][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1649.287898][ T4141] loop4: p1 p2 p4 [ 1649.291849][ T4141] loop4: p1 start 10 is beyond EOD, truncated [ 1649.297957][ T4141] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1649.305662][ T4141] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1649.314264][ T4165] loop3: detected capacity change from 0 to 1 [ 1649.331388][ T4171] loop1: detected capacity change from 0 to 512 [ 1649.340840][ T4164] loop2: detected capacity change from 0 to 1 [ 1649.359822][ T4165] loop3: p1 p2 p3 p4 [ 1649.366080][ T4165] loop3: p1 start 10 is beyond EOD, truncated [ 1649.372204][ T4165] loop3: p2 size 1073872913 extends beyond EOD, truncated 19:17:32 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008006e0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1649.389900][ T4164] loop2: p1 p2 p3 p4 [ 1649.393985][ T4164] loop2: p1 start 637534218 is beyond EOD, truncated [ 1649.400728][ T4164] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1649.414714][ T4165] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1649.414829][ T4171] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1649.421555][ T4165] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:32 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x20000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x1) clone(0x72048080, &(0x7f0000000100)="afee639cd12551a75817bd458e7f412c687cb4a0bba7998340fac467f98d2b923999866e8179f505b4e16d2b13aa7907e723bd4058876b2ee6db87259a72e31e2a4bfb4ba4e699bea3458371a21d8a16b2bf64242ab2005f2af0fd72b0378ddeb3", 0x0, 0x0, 0x0) r0 = getpgid(0x0) process_vm_writev(r0, &(0x7f0000001540)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1, &(0x7f0000001bc0)=[{&(0x7f00000015c0)=""/110, 0x6e}], 0x1, 0x0) ptrace$setopts(0xa50c, r0, 0x6, 0x56) gettid() [ 1649.450424][ T4164] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1649.457222][ T4164] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1649.478007][ T4201] loop4: detected capacity change from 0 to 1 [ 1649.481246][ T4171] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1649.505365][ T4171] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1649.505886][ T1037] loop2: p1 p2 p3 p4 [ 1649.515772][ T4171] ext4_test_bit(bit=16, block=18) = 0 [ 1649.515788][ T4171] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1649.541235][ T1037] loop2: p1 start 637534218 is beyond EOD, truncated [ 1649.547938][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:32 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00002eff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1649.555602][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1649.556013][ T4201] loop4: p1 p2 p4 [ 1649.562494][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1649.570392][ T4201] loop4: p1 start 10 is beyond EOD, truncated [ 1649.579543][ T4201] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1649.589182][ T4201] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:32 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000001200024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:32 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f004800000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1649.653550][ T4244] loop2: detected capacity change from 0 to 1 [ 1649.659940][ T4201] loop4: detected capacity change from 0 to 1 [ 1649.673143][ T4236] loop3: detected capacity change from 0 to 1 [ 1649.699920][ T4201] loop4: p1 p2 p4 [ 1649.704225][ T4244] loop2: p1 p2 p3 p4 [ 1649.708413][ T4201] loop4: p1 start 10 is beyond EOD, truncated [ 1649.714530][ T4201] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1649.722103][ T4244] loop2: p1 start 771751946 is beyond EOD, truncated [ 1649.728810][ T4244] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1649.736786][ T4244] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1649.743596][ T4244] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1649.752718][ T4236] loop3: p1 p2 p3 p4 [ 1649.756768][ T4258] loop1: detected capacity change from 0 to 512 [ 1649.764163][ T4236] loop3: p1 start 10 is beyond EOD, truncated [ 1649.770294][ T4236] loop3: p2 size 1073872914 extends beyond EOD, truncated [ 1649.780292][ T4236] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1649.782130][ T4258] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1649.787096][ T4236] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:32 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f00000000c0)={0x5, 0x80, 0x5, 0x5a, 0x5, 0x5, 0x0, 0x23, 0x0, 0xd, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x38, 0x4, @perf_config_ext={0x2, 0x5}, 0x5a141, 0x3f9, 0xfd, 0x8, 0x6, 0x81, 0x9, 0x0, 0x7caa, 0x0, 0x8}) 19:17:32 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000001300024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1649.802432][ T4201] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1649.808192][ T4258] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1649.819814][ T1037] loop3: p1 p2 p3 p4 [ 1649.823976][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1649.830100][ T1037] loop3: p2 size 1073872914 extends beyond EOD, truncated [ 1649.838917][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1649.845803][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1649.846592][ T4258] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1649.863360][ T4258] ext4_test_bit(bit=16, block=18) = 0 [ 1649.868740][ T4258] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1649.962053][ T4309] loop3: detected capacity change from 0 to 1 [ 1649.989685][ T1037] loop3: p1 p2 p3 p4 [ 1649.993871][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1650.000025][ T1037] loop3: p2 size 1073872915 extends beyond EOD, truncated 19:17:32 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800740000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1650.013075][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1650.019894][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1650.030011][ T4309] loop3: p1 p2 p3 p4 [ 1650.034068][ T4309] loop3: p1 start 10 is beyond EOD, truncated [ 1650.040202][ T4309] loop3: p2 size 1073872915 extends beyond EOD, truncated [ 1650.048065][ T4309] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1650.054972][ T4309] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:32 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000048ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:32 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f004c00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:32 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0xa8, 0x3f, 0x4, 0x5, 0x0, 0x9, 0x80002, 0x9, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x4000, 0x8001, 0xffff8000, 0x0, 0x9db, 0x3dc, 0x9, 0x0, 0x1, 0x0, 0xffffffffffffff66}, 0x0, 0x8, r0, 0x3) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) 19:17:32 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x30000000, 0x0, 0x0, 0x0) 19:17:32 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000021400024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1650.124765][ T4327] loop4: detected capacity change from 0 to 1 [ 1650.141089][ T4328] loop2: detected capacity change from 0 to 1 [ 1650.164698][ T4351] loop1: detected capacity change from 0 to 512 19:17:32 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) socket$inet6(0xa, 0x80000, 0x4) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x110) r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r2 = signalfd4(r1, &(0x7f0000000080)={[0x100000000]}, 0x8, 0x80800) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x80000001, @mcast2, 0x2}, 0x1c) [ 1650.182453][ T4349] loop3: detected capacity change from 0 to 1 [ 1650.199638][ T4328] loop2: p1 p2 p3 p4 [ 1650.203827][ T1037] loop4: p1 p2 p4 [ 1650.207666][ T4328] loop2: p1 start 1207959562 is beyond EOD, truncated [ 1650.209826][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1650.214470][ T4328] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1650.220544][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1650.235475][ T4328] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1650.242291][ T4328] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1650.249668][ T4351] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1650.249783][ T4349] loop3: p1 p2 p3 p4 [ 1650.258286][ T4351] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1650.261674][ T4349] loop3: p1 start 10 is beyond EOD, truncated [ 1650.274016][ T4349] loop3: p2 start 33554432 is beyond EOD, truncated [ 1650.280732][ T4349] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1650.287487][ T4349] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1650.294943][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1650.300993][ T4351] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1650.312472][ T4351] ext4_test_bit(bit=16, block=18) = 0 [ 1650.317847][ T4351] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:33 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00004cff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:33 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000001a00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1650.332930][ T4327] loop4: p1 p2 p4 [ 1650.337110][ T4327] loop4: p1 start 10 is beyond EOD, truncated [ 1650.343266][ T4327] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:33 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f006000000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1650.396267][ T4327] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1650.406874][ T4401] loop2: detected capacity change from 0 to 1 [ 1650.412612][ T4405] loop3: detected capacity change from 0 to 1 [ 1650.468277][ T4401] loop2: p1 p2 p3 p4 [ 1650.471105][ T1037] loop3: p1 p2 p3 p4 [ 1650.476595][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1650.479413][ T4401] loop2: p1 start 1275068426 is beyond EOD, truncated [ 1650.482715][ T1037] loop3: p2 size 1073872922 extends beyond EOD, truncated [ 1650.488474][ T1037] loop3: p3 start 2127165541 is beyond EOD, [ 1650.489554][ T4401] loop2: p2 size 1073872896 extends beyond EOD, [ 1650.496727][ T1037] truncated [ 1650.496733][ T1037] loop3: p4 size 3657465856 extends beyond EOD, 19:17:33 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) wait4(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000080)) [ 1650.502715][ T4401] truncated [ 1650.521593][ T1037] truncated [ 1650.542651][ T4327] loop4: detected capacity change from 0 to 1 [ 1650.545619][ T4429] loop1: detected capacity change from 0 to 512 [ 1650.568690][ T4401] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1650.575587][ T4401] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1650.588233][ T4405] loop3: p1 p2 p3 p4 [ 1650.592453][ T4405] loop3: p1 start 10 is beyond EOD, truncated [ 1650.595575][ T4327] loop4: p1 p2 p4 [ 1650.598583][ T4405] loop3: p2 size 1073872922 extends beyond EOD, truncated [ 1650.610684][ T4405] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1650.617465][ T4405] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1650.619355][ T4327] loop4: p1 start 10 is beyond EOD, truncated [ 1650.630721][ T4327] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1650.647416][ T4429] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:17:33 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000002000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1650.668954][ T4429] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1650.676437][ T4327] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1650.684232][ T4429] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1650.694693][ T4429] ext4_test_bit(bit=16, block=18) = 0 [ 1650.700087][ T4429] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:33 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x40000000, 0x0, 0x0, 0x0) 19:17:33 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000060ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:33 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008007a0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:33 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x800, 0x15) clone(0x40010800, &(0x7f00000000c0)="56cf65c606f0016273a34c37f47b46f174f3d15e99b00c4d0700a86f5450537b9f03a19a0051e8a4bc32f5ecfa08b921d6e06da45b30977e3fed3c61ad02d1fb75d490fd3e78fdc23d1d333f396385a074d0201e3baf8a1a215a53d33a70290c87718718606c42e0b17423e56b12443569e6e820d0afc7437b5cfe970a4b6b5b9ca17e6d3bf56edc07f87a5386880d954593e82325db477460a4b85e2748c8cfd74c7145aa616ca357cc51e586f7efc4c59a88e26d1cb8fbf14c898743818a4957a48a7b9fdb697cdaa8deb53738f43f", &(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000240)="557412608677fed1d8c562a359b0eeeda356583abb1714d3594f8d4e78c01d806fcbb8d8dbd5e4ec9b60a5d5e6d20776fd50cc1f4b9ec2") [ 1650.752210][ T4469] loop3: detected capacity change from 0 to 1 19:17:33 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f006800000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1650.811207][ T1037] loop3: p1 p2 p3 p4 [ 1650.819417][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1650.825556][ T1037] loop3: p2 size 1073872928 extends beyond EOD, truncated [ 1650.853134][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1650.859994][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1650.868361][ T4485] loop4: detected capacity change from 0 to 1 [ 1650.877221][ T4489] loop2: detected capacity change from 0 to 1 [ 1650.908374][ T4469] loop3: p1 p2 p3 p4 [ 1650.912814][ T4469] loop3: p1 start 10 is beyond EOD, truncated [ 1650.918938][ T4469] loop3: p2 size 1073872928 extends beyond EOD, truncated [ 1650.927395][ T4485] loop4: p1 p2 p4 [ 1650.931454][ T4489] loop2: p1 p2 p3 p4 [ 1650.932013][ T4485] loop4: p1 start 10 is beyond EOD, truncated [ 1650.935723][ T4489] loop2: p1 start 1610612746 is beyond EOD, [ 1650.941562][ T4485] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:33 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x1, 0x1, 0x0, 0x6, 0x0, 0x7fff, 0x10000, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x80000001, 0x1, @perf_bp={&(0x7f0000000080), 0x6}, 0x40000, 0x3, 0x54a, 0x9, 0x60a00, 0x4, 0x0, 0x0, 0x80, 0x0, 0x4f7}, 0x0, 0x8, 0xffffffffffffffff, 0x8) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1650.946565][ T4485] loop4: p4 size 3657465856 extends beyond EOD, [ 1650.947564][ T4489] truncated [ 1650.947570][ T4489] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1650.971250][ T4485] truncated [ 1650.976504][ T4489] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1650.983300][ T4489] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1650.984159][ T4511] loop1: detected capacity change from 0 to 512 [ 1650.997918][ T4469] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1651.004775][ T4469] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1651.012695][ T4511] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1651.034572][ T4511] EXT4-fs (loop1): orphan cleanup on readonly fs 19:17:33 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000002400024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1651.057124][ T4511] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1651.067648][ T4511] ext4_test_bit(bit=16, block=18) = 0 [ 1651.073040][ T4511] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:33 executing program 5: prctl$PR_GET_DUMPABLE(0x3) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) 19:17:33 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f006c00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:33 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000068ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1651.171611][ T4485] loop4: detected capacity change from 0 to 1 [ 1651.184019][ T4551] loop3: detected capacity change from 0 to 1 [ 1651.200047][ T4485] loop4: p1 p2 p4 [ 1651.204054][ T4485] loop4: p1 start 10 is beyond EOD, truncated [ 1651.210230][ T4485] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1651.235097][ T4563] loop1: detected capacity change from 0 to 512 [ 1651.243024][ T4485] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:34 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000001, 0x100010, 0xffffffffffffffff, 0xe3b77000) [ 1651.285259][ T4551] loop3: p1 p2 p3 p4 19:17:34 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800804800000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1651.305868][ T4551] loop3: p1 start 10 is beyond EOD, truncated [ 1651.312111][ T4551] loop3: p2 size 1073872932 extends beyond EOD, truncated [ 1651.331808][ T4576] loop2: detected capacity change from 0 to 1 [ 1651.338887][ T4563] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1651.350153][ T4563] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1651.357713][ T4563] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1651.368169][ T4563] ext4_test_bit(bit=16, block=18) = 0 [ 1651.373553][ T4563] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1651.381259][ T4551] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1651.390857][ T4551] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1651.399869][ T4576] loop2: p1 p2 p3 p4 [ 1651.404410][ T4576] loop2: p1 start 1744830474 is beyond EOD, truncated [ 1651.411273][ T4576] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1651.430428][ T4576] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1651.437256][ T4576] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:34 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x42000000, 0x0, 0x0, 0x0) 19:17:34 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f007400000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1651.452669][ T4613] loop4: detected capacity change from 0 to 1 19:17:34 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x4, 0x6, 0x4, 0x2, 0x0, 0x6, 0x4000, 0xe, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4, @perf_config_ext={0x4bc, 0x5}, 0x1000, 0x0, 0x7a, 0x8, 0xcde, 0x401, 0x2, 0x0, 0x6, 0x0, 0x1}, 0xffffffffffffffff, 0xc, r0, 0x2) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x1, 0x9, 0x22, 0x4, 0x0, 0x1, 0x80a00, 0xf, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xa0, 0x0, @perf_config_ext={0x100000001, 0x4}, 0x8, 0xffffffffffffff47, 0x4, 0x9, 0x3, 0x401, 0x5, 0x0, 0x5, 0x0, 0x1}, 0x0, 0x6, r0, 0x3) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000180)={0x0, @adiantum}) tee(r1, r0, 0x6, 0x8) [ 1651.477765][ T1037] loop3: p1 p2 p3 p4 [ 1651.482200][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1651.488289][ T1037] loop3: p2 size 1073872932 extends beyond EOD, truncated [ 1651.494940][ T4613] loop4: p1 p2 p4 [ 1651.499387][ T4613] loop4: p1 start 10 is beyond EOD, truncated [ 1651.505472][ T4613] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1651.513487][ T4613] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:34 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00006cff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1651.546854][ T4636] loop1: detected capacity change from 0 to 512 [ 1651.564808][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1651.571737][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1651.579020][ T4613] loop4: detected capacity change from 0 to 1 19:17:34 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000002500024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1651.595076][ T4636] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1651.603384][ T4650] loop2: detected capacity change from 0 to 1 [ 1651.609537][ T4636] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1651.641150][ T4636] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1651.651539][ T4636] ext4_test_bit(bit=16, block=18) = 0 [ 1651.656929][ T4636] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1651.682020][ T4650] loop2: p1 p2 p3 p4 19:17:34 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800900000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:34 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x26}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) gettid() [ 1651.689438][ T4650] loop2: p1 start 1811939338 is beyond EOD, truncated [ 1651.696241][ T4650] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1651.714714][ T4673] loop3: detected capacity change from 0 to 1 [ 1651.730043][ T4650] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1651.736824][ T4650] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1651.760382][ T4673] loop3: p1 p2 p3 p4 [ 1651.764476][ T4673] loop3: p1 start 10 is beyond EOD, truncated [ 1651.770677][ T4673] loop3: p2 size 1073872933 extends beyond EOD, truncated 19:17:34 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f007a00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:34 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000074ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1651.808968][ T4673] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1651.815825][ T4673] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1651.827709][ T4687] loop4: detected capacity change from 0 to 1 19:17:34 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000002600024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1651.859406][ T4687] loop4: p1 p2 p4 [ 1651.863326][ T4687] loop4: p1 start 10 is beyond EOD, truncated [ 1651.869471][ T4687] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1651.885865][ T4687] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1651.949225][ T4714] loop2: detected capacity change from 0 to 1 [ 1651.960833][ T4715] loop1: detected capacity change from 0 to 512 [ 1651.989296][ T4714] loop2: p1 p2 p3 p4 19:17:34 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1651.993598][ T4714] loop2: p1 start 1946157066 is beyond EOD, truncated [ 1652.000407][ T4714] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1652.021210][ T4721] loop3: detected capacity change from 0 to 1 [ 1652.025076][ T4715] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1652.027662][ T4687] loop4: detected capacity change from 0 to 1 [ 1652.036318][ T4714] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1652.048261][ T4714] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1652.057034][ T4715] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1652.070962][ T4721] loop3: p1 p2 p3 p4 [ 1652.078701][ T4721] loop3: p1 start 10 is beyond EOD, truncated [ 1652.084850][ T4721] loop3: p2 size 1073872934 extends beyond EOD, truncated 19:17:34 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1652.094442][ T4715] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1652.104877][ T4715] ext4_test_bit(bit=16, block=18) = 0 [ 1652.110290][ T4715] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1652.127916][ T4687] loop4: p1 p2 p4 [ 1652.134755][ T4687] loop4: p1 start 10 is beyond EOD, truncated [ 1652.140858][ T4687] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1652.148430][ T4687] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1652.199209][ T4721] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1652.206091][ T4721] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:35 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x83100000, 0x0, 0x0, 0x0) 19:17:35 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a00007aff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:35 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800c00000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:35 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f008400000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:35 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7, 0xff, 0x8, 0xff, 0x0, 0x5f, 0x60002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3, 0x2, @perf_bp={&(0x7f00000000c0), 0x1}, 0x1001, 0x20000000000, 0x7, 0x2, 0x0, 0x2, 0xfffe, 0x0, 0x7fff, 0x0, 0x4}, 0xffffffffffffffff, 0x7, r0, 0xd2d8ef4e14e34c8a) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) wait4(0xffffffffffffffff, &(0x7f0000000080), 0x41000002, 0x0) 19:17:35 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000f32600024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1652.392303][ T4781] loop2: detected capacity change from 0 to 1 [ 1652.431776][ T4792] loop1: detected capacity change from 0 to 512 19:17:35 executing program 5: getdents(0xffffffffffffff9c, &(0x7f0000000080)=""/123, 0x7b) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1652.476696][ T4781] loop2: p1 p2 p3 p4 [ 1652.481084][ T4781] loop2: p1 start 2046820362 is beyond EOD, truncated [ 1652.487951][ T4781] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1652.505144][ T4788] loop3: detected capacity change from 0 to 1 [ 1652.508353][ T4798] loop4: detected capacity change from 0 to 1 [ 1652.529290][ T4792] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1652.540026][ T4792] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1652.546789][ T4792] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1652.557169][ T4792] ext4_test_bit(bit=16, block=18) = 0 [ 1652.558560][ T4781] loop2: p3 start 2127165541 is beyond EOD, [ 1652.562552][ T4792] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1652.568565][ T4781] truncated [ 1652.568570][ T4781] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1652.589635][ T4788] loop3: p1 p2 p3 p4 [ 1652.593774][ T4798] loop4: p1 p2 p4 [ 1652.593944][ T4788] loop3: p1 start 10 is beyond EOD, truncated [ 1652.597894][ T4798] loop4: p1 start 10 is beyond EOD, [ 1652.603642][ T4788] loop3: p2 start 4076863488 is beyond EOD, truncated [ 1652.603661][ T4788] loop3: p3 start 2127165541 is beyond EOD, [ 1652.608921][ T4798] truncated [ 1652.608926][ T4798] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1652.615757][ T4788] truncated [ 1652.615762][ T4788] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:35 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a0000000245ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:35 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000002e00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:35 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x4, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1652.741620][ T4798] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1652.759084][ T4845] loop2: detected capacity change from 0 to 1 [ 1652.808793][ T1037] loop2: p1 p2 p3 p4 [ 1652.813317][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1652.819445][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1652.826802][ T4849] loop3: detected capacity change from 0 to 1 19:17:35 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f009400000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1652.851108][ T4798] loop4: detected capacity change from 0 to 1 [ 1652.860338][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1652.867123][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1652.881205][ T4849] loop3: p1 p2 p3 p4 [ 1652.890538][ T4849] loop3: p1 start 10 is beyond EOD, truncated [ 1652.896636][ T4849] loop3: p2 size 1073872942 extends beyond EOD, truncated [ 1652.898757][ T4875] loop1: detected capacity change from 0 to 512 [ 1652.904240][ T4798] loop4: p1 p2 p4 [ 1652.919814][ T4798] loop4: p1 start 10 is beyond EOD, truncated [ 1652.925933][ T4798] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1652.935588][ T4845] loop2: p1 p2 p3 p4 [ 1652.939816][ T4845] loop2: p1 start 10 is beyond EOD, truncated 19:17:35 executing program 5: clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1652.945906][ T4845] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1652.953870][ T4875] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1652.964822][ T4849] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1652.966031][ T4875] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1652.971654][ T4849] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1652.986328][ T4798] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1652.994304][ T4875] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1653.004681][ T4875] ext4_test_bit(bit=16, block=18) = 0 [ 1653.010077][ T4875] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1653.021183][ T4845] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1653.027985][ T4845] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:35 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xcf030000, 0x0, 0x0, 0x0) 19:17:35 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800803ca0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:35 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x0, 0x2, 0x5, 0x7, 0x0, 0x2, 0x800, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x4, @perf_bp={&(0x7f0000000080)}, 0x0, 0x53, 0x4, 0x7, 0x401, 0x7, 0x1, 0x0, 0x7be9ef2a, 0x0, 0x9}, 0xffffffffffffffff, 0x0, r0, 0x2) 19:17:35 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00ab00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:35 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff09ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:35 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000003f00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1653.168466][ T4910] loop4: detected capacity change from 0 to 1 19:17:36 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1653.229618][ T1037] loop4: p1 p2 p4 [ 1653.236329][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1653.242441][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1653.249943][ T4940] loop2: detected capacity change from 0 to 1 [ 1653.256298][ T4933] loop1: detected capacity change from 0 to 512 [ 1653.264721][ T4944] loop3: detected capacity change from 0 to 1 19:17:36 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x98d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) accept4$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000000c0)=0x14, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) ptrace$cont(0x1f, 0x0, 0x100000001, 0x9fb) [ 1653.287229][ T4933] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1653.295378][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1653.302834][ T4940] loop2: p1 p2 p3 p4 [ 1653.307187][ T4940] loop2: p1 start 10 is beyond EOD, truncated [ 1653.313400][ T4940] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1653.321186][ T4944] loop3: p1 p2 p3 p4 [ 1653.321435][ T4933] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1653.325420][ T4944] loop3: p1 start 10 is beyond EOD, truncated [ 1653.337317][ T4933] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1653.337603][ T4944] loop3: p2 size 1073872959 extends beyond EOD, truncated [ 1653.355233][ T4933] ext4_test_bit(bit=16, block=18) = 0 [ 1653.360624][ T4933] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1653.371332][ T4910] loop4: p1 p2 p4 [ 1653.378078][ T4910] loop4: p1 start 10 is beyond EOD, truncated [ 1653.378328][ T4944] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1653.384197][ T4910] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1653.390957][ T4944] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1653.403747][ T4940] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1653.412018][ T4940] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:36 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00fe00000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:36 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000004000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:36 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0xa8, 0x3f, 0x4, 0x5, 0x0, 0x9, 0x80002, 0x9, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x4000, 0x8001, 0xffff8000, 0x0, 0x9db, 0x3dc, 0x9, 0x0, 0x1, 0x0, 0xffffffffffffff66}, 0x0, 0x8, r0, 0x3) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) [ 1653.462610][ T4910] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:36 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff0aac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1653.540985][ T4992] loop3: detected capacity change from 0 to 1 [ 1653.548458][ T4910] loop4: detected capacity change from 0 to 1 [ 1653.579448][ T4992] loop3: p1 p2 p3 p4 [ 1653.579560][ T4910] loop4: p1 p2 p4 [ 1653.587897][ T4992] loop3: p1 start 10 is beyond EOD, truncated [ 1653.588477][ T4910] loop4: p1 start 10 is beyond EOD, truncated [ 1653.594025][ T4992] loop3: p2 size 1073872960 extends beyond EOD, truncated [ 1653.607304][ T4910] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1653.609218][ T4992] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1653.619256][ T5022] loop2: detected capacity change from 0 to 1 [ 1653.621251][ T4992] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1653.634513][ T5006] loop1: detected capacity change from 0 to 512 [ 1653.641780][ T4910] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1653.655489][ T5006] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1653.664381][ T5022] loop2: p1 p2 p3 p4 [ 1653.668766][ T5022] loop2: p1 start 10 is beyond EOD, truncated [ 1653.674884][ T5022] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1653.692039][ T1037] loop3: p1 p2 p3 p4 [ 1653.696450][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1653.702627][ T1037] loop3: p2 size 1073872960 extends beyond EOD, truncated [ 1653.728015][ T5006] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1653.744506][ T5006] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1653.754894][ T5006] ext4_test_bit(bit=16, block=18) = 0 [ 1653.755210][ T5022] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1653.760287][ T5006] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1653.767055][ T5022] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1653.785750][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated 19:17:36 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xeffdffff, 0x0, 0x0, 0x0) 19:17:36 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8080, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x0, 0xe, 0xffffffffffffffff, 0x0) clone(0x6204c080, &(0x7f0000000080), 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) 19:17:36 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800827e40000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1653.792598][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:36 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000004800024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:36 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff25ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1653.866324][ T5052] loop4: detected capacity change from 0 to 1 19:17:36 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f006201000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1653.926737][ T5052] loop4: p1 p2 p4 [ 1653.934311][ T5052] loop4: p1 start 10 is beyond EOD, truncated [ 1653.940424][ T5052] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1653.966498][ T5068] loop3: detected capacity change from 0 to 1 19:17:36 executing program 5: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x14ac000, 0x0, 0x0, 0x0) [ 1653.977741][ T5074] loop2: detected capacity change from 0 to 1 [ 1653.978367][ T5052] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1654.009168][ T1037] loop3: p1 p2 p3 p4 [ 1654.013534][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1654.019686][ T1037] loop3: p2 size 1073872968 extends beyond EOD, truncated [ 1654.029503][ T5074] loop2: p1 p2 p3 p4 [ 1654.035048][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1654.035884][ T5074] loop2: p1 start 10 is beyond EOD, [ 1654.041896][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1654.046401][ T5089] loop1: detected capacity change from 0 to 512 [ 1654.047208][ T5074] truncated [ 1654.047215][ T5074] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1654.073045][ T5068] loop3: p1 p2 p3 p4 [ 1654.077378][ T5068] loop3: p1 start 10 is beyond EOD, truncated [ 1654.083488][ T5068] loop3: p2 size 1073872968 extends beyond EOD, truncated [ 1654.091535][ T5052] loop4: detected capacity change from 0 to 1 [ 1654.098036][ T5089] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1654.107691][ T5089] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1654.114714][ T5089] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1654.125136][ T5089] ext4_test_bit(bit=16, block=18) = 0 [ 1654.130542][ T5089] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1654.143236][ T5068] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1654.150093][ T5068] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1654.157537][ T5052] loop4: p1 p2 p4 [ 1654.157822][ T5074] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1654.161406][ T5052] loop4: p1 start 10 is beyond EOD, truncated [ 1654.168074][ T5074] loop2: p4 size 3657465856 extends beyond EOD, 19:17:37 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000004c00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1654.174199][ T5052] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1654.180537][ T5074] truncated [ 1654.212388][ T5052] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:37 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f006301000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:37 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800804f50000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1654.265448][ T5120] loop3: detected capacity change from 0 to 1 [ 1654.320199][ T5120] loop3: p1 p2 p3 p4 [ 1654.324534][ T5120] loop3: p1 start 10 is beyond EOD, truncated [ 1654.329110][ T5128] loop1: detected capacity change from 0 to 512 [ 1654.330742][ T5120] loop3: p2 size 1073872972 extends beyond EOD, truncated [ 1654.345172][ T1037] loop4: p1 p2 p4 [ 1654.349479][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1654.355567][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:37 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0280ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1654.363281][ T5128] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1654.380587][ T5128] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1654.410608][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1654.419795][ T5120] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1654.426652][ T5120] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1654.438261][ T5128] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1654.448661][ T5128] ext4_test_bit(bit=16, block=18) = 0 19:17:37 executing program 5: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xf04a00, 0x0, 0x0, 0x0) [ 1654.454101][ T5128] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1654.468965][ T5146] loop2: detected capacity change from 0 to 1 19:17:37 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xff600000, 0x0, 0x0, 0x0) 19:17:37 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f006c01000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1654.519294][ T5146] loop2: p1 p2 p3 p4 [ 1654.523738][ T5146] loop2: p1 start 10 is beyond EOD, truncated [ 1654.529857][ T5146] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:37 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000006000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1654.585223][ T5146] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1654.592189][ T5146] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1654.603958][ T5165] loop4: detected capacity change from 0 to 1 19:17:37 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0380ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1654.644009][ T5176] loop3: detected capacity change from 0 to 1 [ 1654.650557][ T1037] loop4: p1 p2 p4 [ 1654.654610][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1654.660767][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1654.691417][ T5181] loop1: detected capacity change from 0 to 512 [ 1654.703067][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1654.707451][ T5190] loop2: detected capacity change from 0 to 1 [ 1654.711005][ T5181] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1654.719097][ T5176] loop3: p1 p2 p3 p4 [ 1654.728650][ T5176] loop3: p1 start 10 is beyond EOD, truncated [ 1654.734784][ T5176] loop3: p2 size 1073872992 extends beyond EOD, truncated [ 1654.742806][ T5181] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1654.749741][ T5165] loop4: p1 p2 p4 [ 1654.753821][ T5165] loop4: p1 start 10 is beyond EOD, truncated [ 1654.759937][ T5165] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1654.759960][ T5181] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1654.767458][ T5190] loop2: p1 p2 p3 p4 [ 1654.777427][ T5181] ext4_test_bit(bit=16, block=18) = 0 [ 1654.777443][ T5181] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1654.781950][ T5165] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1654.805414][ T5190] loop2: p1 start 10 is beyond EOD, truncated [ 1654.811543][ T5190] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1654.843879][ T5176] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1654.850710][ T5176] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1654.859370][ T5190] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1654.866193][ T5190] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1654.875780][ T1037] loop3: p1 p2 p3 p4 [ 1654.883108][ T1037] loop3: p1 start 10 is beyond EOD, truncated 19:17:37 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000004c00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:37 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f006d01000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:37 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0580ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1654.889301][ T1037] loop3: p2 size 1073872992 extends beyond EOD, truncated [ 1654.913914][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1654.918963][ T5165] loop4: detected capacity change from 0 to 1 [ 1654.920748][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:37 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000004c00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:37 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000006800024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1654.983260][ T5226] loop2: detected capacity change from 0 to 1 [ 1654.989994][ T5165] loop4: p1 p2 p4 [ 1654.994237][ T5165] loop4: p1 start 10 is beyond EOD, truncated [ 1655.000348][ T5165] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:37 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800f80000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:37 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000004c00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1655.037226][ T5165] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1655.069344][ T5226] loop2: p1 p2 p3 p4 [ 1655.073616][ T5226] loop2: p1 start 10 is beyond EOD, truncated [ 1655.079750][ T5226] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:37 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a0000c0ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1655.091791][ T5241] loop1: detected capacity change from 0 to 512 [ 1655.109365][ T5246] loop3: detected capacity change from 0 to 1 [ 1655.115704][ T5226] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1655.122616][ T5226] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1655.140260][ T5246] loop3: p1 p2 p3 p4 [ 1655.145638][ T5246] loop3: p1 start 10 is beyond EOD, truncated [ 1655.149198][ T5241] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1655.151758][ T5246] loop3: p2 size 1073873000 extends beyond EOD, truncated [ 1655.167669][ T5246] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1655.174516][ T5246] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1655.183693][ T5241] EXT4-fs (loop1): orphan cleanup on readonly fs 19:17:37 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xfffffdef, 0x0, 0x0, 0x0) 19:17:37 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a0000c0ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:37 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0680ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1655.191297][ T5241] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1655.201691][ T5241] ext4_test_bit(bit=16, block=18) = 0 [ 1655.207064][ T5241] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1655.211975][ T5267] loop4: detected capacity change from 0 to 1 [ 1655.238462][ T1037] loop3: p1 p2 p3 p4 19:17:38 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f007801000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1655.242889][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1655.249061][ T1037] loop3: p2 size 1073873000 extends beyond EOD, truncated [ 1655.250296][ T5275] loop2: detected capacity change from 0 to 1 [ 1655.269300][ T5267] loop4: p1 p2 p4 [ 1655.269331][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1655.273507][ T5267] loop4: p1 start 10 is beyond EOD, truncated [ 1655.279856][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:38 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a0000c0ff45ac0480ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1655.285902][ T5267] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1655.305792][ T5267] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:38 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000006c00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1655.334238][ T5293] loop1: detected capacity change from 0 to 512 [ 1655.349713][ T5275] loop2: p1 p2 p3 p4 [ 1655.356267][ T5275] loop2: p1 start 10 is beyond EOD, truncated [ 1655.359636][ T5267] loop4: detected capacity change from 0 to 1 [ 1655.362420][ T5275] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:38 executing program 5: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000b0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1655.382292][ T5293] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1655.391753][ T5293] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1655.407354][ T5293] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1655.417762][ T5293] ext4_test_bit(bit=16, block=18) = 0 [ 1655.423151][ T5293] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:38 executing program 5: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000b0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1655.433929][ T5275] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1655.440765][ T5275] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1655.441954][ T5267] loop4: p1 p2 p4 [ 1655.455792][ T5267] loop4: p1 start 10 is beyond EOD, truncated [ 1655.461926][ T5267] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1655.477979][ T5318] loop3: detected capacity change from 0 to 1 19:17:38 executing program 5: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000b0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1655.482126][ T5267] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1655.495694][ T1037] loop4: p1 p2 p4 [ 1655.499586][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1655.505703][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1655.513933][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1655.521412][ T5318] loop3: p1 p2 p3 p4 [ 1655.526008][ T5318] loop3: p1 start 10 is beyond EOD, truncated [ 1655.532131][ T5318] loop3: p2 size 1073873004 extends beyond EOD, truncated 19:17:38 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080fff0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:38 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0780ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:38 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f007901000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1655.555603][ T5318] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1655.562457][ T5318] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1655.572680][ T1037] loop3: p1 p2 p3 p4 [ 1655.576955][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1655.583059][ T1037] loop3: p2 size 1073873004 extends beyond EOD, truncated [ 1655.596600][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1655.603492][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1655.615659][ T5345] loop2: detected capacity change from 0 to 1 [ 1655.622792][ T5350] loop1: detected capacity change from 0 to 512 [ 1655.632357][ T5350] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1655.642053][ T5350] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1655.649299][ T5350] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1655.659798][ T5350] ext4_test_bit(bit=16, block=18) = 0 [ 1655.665197][ T5350] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1655.690959][ T5345] loop2: p1 p2 p3 p4 [ 1655.704415][ T5345] loop2: p1 start 10 is beyond EOD, truncated [ 1655.710550][ T5345] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1655.719477][ T5368] loop4: detected capacity change from 0 to 1 [ 1655.727101][ T5345] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1655.733911][ T5345] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1655.775972][ T5368] loop4: p1 p2 p4 [ 1655.783922][ T5368] loop4: p1 start 10 is beyond EOD, truncated [ 1655.790056][ T5368] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1655.876687][ T5368] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:38 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xffffffff, 0x0, 0x0, 0x0) 19:17:38 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000ffffffe4024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:38 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000007400024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:38 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00cc01000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:38 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0880ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1655.957885][ T5368] loop4: detected capacity change from 0 to 1 [ 1656.014462][ T5368] loop4: p1 p2 p4 [ 1656.022059][ T5368] loop4: p1 start 10 is beyond EOD, truncated [ 1656.028196][ T5368] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1656.048383][ T5398] loop1: detected capacity change from 0 to 512 [ 1656.057501][ T5397] loop3: detected capacity change from 0 to 1 19:17:38 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000ffffffe4024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1656.083046][ T5403] loop2: detected capacity change from 0 to 1 [ 1656.095828][ T5368] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1656.099657][ T5397] loop3: p1 p2 p3 p4 [ 1656.107608][ T5398] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1656.108224][ T5397] loop3: p1 start 10 is beyond EOD, truncated [ 1656.121725][ T5397] loop3: p2 size 1073873012 extends beyond EOD, truncated [ 1656.125810][ T5398] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1656.136458][ T5397] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1656.143278][ T5397] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1656.158929][ T5403] loop2: p1 p2 p3 p4 [ 1656.158929][ T5398] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1656.163034][ T5403] loop2: p1 start 10 is beyond EOD, 19:17:39 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000ffffffe4024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1656.173310][ T5398] ext4_test_bit(bit=16, block=18) = 0 [ 1656.173317][ T5403] truncated [ 1656.173328][ T5398] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1656.178592][ T5403] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1656.207788][ T5403] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1656.214608][ T5403] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1656.217534][ T1037] loop4: p1 p2 p4 19:17:39 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000007a00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:39 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000200000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:39 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0980ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1656.246931][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1656.253108][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1656.263361][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:39 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00ce01000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:39 executing program 5: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xf, 0x0, 0x0, 0x0) [ 1656.308262][ T5446] loop3: detected capacity change from 0 to 1 [ 1656.340090][ T5453] loop2: detected capacity change from 0 to 1 [ 1656.371967][ T5446] loop3: p1 p2 p3 p4 [ 1656.377743][ T5446] loop3: p1 start 10 is beyond EOD, truncated [ 1656.383899][ T5446] loop3: p2 size 1073873018 extends beyond EOD, truncated [ 1656.397465][ T5453] loop2: p1 p2 p3 p4 [ 1656.402202][ T5453] loop2: p1 start 10 is beyond EOD, truncated [ 1656.408355][ T5453] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1656.422919][ T5472] loop1: detected capacity change from 0 to 512 [ 1656.426400][ T5474] loop4: detected capacity change from 0 to 1 [ 1656.442531][ T5446] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1656.449343][ T5446] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1656.453713][ T5472] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1656.467239][ T5453] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1656.468805][ T5474] loop4: p1 p2 p4 [ 1656.474062][ T5453] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1656.479154][ T5474] loop4: p1 start 10 is beyond EOD, truncated [ 1656.489384][ T5472] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1656.491076][ T5474] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1656.500970][ T5472] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1656.514814][ T5472] ext4_test_bit(bit=16, block=18) = 0 [ 1656.520220][ T5472] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1656.537047][ T5474] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1656.548918][ T1037] loop2: p1 p2 p3 p4 [ 1656.556326][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1656.562440][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1656.584528][ T5474] loop4: detected capacity change from 0 to 1 [ 1656.604623][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1656.611472][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1656.628982][ T5474] loop4: p1 p2 p4 [ 1656.633060][ T5474] loop4: p1 start 10 is beyond EOD, truncated [ 1656.639169][ T5474] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1656.680329][ T5474] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1656.693747][ T1037] loop4: p1 p2 p4 [ 1656.697692][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1656.703895][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1656.712623][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:39 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00d201000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:39 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000048000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:39 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0a80ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:39 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f00000006c0)=[{&(0x7f0000000040)="200000000202000019000000500100000f000000000000000000000004000000000002000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x900008, &(0x7f0000000140)) 19:17:39 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x2, 0x0, 0x0) 19:17:39 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000400000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:39 executing program 5: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0xffffffff, 0x0, 0x0, 0x0) [ 1656.830456][ T5523] loop3: detected capacity change from 0 to 1 [ 1656.842315][ T5532] loop2: detected capacity change from 0 to 1 [ 1656.846571][ T5535] loop1: detected capacity change from 0 to 512 [ 1656.865374][ T5538] loop4: detected capacity change from 0 to 1 [ 1656.880544][ T5532] loop2: p1 p2 p3 p4 [ 1656.884719][ T5532] loop2: p1 start 10 is beyond EOD, truncated [ 1656.890874][ T5532] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1656.899062][ T1037] loop3: p1 p2 p3 p4 [ 1656.903810][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1656.909951][ T1037] loop3: p2 start 67108864 is beyond EOD, truncated [ 1656.916555][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1656.923343][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1656.930824][ T5532] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1656.931992][ T5535] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1656.937603][ T5532] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1656.953061][ T5538] loop4: p1 p2 p4 [ 1656.957562][ T5538] loop4: p1 start 10 is beyond EOD, truncated [ 1656.963727][ T5538] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1656.984521][ T5535] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1656.991711][ T5535] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1656.995251][ T5538] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1657.002126][ T5535] ext4_test_bit(bit=16, block=18) = 0 [ 1657.014617][ T5535] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:39 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00d301000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:39 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0b80ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1657.039170][ T5523] loop3: p1 p2 p3 p4 [ 1657.046564][ T5523] loop3: p1 start 10 is beyond EOD, truncated [ 1657.052699][ T5523] loop3: p2 start 67108864 is beyond EOD, truncated [ 1657.059313][ T5523] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1657.066084][ T5523] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1657.098232][ T5569] loop2: detected capacity change from 0 to 1 [ 1657.125857][ T5538] loop4: detected capacity change from 0 to 1 [ 1657.148767][ T5569] loop2: p1 p2 p3 p4 [ 1657.153002][ T5569] loop2: p1 start 10 is beyond EOD, truncated [ 1657.158349][ T5578] loop1: detected capacity change from 0 to 512 [ 1657.159195][ T5569] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1657.173275][ T5569] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1657.180191][ T5569] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1657.188251][ T5538] loop4: p1 p2 p4 [ 1657.192654][ T5538] loop4: p1 start 10 is beyond EOD, truncated 19:17:40 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000008a00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1657.198880][ T5538] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1657.206397][ T5538] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1657.235873][ T5578] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:17:40 executing program 5: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/intel_idle', 0x10800, 0x20) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000000300)={0x4, "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"}) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f00000002c0)) close(r1) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r2, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) close_range(r2, r0, 0x2) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$KDGKBLED(r3, 0x4b64, &(0x7f0000000080)) clone3(&(0x7f0000000680)={0x140822000, &(0x7f00000000c0), &(0x7f0000000100), 0x0, {}, &(0x7f0000000180)=""/184, 0xb8, &(0x7f0000000240)=""/103, 0x0}, 0x58) getrlimit(0xd, &(0x7f0000000040)) 19:17:40 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0c80ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:40 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000800000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1657.253556][ T5578] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1657.271800][ T1037] loop4: p1 p2 p4 [ 1657.289385][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1657.295517][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1657.306029][ T5601] loop3: detected capacity change from 0 to 1 [ 1657.313392][ T5578] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1657.323791][ T5578] ext4_test_bit(bit=16, block=18) = 0 [ 1657.325730][ T5607] loop2: detected capacity change from 0 to 1 [ 1657.329190][ T5578] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1657.336324][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:40 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00fc01000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1657.358718][ T5601] loop3: p1 p2 p3 p4 [ 1657.362957][ T5601] loop3: p1 start 10 is beyond EOD, truncated [ 1657.369161][ T5601] loop3: p2 size 1073873034 extends beyond EOD, truncated [ 1657.377211][ T5607] loop2: p1 p2 p3 p4 [ 1657.381829][ T5607] loop2: p1 start 10 is beyond EOD, truncated [ 1657.387953][ T5607] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1657.412413][ T5601] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1657.419243][ T5601] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1657.427810][ T5607] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1657.434625][ T5607] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1657.449976][ T1037] loop2: p1 p2 p3 p4 [ 1657.454030][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1657.460201][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1657.469789][ T5645] loop4: detected capacity change from 0 to 1 [ 1657.476268][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1657.476499][ T5647] loop1: detected capacity change from 0 to 512 [ 1657.483226][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1657.544968][ T5645] loop4: p1 p2 p4 [ 1657.554428][ T5645] loop4: p1 start 10 is beyond EOD, truncated [ 1657.560618][ T5645] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1657.568925][ T5647] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1657.581343][ T5647] EXT4-fs (loop1): orphan cleanup on readonly fs 19:17:40 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x7, 0x0, 0x0) 19:17:40 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/exe\x00', 0x0, 0x102) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap(&(0x7f0000307000/0x1000)=nil, 0x1000, 0x1, 0x1010, r0, 0xc3860000) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0x7, &(0x7f0000000040)={0x8001, 0x7, 0x9, 0x80000001}, 0x10) unshare(0x6a040000) r1 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000080)=@buf) dup3(r0, r1, 0x80000) 19:17:40 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000009000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:40 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0d80ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1657.596584][ T5647] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1657.606977][ T5647] ext4_test_bit(bit=16, block=18) = 0 [ 1657.612433][ T5647] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1657.615446][ T5645] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:40 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001140), 0xffffffffffffffff) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000000)=[@mss, @mss, @window, @mss], 0x4) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100006046a14942ba8002000000080003"], 0x3c}}, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r5 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r5, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r5, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) pwritev(r5, &(0x7f0000000180)=[{&(0x7f0000000140)="1f86ee56be8b1ea1a10dad7ce13090f1ab1dd0c209bf9d81edf414f09ba65fb494e77ea690ae", 0x26}], 0x1, 0x80, 0x4) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendfile(r2, r1, 0x0, 0x100000002) r6 = accept$inet(r0, &(0x7f0000000040)={0x2, 0x0, @multicast1}, &(0x7f0000000100)=0x10) mmap(&(0x7f0000983000/0x3000)=nil, 0x3000, 0x4, 0x13, r6, 0x50f55000) 19:17:40 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000402000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1657.746655][ T5682] loop3: detected capacity change from 0 to 1 [ 1657.775516][ T5681] loop2: detected capacity change from 0 to 1 [ 1657.788656][ T5682] loop3: p1 p2 p3 p4 [ 1657.793380][ T5682] loop3: p1 start 10 is beyond EOD, truncated [ 1657.799688][ T5682] loop3: p2 size 1073873040 extends beyond EOD, truncated [ 1657.807088][ T5645] loop4: detected capacity change from 0 to 1 [ 1657.828877][ T5681] loop2: p1 p2 p3 p4 [ 1657.830358][ T5682] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1657.832942][ T5681] loop2: p1 start 10 is beyond EOD, truncated [ 1657.839766][ T5682] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1657.845810][ T5681] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:40 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000c000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1657.893362][ T5645] loop4: p1 p2 p4 [ 1657.897168][ T5645] loop4: p1 start 10 is beyond EOD, truncated [ 1657.903358][ T5645] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1657.929976][ T5711] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1657.957888][ T5720] loop3: detected capacity change from 0 to 1 [ 1657.970249][ T5645] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1657.971698][ T5717] loop1: detected capacity change from 0 to 512 [ 1657.991996][ T5681] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1657.998876][ T5681] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1658.008894][ T5720] loop3: p1 p2 p3 p4 [ 1658.013387][ T5720] loop3: p1 start 10 is beyond EOD, truncated [ 1658.019513][ T5720] loop3: p2 size 1073873088 extends beyond EOD, truncated [ 1658.021473][ T5717] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1658.048962][ T5717] EXT4-fs (loop1): orphan cleanup on readonly fs 19:17:40 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000026f300024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:40 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800840000800000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1658.055664][ T5720] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1658.062503][ T5720] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1658.070523][ T5717] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1658.081042][ T5717] ext4_test_bit(bit=16, block=18) = 0 [ 1658.086416][ T5717] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:40 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) getpeername$inet6(r0, &(0x7f0000000400)={0xa, 0x0, 0x0, @empty}, &(0x7f0000000440)=0x1c) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000040)='./file0\x00', 0xfff, 0x3, &(0x7f0000000380)=[{&(0x7f0000000080)="00fa0e307627b556ded79e70ecc85b2781a062facddc1e78873df13db30f558ccdf7786c7e690ae22f72c9a45cbb67a54f6ccf6a7a061d7333236ba478c53d5c5b3c4c0b4d089e69d29de2f0bf9161db10899282b2964c10b0f221bebc042dec0b07c2f46d2037e2d098ebeb10ec46394193e3974e032a256e7893e2f5a5ad53281497570f279e346325feb6ce54c6bdbb68f45b15fcbc529d86de9b1da9a79071895262d38100883f9eb17150ce567b28ff2622c6e8c413c1c9f3adef264b9db506eaadff750ba3365c0b4fbe0b945a4d2b8a3c93f21d13f15849", 0xdb, 0x8008}, {&(0x7f0000000180)="be60610d136a0aecfe82d2f4b05d452877160ce8983e62d4dc3fda483a8a70ed2c756fd8439c9ab4edd4cfc26816184c371bcef2590e3d2ce793bfbdd952235cb8b51d9573dd82ab0f8b3d5310dd952b60bee013f7608a79e5b7491ecf4f8a8bc9fa9c8beb027a3c66f7b3d76215ddcd987ba78c6a055e94594fb463d6f11cc3d75117ccf5648a4ba7eb0505d8d51377dde4b6c2ca032922d20860bf5bcba0add1572dc513cda0c115eacf6999bf05b0d8b47d1f940334cb05767b3501bbe91f0cfa13629aafc86d00", 0xc9, 0x8}, {&(0x7f00000002c0)="fc32a9c9d329b13b1e38760e4e70992806d744fa2e49b0cd5573dd9455fd26fc1e495cc3d363c1b107432c6502481df544f6bbd03cdb38df8f0c22cc6f274ebf0d4d0466927e28825e9da26de7881be1477f2dc4ce30002ddb5523956f2d1dd84b4744f6ff6323890bab60ee640923c6c9194c5ee3042b0deff1525d3ec747374d535c7c4a07c40151a03923", 0x8c, 0x800000000000001}], 0x108000, &(0x7f00000006c0)=ANY=[@ANYRESOCT=r0, @ANYRESDEC=0xee01, @ANYBLOB="2c726f6f6e636f6e746578743d73797374656d5f752c736d61636f209cc2442b6673666c8471faf73788bf00001c0023bdb1115159f27723da62167b1bdc902eaeae77d3ba875b8f71cd1f27213fea54345a3f4ec05c538d08b08f00c933180a6ad0a58701652750967e7450adc4174b064310c40d7edb43840a91c624128aae1c5b185cc8e1ab845e1b2e8c20f60f2bbf8e51e19de65bcb9429c406b6cce4ec51725395d8e94ccc203557a80e5518edf0876f4e5a1f602cf977143620d4232f731a1fcb657dc21b8675992b0000000004866a91dc3fe30de8880000000043"]) getsockopt$IP6T_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x29, 0x44, &(0x7f0000000500)={'icmp6\x00'}, &(0x7f0000000540)=0x1e) 19:17:40 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0e80ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:40 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f002b02000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1658.152716][ T1037] loop4: p1 p2 p4 [ 1658.165678][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1658.171811][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1658.189384][ T5748] loop3: detected capacity change from 0 to 1 [ 1658.199898][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1658.210671][ T5753] loop2: detected capacity change from 0 to 1 [ 1658.228965][ T5748] loop3: p1 p2 p3 p4 [ 1658.237640][ T5748] loop3: p1 start 10 is beyond EOD, truncated [ 1658.238914][ T5753] loop2: p1 p2 p3 p4 [ 1658.243795][ T5748] loop3: p2 start 637534208 is beyond EOD, truncated [ 1658.247864][ T5753] loop2: p1 start 10 is beyond EOD, [ 1658.254568][ T5748] loop3: p3 start 2127165541 is beyond EOD, [ 1658.254568][ T5753] truncated [ 1658.259880][ T5748] truncated [ 1658.259886][ T5748] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1658.279229][ T5753] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1658.293301][ T5764] loop4: detected capacity change from 0 to 1 [ 1658.302310][ T5774] loop1: detected capacity change from 0 to 512 [ 1658.308765][ T5753] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1658.315622][ T5753] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1658.326320][ T5774] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1658.328754][ T5764] loop4: p1 p2 p4 [ 1658.339689][ T5774] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1658.339854][ T5764] loop4: p1 start 10 is beyond EOD, truncated [ 1658.352176][ T5764] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1658.360258][ T1037] loop2: p1 p2 p3 p4 [ 1658.363302][ T5764] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1658.367019][ T5774] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1658.373528][ T1037] loop2: p1 start 10 is beyond EOD, [ 1658.381735][ T5774] ext4_test_bit(bit=16, block=18) = 0 [ 1658.381741][ T1037] truncated 19:17:41 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0xf, 0x0, 0x0) 19:17:41 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4030006, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="200000002e0100000c000000ce0000000f000000020000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010003000000d7f4655f000000000100000001000000000000000b00000080", 0x59, 0x8}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000013800)) getdents64(0xffffffffffffff9c, &(0x7f0000000380)=""/4096, 0x1000) 19:17:41 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000004f500024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:41 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f002d02000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1658.381753][ T5774] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1658.387023][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1658.413579][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1658.421616][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1658.439083][ T5764] loop4: detected capacity change from 0 to 1 19:17:41 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac1080ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1658.481644][ T5764] loop4: p1 p2 p4 [ 1658.486478][ T5764] loop4: p1 start 10 is beyond EOD, truncated [ 1658.492625][ T5764] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1658.500856][ T5764] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1658.506121][ T5815] loop1: detected capacity change from 0 to 512 [ 1658.519470][ T5814] loop3: detected capacity change from 0 to 1 19:17:41 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) write$binfmt_script(r0, &(0x7f0000000440)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) openat$cgroup_ro(r3, &(0x7f0000000040)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="50000000b5e6a9d9abb0953265ab1b1af5be835366365efc4dfcb5ff0254fa775f2552b1f4a1f9e1a12e736c269e2649", @ANYRES16=r5, @ANYBLOB="010000000000000000002b00000008000300", @ANYRES32, @ANYBLOB='4\x00*'], 0x50}}, 0x0) sendfile(r4, r2, 0x0, 0x100000002) [ 1658.522972][ T5815] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1658.533534][ T5817] loop2: detected capacity change from 0 to 1 [ 1658.548079][ T1037] loop4: p1 p2 p4 [ 1658.549628][ T5815] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1658.552303][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1658.559464][ T5815] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1658.564513][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated 19:17:41 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f003102000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1658.574853][ T5815] ext4_test_bit(bit=16, block=18) = 0 [ 1658.574871][ T5815] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1658.588716][ T5814] loop3: p1 p2 p3 p4 [ 1658.602434][ T5817] loop2: p1 p2 p3 p4 [ 1658.602531][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1658.606851][ T5817] loop2: p1 start 10 is beyond EOD, truncated [ 1658.619653][ T5817] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1658.642690][ T5814] loop3: p1 start 10 is beyond EOD, truncated [ 1658.648839][ T5814] loop3: p2 start 67108864 is beyond EOD, truncated [ 1658.655432][ T5814] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1658.662252][ T5814] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1658.683653][ T5817] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:41 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800001000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1658.690507][ T5817] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1658.712899][ T1037] loop2: p1 p2 p3 p4 [ 1658.717166][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1658.723300][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1658.737677][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1658.744596][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1658.754211][ T5851] loop1: detected capacity change from 0 to 512 [ 1658.772275][ T5851] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1658.780852][ T5851] EXT4-fs (loop1): orphan cleanup on readonly fs 19:17:41 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac1180ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:41 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000fff00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1658.789951][ T5851] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1658.800446][ T5851] ext4_test_bit(bit=16, block=18) = 0 [ 1658.805818][ T5851] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:41 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f003302000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1658.896537][ T5876] loop2: detected capacity change from 0 to 1 [ 1658.896547][ T5880] loop3: detected capacity change from 0 to 1 [ 1658.910215][ T5878] loop4: detected capacity change from 0 to 1 [ 1658.938904][ T5880] loop3: p1 p2 p3 p4 [ 1658.943250][ T5880] loop3: p1 start 10 is beyond EOD, truncated [ 1658.949417][ T5880] loop3: p2 start 251658240 is beyond EOD, truncated [ 1658.956145][ T5880] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1658.962963][ T5880] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1658.971888][ T5876] loop2: p1 p2 p3 p4 [ 1658.975978][ T5876] loop2: p1 start 10 is beyond EOD, truncated [ 1658.982068][ T5876] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1658.989828][ T5878] loop4: p1 p2 p4 [ 1658.993954][ T5878] loop4: p1 start 10 is beyond EOD, truncated [ 1659.000112][ T5878] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1659.008933][ T5878] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1659.028549][ T5876] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1659.035341][ T5876] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:41 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000034000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1659.068496][ T5895] loop1: detected capacity change from 0 to 512 [ 1659.092568][ T5878] loop4: detected capacity change from 0 to 1 [ 1659.102900][ T5895] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:17:41 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x10, 0x0, 0x0) 19:17:41 executing program 5: r0 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x2200000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f00000000c0)="000000000000000000000000e2aa000000000000846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000000680)="ed41000010001200000004008000000000000800050000000af3010004000000000000000000010009", 0x29, 0x4400}], 0x0, &(0x7f00000000c0)=ANY=[]) r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x20800, 0x14, 0x9}, 0x18) openat(r1, &(0x7f0000000140)='./file0\x00', 0x103c41, 0x20) getdents64(r0, 0x0, 0x19) [ 1659.123389][ T5895] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1659.130189][ T5895] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1659.140608][ T5895] ext4_test_bit(bit=16, block=18) = 0 [ 1659.145983][ T5895] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1659.159073][ T1037] loop4: p1 p2 p4 [ 1659.162880][ T1037] loop4: p1 start 10 is beyond EOD, truncated 19:17:41 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac1280ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1659.169026][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1659.181220][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1659.190765][ T5923] loop3: detected capacity change from 0 to 1 [ 1659.196932][ T5878] loop4: p1 p2 p4 [ 1659.203741][ T5878] loop4: p1 start 10 is beyond EOD, truncated [ 1659.209860][ T5878] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1659.218610][ T5923] loop3: p1 p2 p3 p4 19:17:41 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000500)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@msize={'msize', 0x3d, 0x1}}, {@cache_none}, {@cache_loose}], [{@euid_eq}, {@smackfsdef={'smackfsdef', 0x3d, '/dev/loop-control\x00'}}]}}) setuid(0x0) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r3, 0x4c80, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000004c0)=[{&(0x7f0000000040)=@file={0x1, './bus\x00'}, 0x6e, &(0x7f0000000100)=[{&(0x7f00000000c0)}], 0x1, &(0x7f00000001c0)=ANY=[@ANYRES32=r0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000001c000000", @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYBLOB="0000000066900000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB, @ANYRES32=r0, @ANYRES32=0x0, @ANYBLOB, @ANYRES32=r1, @ANYRES32=r3], 0xb0, 0x8095}], 0x1, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) getpgid(r0) quotactl(0x1, &(0x7f0000000300)='./bus\x00', 0xffffffffffffffff, &(0x7f0000000340)="8018daf6a4bc441c76b4040e0163b2") connect$unix(r2, &(0x7f0000000380)=@file={0x1, './bus\x00'}, 0x6e) 19:17:41 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f008602000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1659.222728][ T5923] loop3: p1 start 10 is beyond EOD, truncated [ 1659.227980][ T5934] loop2: detected capacity change from 0 to 1 [ 1659.228833][ T5923] loop3: p2 size 1073938432 extends beyond EOD, truncated [ 1659.254101][ T5878] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1659.283869][ T5923] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1659.290782][ T5923] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1659.299332][ T5934] loop2: p1 p2 p3 p4 [ 1659.350881][ T5934] loop2: p1 start 10 is beyond EOD, truncated [ 1659.357019][ T5934] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:42 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800002000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1659.470010][ T5934] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1659.476881][ T5934] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:42 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac2680ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:42 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000044000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1659.561420][ T5958] loop1: detected capacity change from 0 to 512 [ 1659.585756][ T5957] loop4: detected capacity change from 0 to 1 19:17:42 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x30, 0x0, 0x0) [ 1659.605678][ T5958] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1659.648660][ T5957] loop4: p1 p2 p4 [ 1659.652608][ T5957] loop4: p1 start 10 is beyond EOD, truncated [ 1659.653323][ T5958] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1659.658726][ T5957] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1659.679213][ T5982] loop3: detected capacity change from 0 to 1 [ 1659.685659][ T5958] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1659.696124][ T5958] ext4_test_bit(bit=16, block=18) = 0 [ 1659.701555][ T5958] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1659.713245][ T5957] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1659.713639][ T5983] loop2: detected capacity change from 0 to 1 [ 1659.768822][ T5982] loop3: p1 p2 p3 p4 [ 1659.773275][ T5982] loop3: p1 start 10 is beyond EOD, truncated [ 1659.779392][ T5982] loop3: p2 size 1074003968 extends beyond EOD, truncated [ 1659.790899][ T5957] __loop_clr_fd: partition scan of loop4 failed (rc=-16) [ 1659.798762][ T5983] loop2: p1 p2 p3 p4 [ 1659.811360][ T5983] loop2: p1 start 10 is beyond EOD, truncated 19:17:42 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f008702000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1659.817525][ T5983] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1659.825442][ T5982] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1659.832320][ T5982] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1659.846171][ T5957] loop4: detected capacity change from 0 to 1 [ 1659.848967][ T5983] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1659.859070][ T5983] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:42 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000054000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1659.901056][ T1037] loop4: p1 p2 p4 [ 1659.903149][ T6007] loop1: detected capacity change from 0 to 512 [ 1659.904961][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1659.917161][ T1037] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1659.926458][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1659.941767][ T6007] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:17:42 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac04f5ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1659.951084][ T5957] loop4: p1 p2 p4 [ 1659.955278][ T5957] loop4: p1 start 10 is beyond EOD, truncated [ 1659.961498][ T5957] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1659.994022][ T6007] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1660.001250][ T6030] loop3: detected capacity change from 0 to 1 [ 1660.007979][ T6007] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1660.018631][ T6007] ext4_test_bit(bit=16, block=18) = 0 [ 1660.024008][ T6007] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1660.029314][ T5957] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:42 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f009202000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1660.042239][ T6034] loop2: detected capacity change from 0 to 1 19:17:42 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x42, 0x0, 0x0) 19:17:42 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800009000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:42 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f008702000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1660.102359][ T1037] loop3: p1 p2 p3 p4 [ 1660.106677][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1660.112840][ T1037] loop3: p2 size 1074069504 extends beyond EOD, truncated 19:17:42 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac048000000005800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1660.165129][ T6049] loop1: detected capacity change from 0 to 512 [ 1660.172000][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1660.178820][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1660.196377][ T6030] loop3: p1 p2 p3 p4 [ 1660.201049][ T6030] loop3: p1 start 10 is beyond EOD, truncated [ 1660.207257][ T6030] loop3: p2 size 1074069504 extends beyond EOD, truncated [ 1660.207469][ T6049] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1660.217932][ T6030] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1660.223932][ T6049] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1660.229231][ T6030] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1660.236502][ T6049] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1660.250567][ T6066] loop2: detected capacity change from 0 to 1 [ 1660.253078][ T6049] ext4_test_bit(bit=16, block=18) = 0 19:17:43 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f008702000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1660.264537][ T6049] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1660.276671][ T6070] loop4: detected capacity change from 0 to 1 19:17:43 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f008702000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:43 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f009302000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:43 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000074000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:43 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac1280ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1660.289778][ T6066] loop2: p1 p2 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p2 [ 1660.294665][ T6066] loop2: p1 start 10 is beyond EOD, truncated [ 1660.387798][ T6066] loop2: p2 size 2 extends beyond EOD, truncated [ 1660.410617][ T6066] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1660.417438][ T6066] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1660.434778][ T6070] loop4: p1 p2 p4 [ 1660.438791][ T6070] loop4: p1 start 10 is beyond EOD, truncated [ 1660.444877][ T6070] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1660.458503][ T6066] loop2: p5 start 10 is beyond EOD, truncated [ 1660.464653][ T6066] loop2: p6 start 10 is beyond EOD, truncated [ 1660.469203][ T6070] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1660.470748][ T6066] loop2: p7 start 10 is beyond EOD, truncated [ 1660.483933][ T6066] loop2: p8 start 10 is beyond EOD, truncated [ 1660.490272][ T6066] loop2: p9 start 10 is beyond EOD, truncated [ 1660.496344][ T6066] loop2: p10 start 10 is beyond EOD, truncated [ 1660.501598][ T6091] loop3: detected capacity change from 0 to 1 [ 1660.502731][ T6066] loop2: p11 start 10 is beyond EOD, truncated [ 1660.514961][ T6066] loop2: p12 start 10 is beyond EOD, truncated [ 1660.521154][ T6066] loop2: p13 start 10 is beyond EOD, truncated [ 1660.527332][ T6066] loop2: p14 start 10 is beyond EOD, truncated [ 1660.533598][ T6066] loop2: p15 start 10 is beyond EOD, truncated [ 1660.539775][ T6066] loop2: p16 start 10 is beyond EOD, truncated [ 1660.545990][ T6066] loop2: p17 start 10 is beyond EOD, truncated [ 1660.552153][ T6066] loop2: p18 start 10 is beyond EOD, truncated [ 1660.558320][ T6066] loop2: p19 start 10 is beyond EOD, truncated 19:17:43 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac1280ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1660.564497][ T6066] loop2: p20 start 10 is beyond EOD, truncated [ 1660.570747][ T6066] loop2: p21 start 10 is beyond EOD, truncated [ 1660.576899][ T6066] loop2: p22 start 10 is beyond EOD, truncated [ 1660.583094][ T6066] loop2: p23 start 10 is beyond EOD, truncated [ 1660.587922][ T6099] loop1: detected capacity change from 0 to 512 [ 1660.589422][ T6066] loop2: p24 start 10 is beyond EOD, truncated [ 1660.589440][ T6066] loop2: p25 start 10 is beyond EOD, truncated [ 1660.589493][ T6066] loop2: p26 start 10 is beyond EOD, truncated [ 1660.614185][ T6066] loop2: p27 start 10 is beyond EOD, truncated [ 1660.620424][ T6066] loop2: p28 start 10 is beyond EOD, truncated [ 1660.626575][ T6066] loop2: p29 start 10 is beyond EOD, truncated [ 1660.632752][ T6066] loop2: p30 start 10 is beyond EOD, truncated [ 1660.638949][ T6066] loop2: p31 start 10 is beyond EOD, truncated [ 1660.645103][ T6066] loop2: p32 start 10 is beyond EOD, truncated [ 1660.651303][ T6066] loop2: p33 start 10 is beyond EOD, truncated [ 1660.657482][ T6066] loop2: p34 start 10 is beyond EOD, truncated 19:17:43 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac1280ffffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1660.663694][ T6066] loop2: p35 start 10 is beyond EOD, truncated [ 1660.667092][ T6099] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1660.669946][ T6066] loop2: p36 start 10 is beyond EOD, truncated [ 1660.683469][ T6099] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1660.684037][ T6066] loop2: p37 start 10 is beyond EOD, truncated [ 1660.695549][ T6099] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1660.696606][ T6066] loop2: p38 start 10 is beyond EOD, truncated 19:17:43 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f009c02000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1660.696624][ T6066] loop2: p39 start 10 is beyond EOD, truncated [ 1660.696637][ T6066] loop2: p40 start 10 is beyond EOD, truncated [ 1660.696650][ T6066] loop2: p41 start 10 is beyond EOD, [ 1660.706999][ T6099] ext4_test_bit(bit=16, block=18) = 0 [ 1660.713141][ T6066] truncated [ 1660.713148][ T6066] loop2: p42 start 10 is beyond EOD, [ 1660.719299][ T6099] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1660.725444][ T6066] truncated [ 1660.725450][ T6066] loop2: p43 start 10 is beyond EOD, truncated [ 1660.764961][ T6066] loop2: p44 start 10 is beyond EOD, truncated [ 1660.771160][ T6066] loop2: p45 start 10 is beyond EOD, truncated [ 1660.777314][ T6066] loop2: p46 start 10 is beyond EOD, truncated [ 1660.783797][ T6066] loop2: p47 start 10 is beyond EOD, truncated [ 1660.789966][ T6066] loop2: p48 start 10 is beyond EOD, truncated [ 1660.796127][ T6066] loop2: p49 start 10 is beyond EOD, truncated [ 1660.802282][ T6066] loop2: p50 start 10 is beyond EOD, truncated [ 1660.808528][ T6066] loop2: p51 start 10 is beyond EOD, truncated [ 1660.814716][ T6066] loop2: p52 start 10 is beyond EOD, truncated [ 1660.820876][ T6066] loop2: p53 start 10 is beyond EOD, truncated [ 1660.827047][ T6066] loop2: p54 start 10 is beyond EOD, truncated [ 1660.833274][ T6066] loop2: p55 start 10 is beyond EOD, truncated [ 1660.839444][ T6066] loop2: p56 start 10 is beyond EOD, truncated [ 1660.845652][ T6066] loop2: p57 start 10 is beyond EOD, truncated [ 1660.851823][ T6066] loop2: p58 start 10 is beyond EOD, truncated [ 1660.857975][ T6066] loop2: p59 start 10 is beyond EOD, truncated [ 1660.864232][ T6066] loop2: p60 start 10 is beyond EOD, truncated [ 1660.870406][ T6066] loop2: p61 start 10 is beyond EOD, truncated [ 1660.876558][ T6066] loop2: p62 start 10 is beyond EOD, truncated [ 1660.882723][ T6066] loop2: p63 start 10 is beyond EOD, truncated [ 1660.888953][ T6066] loop2: p64 start 10 is beyond EOD, truncated [ 1660.895098][ T6066] loop2: p65 start 10 is beyond EOD, truncated [ 1660.901267][ T6066] loop2: p66 start 10 is beyond EOD, truncated [ 1660.907454][ T6066] loop2: p67 start 10 is beyond EOD, truncated [ 1660.913619][ T6066] loop2: p68 start 10 is beyond EOD, truncated [ 1660.919895][ T6066] loop2: p69 start 10 is beyond EOD, truncated [ 1660.926046][ T6066] loop2: p70 start 10 is beyond EOD, truncated [ 1660.932235][ T6066] loop2: p71 start 10 is beyond EOD, truncated [ 1660.938438][ T6066] loop2: p72 start 10 is beyond EOD, truncated [ 1660.944600][ T6066] loop2: p73 start 10 is beyond EOD, truncated [ 1660.950777][ T6066] loop2: p74 start 10 is beyond EOD, truncated [ 1660.956956][ T6066] loop2: p75 start 10 is beyond EOD, truncated [ 1660.963128][ T6066] loop2: p76 start 10 is beyond EOD, truncated [ 1660.969432][ T6066] loop2: p77 start 10 is beyond EOD, truncated [ 1660.975687][ T6066] loop2: p78 start 10 is beyond EOD, truncated [ 1660.981871][ T6066] loop2: p79 start 10 is beyond EOD, truncated [ 1660.988043][ T6066] loop2: p80 start 10 is beyond EOD, truncated [ 1660.994215][ T6066] loop2: p81 start 10 is beyond EOD, truncated [ 1661.000387][ T6066] loop2: p82 start 10 is beyond EOD, truncated [ 1661.006549][ T6066] loop2: p83 start 10 is beyond EOD, truncated [ 1661.012700][ T6066] loop2: p84 start 10 is beyond EOD, truncated [ 1661.018939][ T6066] loop2: p85 start 10 is beyond EOD, truncated [ 1661.025091][ T6066] loop2: p86 start 10 is beyond EOD, truncated [ 1661.031249][ T6066] loop2: p87 start 10 is beyond EOD, truncated [ 1661.037416][ T6066] loop2: p88 start 10 is beyond EOD, truncated [ 1661.043571][ T6066] loop2: p89 start 10 is beyond EOD, truncated [ 1661.049745][ T6066] loop2: p90 start 10 is beyond EOD, truncated [ 1661.055941][ T6066] loop2: p91 start 10 is beyond EOD, truncated [ 1661.062098][ T6066] loop2: p92 start 10 is beyond EOD, truncated [ 1661.068334][ T6066] loop2: p93 start 10 is beyond EOD, truncated [ 1661.074542][ T6066] loop2: p94 start 10 is beyond EOD, truncated [ 1661.080741][ T6066] loop2: p95 start 10 is beyond EOD, truncated [ 1661.086893][ T6066] loop2: p96 start 10 is beyond EOD, truncated [ 1661.093065][ T6066] loop2: p97 start 10 is beyond EOD, truncated [ 1661.099271][ T6066] loop2: p98 start 10 is beyond EOD, truncated [ 1661.105424][ T6066] loop2: p99 start 10 is beyond EOD, truncated [ 1661.111589][ T6066] loop2: p100 start 10 is beyond EOD, truncated [ 1661.117825][ T6066] loop2: p101 start 10 is beyond EOD, truncated [ 1661.124081][ T6066] loop2: p102 start 10 is beyond EOD, truncated [ 1661.130344][ T6066] loop2: p103 start 10 is beyond EOD, truncated [ 1661.136610][ T6066] loop2: p104 start 10 is beyond EOD, truncated [ 1661.143064][ T6066] loop2: p105 start 10 is beyond EOD, truncated [ 1661.149540][ T6066] loop2: p106 start 10 is beyond EOD, truncated [ 1661.155875][ T6066] loop2: p107 start 10 is beyond EOD, truncated [ 1661.162124][ T6066] loop2: p108 start 10 is beyond EOD, truncated [ 1661.168440][ T6066] loop2: p109 start 10 is beyond EOD, truncated [ 1661.174675][ T6066] loop2: p110 start 10 is beyond EOD, truncated [ 1661.180928][ T6066] loop2: p111 start 10 is beyond EOD, truncated [ 1661.187197][ T6066] loop2: p112 start 10 is beyond EOD, truncated [ 1661.193461][ T6066] loop2: p113 start 10 is beyond EOD, truncated [ 1661.199812][ T6066] loop2: p114 start 10 is beyond EOD, truncated [ 1661.206051][ T6066] loop2: p115 start 10 is beyond EOD, truncated [ 1661.212394][ T6066] loop2: p116 start 10 is beyond EOD, truncated [ 1661.218705][ T6066] loop2: p117 start 10 is beyond EOD, truncated [ 1661.224948][ T6066] loop2: p118 start 10 is beyond EOD, truncated [ 1661.231210][ T6066] loop2: p119 start 10 is beyond EOD, truncated [ 1661.237555][ T6066] loop2: p120 start 10 is beyond EOD, truncated [ 1661.243818][ T6066] loop2: p121 start 10 is beyond EOD, truncated [ 1661.250077][ T6066] loop2: p122 start 10 is beyond EOD, truncated [ 1661.256311][ T6066] loop2: p123 start 10 is beyond EOD, truncated [ 1661.262572][ T6066] loop2: p124 start 10 is beyond EOD, truncated [ 1661.268878][ T6066] loop2: p125 start 10 is beyond EOD, truncated [ 1661.275194][ T6066] loop2: p126 start 10 is beyond EOD, truncated [ 1661.281504][ T6066] loop2: p127 start 10 is beyond EOD, truncated [ 1661.287832][ T6066] loop2: p128 start 10 is beyond EOD, truncated [ 1661.294105][ T6066] loop2: p129 start 10 is beyond EOD, truncated [ 1661.300386][ T6066] loop2: p130 start 10 is beyond EOD, truncated [ 1661.306630][ T6066] loop2: p131 start 10 is beyond EOD, truncated [ 1661.312905][ T6066] loop2: p132 start 10 is beyond EOD, truncated [ 1661.319170][ T6066] loop2: p133 start 10 is beyond EOD, truncated [ 1661.325470][ T6066] loop2: p134 start 10 is beyond EOD, truncated [ 1661.331793][ T6066] loop2: p135 start 10 is beyond EOD, truncated [ 1661.338209][ T6066] loop2: p136 start 10 is beyond EOD, truncated [ 1661.344452][ T6066] loop2: p137 start 10 is beyond EOD, truncated [ 1661.350796][ T6066] loop2: p138 start 10 is beyond EOD, truncated [ 1661.357242][ T6066] loop2: p139 start 10 is beyond EOD, truncated [ 1661.363566][ T6066] loop2: p140 start 10 is beyond EOD, truncated [ 1661.369822][ T6066] loop2: p141 start 10 is beyond EOD, truncated [ 1661.376308][ T6066] loop2: p142 start 10 is beyond EOD, truncated [ 1661.382572][ T6066] loop2: p143 start 10 is beyond EOD, truncated [ 1661.388838][ T6066] loop2: p144 start 10 is beyond EOD, truncated [ 1661.395093][ T6066] loop2: p145 start 10 is beyond EOD, truncated [ 1661.401355][ T6066] loop2: p146 start 10 is beyond EOD, truncated [ 1661.407590][ T6066] loop2: p147 start 10 is beyond EOD, truncated [ 1661.413857][ T6066] loop2: p148 start 10 is beyond EOD, truncated [ 1661.420124][ T6066] loop2: p149 start 10 is beyond EOD, truncated [ 1661.426365][ T6066] loop2: p150 start 10 is beyond EOD, truncated [ 1661.432605][ T6066] loop2: p151 start 10 is beyond EOD, truncated [ 1661.438893][ T6066] loop2: p152 start 10 is beyond EOD, truncated [ 1661.445149][ T6066] loop2: p153 start 10 is beyond EOD, truncated [ 1661.451402][ T6066] loop2: p154 start 10 is beyond EOD, truncated [ 1661.457643][ T6066] loop2: p155 start 10 is beyond EOD, truncated [ 1661.463926][ T6066] loop2: p156 start 10 is beyond EOD, truncated [ 1661.470186][ T6066] loop2: p157 start 10 is beyond EOD, truncated [ 1661.476434][ T6066] loop2: p158 start 10 is beyond EOD, truncated [ 1661.482710][ T6066] loop2: p159 start 10 is beyond EOD, truncated [ 1661.488986][ T6066] loop2: p160 start 10 is beyond EOD, truncated [ 1661.495226][ T6066] loop2: p161 start 10 is beyond EOD, truncated [ 1661.501574][ T6066] loop2: p162 start 10 is beyond EOD, truncated [ 1661.507811][ T6066] loop2: p163 start 10 is beyond EOD, truncated [ 1661.514051][ T6066] loop2: p164 start 10 is beyond EOD, truncated [ 1661.520308][ T6066] loop2: p165 start 10 is beyond EOD, truncated [ 1661.526605][ T6066] loop2: p166 start 10 is beyond EOD, truncated [ 1661.532850][ T6066] loop2: p167 start 10 is beyond EOD, truncated [ 1661.539107][ T6066] loop2: p168 start 10 is beyond EOD, truncated [ 1661.545363][ T6066] loop2: p169 start 10 is beyond EOD, truncated [ 1661.551660][ T6066] loop2: p170 start 10 is beyond EOD, truncated [ 1661.557984][ T6066] loop2: p171 start 10 is beyond EOD, truncated [ 1661.564231][ T6066] loop2: p172 start 10 is beyond EOD, truncated [ 1661.570586][ T6066] loop2: p173 start 10 is beyond EOD, truncated [ 1661.576823][ T6066] loop2: p174 start 10 is beyond EOD, truncated [ 1661.583063][ T6066] loop2: p175 start 10 is beyond EOD, truncated [ 1661.589351][ T6066] loop2: p176 start 10 is beyond EOD, truncated [ 1661.595739][ T6066] loop2: p177 start 10 is beyond EOD, truncated [ 1661.602272][ T6066] loop2: p178 start 10 is beyond EOD, truncated [ 1661.608575][ T6066] loop2: p179 start 10 is beyond EOD, truncated [ 1661.614830][ T6066] loop2: p180 start 10 is beyond EOD, truncated [ 1661.621079][ T6066] loop2: p181 start 10 is beyond EOD, truncated [ 1661.627359][ T6066] loop2: p182 start 10 is beyond EOD, truncated [ 1661.633619][ T6066] loop2: p183 start 10 is beyond EOD, truncated [ 1661.639976][ T6066] loop2: p184 start 10 is beyond EOD, truncated [ 1661.646217][ T6066] loop2: p185 start 10 is beyond EOD, truncated [ 1661.652471][ T6066] loop2: p186 start 10 is beyond EOD, truncated [ 1661.658744][ T6066] loop2: p187 start 10 is beyond EOD, truncated [ 1661.665003][ T6066] loop2: p188 start 10 is beyond EOD, truncated [ 1661.671244][ T6066] loop2: p189 start 10 is beyond EOD, truncated [ 1661.677827][ T6066] loop2: p190 start 10 is beyond EOD, truncated [ 1661.684102][ T6066] loop2: p191 start 10 is beyond EOD, truncated [ 1661.690480][ T6066] loop2: p192 start 10 is beyond EOD, truncated [ 1661.696783][ T6066] loop2: p193 start 10 is beyond EOD, truncated [ 1661.703075][ T6066] loop2: p194 start 10 is beyond EOD, truncated [ 1661.709368][ T6066] loop2: p195 start 10 is beyond EOD, truncated [ 1661.715604][ T6066] loop2: p196 start 10 is beyond EOD, truncated [ 1661.722005][ T6066] loop2: p197 start 10 is beyond EOD, truncated [ 1661.728336][ T6066] loop2: p198 start 10 is beyond EOD, truncated [ 1661.734559][ T6066] loop2: p199 start 10 is beyond EOD, truncated [ 1661.740803][ T6066] loop2: p200 start 10 is beyond EOD, truncated [ 1661.747054][ T6066] loop2: p201 start 10 is beyond EOD, truncated [ 1661.753307][ T6066] loop2: p202 start 10 is beyond EOD, truncated [ 1661.759619][ T6066] loop2: p203 start 10 is beyond EOD, truncated [ 1661.765895][ T6066] loop2: p204 start 10 is beyond EOD, truncated [ 1661.772189][ T6066] loop2: p205 start 10 is beyond EOD, truncated [ 1661.778460][ T6066] loop2: p206 start 10 is beyond EOD, truncated [ 1661.784694][ T6066] loop2: p207 start 10 is beyond EOD, truncated [ 1661.790956][ T6066] loop2: p208 start 10 is beyond EOD, truncated [ 1661.797221][ T6066] loop2: p209 start 10 is beyond EOD, truncated [ 1661.803534][ T6066] loop2: p210 start 10 is beyond EOD, truncated [ 1661.809822][ T6066] loop2: p211 start 10 is beyond EOD, truncated [ 1661.816057][ T6066] loop2: p212 start 10 is beyond EOD, truncated [ 1661.822376][ T6066] loop2: p213 start 10 is beyond EOD, truncated [ 1661.828636][ T6066] loop2: p214 start 10 is beyond EOD, truncated [ 1661.834890][ T6066] loop2: p215 start 10 is beyond EOD, truncated [ 1661.841125][ T6066] loop2: p216 start 10 is beyond EOD, truncated [ 1661.847523][ T6066] loop2: p217 start 10 is beyond EOD, truncated [ 1661.853807][ T6066] loop2: p218 start 10 is beyond EOD, truncated [ 1661.860221][ T6066] loop2: p219 start 10 is beyond EOD, truncated [ 1661.866526][ T6066] loop2: p220 start 10 is beyond EOD, truncated [ 1661.872786][ T6066] loop2: p221 start 10 is beyond EOD, truncated [ 1661.879071][ T6066] loop2: p222 start 10 is beyond EOD, truncated [ 1661.885343][ T6066] loop2: p223 start 10 is beyond EOD, truncated [ 1661.891725][ T6066] loop2: p224 start 10 is beyond EOD, truncated [ 1661.898238][ T6066] loop2: p225 start 10 is beyond EOD, truncated [ 1661.904501][ T6066] loop2: p226 start 10 is beyond EOD, truncated [ 1661.910758][ T6066] loop2: p227 start 10 is beyond EOD, truncated [ 1661.916995][ T6066] loop2: p228 start 10 is beyond EOD, truncated [ 1661.923359][ T6066] loop2: p229 start 10 is beyond EOD, truncated [ 1661.929623][ T6066] loop2: p230 start 10 is beyond EOD, truncated [ 1661.935873][ T6066] loop2: p231 start 10 is beyond EOD, truncated [ 1661.942130][ T6066] loop2: p232 start 10 is beyond EOD, truncated [ 1661.948388][ T6066] loop2: p233 start 10 is beyond EOD, truncated [ 1661.954632][ T6066] loop2: p234 start 10 is beyond EOD, truncated [ 1661.960942][ T6066] loop2: p235 start 10 is beyond EOD, truncated [ 1661.967177][ T6066] loop2: p236 start 10 is beyond EOD, truncated [ 1661.973449][ T6066] loop2: p237 start 10 is beyond EOD, truncated [ 1661.979775][ T6066] loop2: p238 start 10 is beyond EOD, truncated [ 1661.986045][ T6066] loop2: p239 start 10 is beyond EOD, truncated [ 1661.992289][ T6066] loop2: p240 start 10 is beyond EOD, truncated [ 1661.998548][ T6066] loop2: p241 start 10 is beyond EOD, truncated [ 1662.004788][ T6066] loop2: p242 start 10 is beyond EOD, truncated [ 1662.011034][ T6066] loop2: p243 start 10 is beyond EOD, truncated [ 1662.017274][ T6066] loop2: p244 start 10 is beyond EOD, truncated [ 1662.023546][ T6066] loop2: p245 start 10 is beyond EOD, truncated [ 1662.029821][ T6066] loop2: p246 start 10 is beyond EOD, truncated [ 1662.036143][ T6066] loop2: p247 start 10 is beyond EOD, truncated [ 1662.042404][ T6066] loop2: p248 start 10 is beyond EOD, truncated [ 1662.048683][ T6066] loop2: p249 start 10 is beyond EOD, truncated [ 1662.054941][ T6066] loop2: p250 start 10 is beyond EOD, truncated [ 1662.061186][ T6066] loop2: p251 start 10 is beyond EOD, truncated [ 1662.067443][ T6066] loop2: p252 start 10 is beyond EOD, truncated [ 1662.073684][ T6066] loop2: p253 start 10 is beyond EOD, truncated [ 1662.079948][ T6066] loop2: p254 start 10 is beyond EOD, truncated [ 1662.086181][ T6066] loop2: p255 start 10 is beyond EOD, truncated [ 1662.098933][ T6091] loop3: p1 p2 p3 p4 [ 1662.108534][ T6091] loop3: p1 start 10 is beyond EOD, truncated [ 1662.114694][ T6091] loop3: p2 size 1074200576 extends beyond EOD, truncated 19:17:44 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x18010}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)={0x190, 0x0, 0x1, 0x201, 0x0, 0x0, {0x2}, [@CTA_SEQ_ADJ_REPLY={0x3c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x4}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x3ff}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x81}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x95}]}, @CTA_STATUS={0x8}, @CTA_LABELS_MASK={0x28, 0x17, [0x7, 0x3, 0x5, 0x7, 0x4, 0x1, 0x7fff, 0x80000000, 0x7]}, @CTA_TUPLE_REPLY={0x5c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0xa6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}, @CTA_PROTOINFO={0x3c, 0x4, 0x0, 0x1, @CTA_PROTOINFO_DCCP={0x38, 0x2, 0x0, 0x1, [@CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x1}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x20}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x2}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x40}, @CTA_PROTOINFO_DCCP_HANDSHAKE_SEQ={0xc}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x2}]}}, @CTA_TUPLE_REPLY={0x60, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010102}, {0x8, 0x2, @broadcast}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010102}, {0x8, 0x2, @private=0xa010102}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0xbd}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x18, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x190}, 0x1, 0x0, 0x0, 0x40}, 0x1) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x74, 0x0, 0x1, 0x409, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x10, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}]}]}]}, 0x74}}, 0x0) 19:17:44 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x204, 0x0, 0x0) 19:17:44 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000c000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:44 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac04800000000f800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:44 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f0000000080)) [ 1662.123238][ T6091] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1662.130042][ T6091] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:44 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000084000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1662.173328][ T6137] loop4: detected capacity change from 0 to 1 [ 1662.189949][ T1037] loop3: p1 p2 p3 p4 [ 1662.195844][ T6142] loop1: detected capacity change from 0 to 512 [ 1662.196648][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1662.208247][ T1037] loop3: p2 size 1074200576 extends beyond EOD, truncated 19:17:45 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) sendmmsg$sock(r0, &(0x7f0000000040), 0x0, 0x14) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000003c0)='proc\x00', 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x0, 0x0) getdents64(r1, &(0x7f0000000100)=""/241, 0xffd1) [ 1662.222348][ T6142] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1662.230759][ T6142] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1662.237638][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1662.244470][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1662.251906][ T6137] loop4: p1 p2 p4 [ 1662.262364][ T6137] loop4: p1 start 10 is beyond EOD, truncated 19:17:45 executing program 5: open(&(0x7f0000000100)='./bus\x00', 0x1c30c2, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1662.268599][ T6137] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1662.278125][ T6142] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1662.287361][ T6165] loop2: detected capacity change from 0 to 1 [ 1662.288505][ T6142] ext4_test_bit(bit=16, block=18) = 0 [ 1662.288536][ T6142] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1662.314472][ T6137] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1662.355465][ T6165] loop2: p1 p2 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p2 [ 1662.355720][ T6165] loop2: p1 start 10 is beyond EOD, truncated [ 1662.448845][ T6165] loop2: p2 size 2 extends beyond EOD, truncated 19:17:45 executing program 5: unshare(0x100) unshare(0x62010400) socket$nl_netfilter(0x10, 0x3, 0xc) unshare(0x8020480) mq_open(&(0x7f0000000000)='m\xb2\xf2\xd6_>KG\xd6\xfa\x96\x84\x05\x00\x00?K\x9f\f\x0eZ\x92\x15\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00p\x1f\xbd\xa1\x92\x0eJ\x9e\xeb\x1f\x82\x1e\xd9\njx\x88\xf4F\xdaq\xab\xb4\xf0r\x9a\xbaN\x94r \x12A\xa3Z\xfea:;\xbc\x93Fc\x9c5mv\xd2d\x98\x84\xb3+\x82\xf8w\xa5z\x95\x88\x91Y\xf5\x15V\xe7\xa6\x82@A\xb1\xde\x02\x02\xbe\xaa\x96[\xfc\x1f5\x82\x88C)\xaaj\xf0\xa2\xf5\x95\x8e\xd4\xff4\xb7\xd6\xe2\x00\x00\x00\x00\xf4\xff', 0x2, 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000540)={0x0}) unshare(0x5c020280) unshare(0x400) ppoll(&(0x7f0000000000), 0x0, &(0x7f0000000580)={r0}, 0x0, 0x0) 19:17:45 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f009d02000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1662.456343][ T6165] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1662.463204][ T6165] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1662.490004][ T6137] loop4: detected capacity change from 0 to 1 [ 1662.496487][ T6165] loop2: p5 start 10 is beyond EOD, truncated [ 1662.502738][ T6165] loop2: p6 start 10 is beyond EOD, truncated [ 1662.506433][ T6194] loop3: detected capacity change from 0 to 1 [ 1662.508827][ T6165] loop2: p7 start 10 is beyond EOD, truncated [ 1662.508846][ T6165] loop2: p8 start 10 is beyond EOD, truncated [ 1662.508862][ T6165] loop2: p9 start 10 is beyond EOD, truncated [ 1662.533273][ T6165] loop2: p10 start 10 is beyond EOD, truncated [ 1662.539448][ T6165] loop2: p11 start 10 is beyond EOD, truncated [ 1662.545728][ T6165] loop2: p12 start 10 is beyond EOD, truncated [ 1662.551938][ T6165] loop2: p13 start 10 is beyond EOD, truncated [ 1662.558129][ T6165] loop2: p14 start 10 is beyond EOD, truncated [ 1662.564281][ T6165] loop2: p15 start 10 is beyond EOD, truncated [ 1662.570437][ T6165] loop2: p16 start 10 is beyond EOD, truncated [ 1662.576648][ T6165] loop2: p17 start 10 is beyond EOD, truncated [ 1662.582893][ T6165] loop2: p18 start 10 is beyond EOD, truncated [ 1662.589070][ T6165] loop2: p19 start 10 is beyond EOD, truncated [ 1662.595221][ T6165] loop2: p20 start 10 is beyond EOD, truncated [ 1662.601390][ T6165] loop2: p21 start 10 is beyond EOD, truncated [ 1662.607544][ T6165] loop2: p22 start 10 is beyond EOD, truncated [ 1662.613772][ T6165] loop2: p23 start 10 is beyond EOD, truncated [ 1662.619960][ T6165] loop2: p24 start 10 is beyond EOD, truncated [ 1662.626114][ T6165] loop2: p25 start 10 is beyond EOD, truncated [ 1662.632320][ T6165] loop2: p26 start 10 is beyond EOD, truncated [ 1662.638500][ T6165] loop2: p27 start 10 is beyond EOD, truncated [ 1662.644654][ T6165] loop2: p28 start 10 is beyond EOD, truncated [ 1662.650816][ T6165] loop2: p29 start 10 is beyond EOD, truncated [ 1662.656996][ T6165] loop2: p30 start 10 is beyond EOD, truncated [ 1662.663189][ T6165] loop2: p31 start 10 is beyond EOD, truncated [ 1662.669410][ T6165] loop2: p32 start 10 is beyond EOD, truncated [ 1662.675569][ T6165] loop2: p33 start 10 is beyond EOD, truncated [ 1662.681769][ T6165] loop2: p34 start 10 is beyond EOD, truncated [ 1662.687916][ T6165] loop2: p35 start 10 is beyond EOD, truncated [ 1662.694179][ T6165] loop2: p36 start 10 is beyond EOD, truncated [ 1662.700380][ T6165] loop2: p37 start 10 is beyond EOD, truncated [ 1662.706552][ T6165] loop2: p38 start 10 is beyond EOD, truncated [ 1662.712733][ T6165] loop2: p39 start 10 is beyond EOD, truncated [ 1662.718920][ T6165] loop2: p40 start 10 is beyond EOD, truncated [ 1662.725062][ T6165] loop2: p41 start 10 is beyond EOD, truncated [ 1662.731214][ T6165] loop2: p42 start 10 is beyond EOD, truncated [ 1662.737389][ T6165] loop2: p43 start 10 is beyond EOD, truncated [ 1662.743563][ T6165] loop2: p44 start 10 is beyond EOD, truncated [ 1662.749734][ T6165] loop2: p45 start 10 is beyond EOD, truncated [ 1662.755878][ T6165] loop2: p46 start 10 is beyond EOD, truncated [ 1662.762032][ T6165] loop2: p47 start 10 is beyond EOD, truncated [ 1662.768255][ T6165] loop2: p48 start 10 is beyond EOD, truncated [ 1662.774703][ T6165] loop2: p49 start 10 is beyond EOD, truncated [ 1662.780911][ T6165] loop2: p50 start 10 is beyond EOD, truncated [ 1662.787063][ T6165] loop2: p51 start 10 is beyond EOD, truncated [ 1662.793246][ T6165] loop2: p52 start 10 is beyond EOD, truncated [ 1662.799493][ T6165] loop2: p53 start 10 is beyond EOD, truncated [ 1662.805772][ T6165] loop2: p54 start 10 is beyond EOD, truncated [ 1662.811947][ T6165] loop2: p55 start 10 is beyond EOD, truncated [ 1662.818137][ T6165] loop2: p56 start 10 is beyond EOD, truncated [ 1662.824332][ T6165] loop2: p57 start 10 is beyond EOD, truncated [ 1662.830487][ T6165] loop2: p58 start 10 is beyond EOD, truncated [ 1662.836688][ T6165] loop2: p59 start 10 is beyond EOD, truncated [ 1662.842856][ T6165] loop2: p60 start 10 is beyond EOD, truncated [ 1662.849030][ T6165] loop2: p61 start 10 is beyond EOD, truncated [ 1662.855182][ T6165] loop2: p62 start 10 is beyond EOD, truncated [ 1662.861361][ T6165] loop2: p63 start 10 is beyond EOD, truncated [ 1662.867513][ T6165] loop2: p64 start 10 is beyond EOD, truncated [ 1662.873754][ T6165] loop2: p65 start 10 is beyond EOD, truncated [ 1662.879930][ T6165] loop2: p66 start 10 is beyond EOD, truncated [ 1662.886094][ T6165] loop2: p67 start 10 is beyond EOD, truncated [ 1662.892249][ T6165] loop2: p68 start 10 is beyond EOD, truncated [ 1662.898492][ T6165] loop2: p69 start 10 is beyond EOD, truncated [ 1662.904645][ T6165] loop2: p70 start 10 is beyond EOD, truncated [ 1662.910821][ T6165] loop2: p71 start 10 is beyond EOD, truncated [ 1662.916968][ T6165] loop2: p72 start 10 is beyond EOD, truncated [ 1662.923122][ T6165] loop2: p73 start 10 is beyond EOD, truncated [ 1662.929292][ T6165] loop2: p74 start 10 is beyond EOD, truncated [ 1662.935454][ T6165] loop2: p75 start 10 is beyond EOD, truncated [ 1662.941667][ T6165] loop2: p76 start 10 is beyond EOD, truncated [ 1662.947855][ T6165] loop2: p77 start 10 is beyond EOD, truncated [ 1662.954008][ T6165] loop2: p78 start 10 is beyond EOD, truncated [ 1662.960246][ T6165] loop2: p79 start 10 is beyond EOD, truncated [ 1662.966528][ T6165] loop2: p80 start 10 is beyond EOD, truncated [ 1662.972871][ T6165] loop2: p81 start 10 is beyond EOD, truncated [ 1662.979044][ T6165] loop2: p82 start 10 is beyond EOD, truncated [ 1662.985234][ T6165] loop2: p83 start 10 is beyond EOD, truncated [ 1662.991423][ T6165] loop2: p84 start 10 is beyond EOD, truncated [ 1662.997572][ T6165] loop2: p85 start 10 is beyond EOD, truncated [ 1663.004036][ T6165] loop2: p86 start 10 is beyond EOD, truncated [ 1663.010231][ T6165] loop2: p87 start 10 is beyond EOD, truncated [ 1663.016387][ T6165] loop2: p88 start 10 is beyond EOD, truncated [ 1663.022548][ T6165] loop2: p89 start 10 is beyond EOD, truncated [ 1663.028739][ T6165] loop2: p90 start 10 is beyond EOD, truncated [ 1663.034895][ T6165] loop2: p91 start 10 is beyond EOD, truncated [ 1663.041065][ T6165] loop2: p92 start 10 is beyond EOD, truncated [ 1663.047232][ T6165] loop2: p93 start 10 is beyond EOD, truncated [ 1663.053500][ T6165] loop2: p94 start 10 is beyond EOD, truncated [ 1663.059675][ T6165] loop2: p95 start 10 is beyond EOD, truncated [ 1663.065822][ T6165] loop2: p96 start 10 is beyond EOD, truncated [ 1663.071975][ T6165] loop2: p97 start 10 is beyond EOD, truncated [ 1663.078190][ T6165] loop2: p98 start 10 is beyond EOD, truncated [ 1663.084474][ T6165] loop2: p99 start 10 is beyond EOD, truncated [ 1663.090646][ T6165] loop2: p100 start 10 is beyond EOD, truncated [ 1663.096884][ T6165] loop2: p101 start 10 is beyond EOD, truncated [ 1663.103254][ T6165] loop2: p102 start 10 is beyond EOD, truncated [ 1663.109530][ T6165] loop2: p103 start 10 is beyond EOD, truncated [ 1663.115809][ T6165] loop2: p104 start 10 is beyond EOD, truncated [ 1663.122068][ T6165] loop2: p105 start 10 is beyond EOD, truncated [ 1663.128326][ T6165] loop2: p106 start 10 is beyond EOD, truncated [ 1663.134636][ T6165] loop2: p107 start 10 is beyond EOD, truncated [ 1663.140931][ T6165] loop2: p108 start 10 is beyond EOD, truncated [ 1663.147244][ T6165] loop2: p109 start 10 is beyond EOD, truncated [ 1663.153506][ T6165] loop2: p110 start 10 is beyond EOD, truncated [ 1663.159772][ T6165] loop2: p111 start 10 is beyond EOD, truncated [ 1663.166013][ T6165] loop2: p112 start 10 is beyond EOD, truncated [ 1663.172269][ T6165] loop2: p113 start 10 is beyond EOD, truncated [ 1663.178596][ T6165] loop2: p114 start 10 is beyond EOD, truncated [ 1663.184839][ T6165] loop2: p115 start 10 is beyond EOD, truncated [ 1663.191186][ T6165] loop2: p116 start 10 is beyond EOD, truncated [ 1663.197461][ T6165] loop2: p117 start 10 is beyond EOD, truncated [ 1663.203741][ T6165] loop2: p118 start 10 is beyond EOD, truncated [ 1663.210003][ T6165] loop2: p119 start 10 is beyond EOD, truncated [ 1663.216316][ T6165] loop2: p120 start 10 is beyond EOD, truncated [ 1663.222611][ T6165] loop2: p121 start 10 is beyond EOD, truncated [ 1663.228958][ T6165] loop2: p122 start 10 is beyond EOD, truncated [ 1663.235261][ T6165] loop2: p123 start 10 is beyond EOD, truncated [ 1663.241510][ T6165] loop2: p124 start 10 is beyond EOD, truncated [ 1663.247767][ T6165] loop2: p125 start 10 is beyond EOD, truncated [ 1663.254047][ T6165] loop2: p126 start 10 is beyond EOD, truncated [ 1663.260314][ T6165] loop2: p127 start 10 is beyond EOD, truncated [ 1663.266555][ T6165] loop2: p128 start 10 is beyond EOD, truncated [ 1663.272801][ T6165] loop2: p129 start 10 is beyond EOD, truncated [ 1663.279139][ T6165] loop2: p130 start 10 is beyond EOD, truncated [ 1663.285412][ T6165] loop2: p131 start 10 is beyond EOD, truncated [ 1663.291661][ T6165] loop2: p132 start 10 is beyond EOD, truncated [ 1663.297938][ T6165] loop2: p133 start 10 is beyond EOD, truncated [ 1663.304273][ T6165] loop2: p134 start 10 is beyond EOD, truncated [ 1663.310537][ T6165] loop2: p135 start 10 is beyond EOD, truncated [ 1663.316776][ T6165] loop2: p136 start 10 is beyond EOD, truncated [ 1663.323259][ T6165] loop2: p137 start 10 is beyond EOD, truncated [ 1663.329560][ T6165] loop2: p138 start 10 is beyond EOD, truncated [ 1663.335831][ T6165] loop2: p139 start 10 is beyond EOD, truncated [ 1663.342098][ T6165] loop2: p140 start 10 is beyond EOD, truncated [ 1663.348373][ T6165] loop2: p141 start 10 is beyond EOD, truncated [ 1663.354615][ T6165] loop2: p142 start 10 is beyond EOD, truncated [ 1663.360867][ T6165] loop2: p143 start 10 is beyond EOD, truncated [ 1663.367110][ T6165] loop2: p144 start 10 is beyond EOD, truncated [ 1663.373365][ T6165] loop2: p145 start 10 is beyond EOD, truncated [ 1663.379630][ T6165] loop2: p146 start 10 is beyond EOD, truncated [ 1663.385869][ T6165] loop2: p147 start 10 is beyond EOD, truncated [ 1663.392235][ T6165] loop2: p148 start 10 is beyond EOD, truncated [ 1663.398495][ T6165] loop2: p149 start 10 is beyond EOD, truncated [ 1663.404867][ T6165] loop2: p150 start 10 is beyond EOD, truncated [ 1663.411170][ T6165] loop2: p151 start 10 is beyond EOD, truncated [ 1663.417479][ T6165] loop2: p152 start 10 is beyond EOD, truncated [ 1663.423733][ T6165] loop2: p153 start 10 is beyond EOD, truncated [ 1663.430039][ T6165] loop2: p154 start 10 is beyond EOD, truncated [ 1663.436284][ T6165] loop2: p155 start 10 is beyond EOD, truncated [ 1663.442582][ T6165] loop2: p156 start 10 is beyond EOD, truncated [ 1663.448870][ T6165] loop2: p157 start 10 is beyond EOD, truncated [ 1663.455113][ T6165] loop2: p158 start 10 is beyond EOD, truncated [ 1663.461373][ T6165] loop2: p159 start 10 is beyond EOD, truncated [ 1663.467610][ T6165] loop2: p160 start 10 is beyond EOD, truncated [ 1663.473860][ T6165] loop2: p161 start 10 is beyond EOD, truncated [ 1663.480121][ T6165] loop2: p162 start 10 is beyond EOD, truncated [ 1663.486419][ T6165] loop2: p163 start 10 is beyond EOD, truncated [ 1663.492694][ T6165] loop2: p164 start 10 is beyond EOD, truncated [ 1663.499016][ T6165] loop2: p165 start 10 is beyond EOD, truncated [ 1663.505261][ T6165] loop2: p166 start 10 is beyond EOD, truncated [ 1663.511656][ T6165] loop2: p167 start 10 is beyond EOD, truncated [ 1663.518028][ T6165] loop2: p168 start 10 is beyond EOD, truncated [ 1663.524318][ T6165] loop2: p169 start 10 is beyond EOD, truncated [ 1663.530590][ T6165] loop2: p170 start 10 is beyond EOD, truncated [ 1663.536876][ T6165] loop2: p171 start 10 is beyond EOD, truncated [ 1663.543132][ T6165] loop2: p172 start 10 is beyond EOD, truncated [ 1663.549486][ T6165] loop2: p173 start 10 is beyond EOD, truncated [ 1663.555772][ T6165] loop2: p174 start 10 is beyond EOD, truncated [ 1663.562312][ T6165] loop2: p175 start 10 is beyond EOD, truncated [ 1663.568640][ T6165] loop2: p176 start 10 is beyond EOD, truncated [ 1663.574918][ T6165] loop2: p177 start 10 is beyond EOD, truncated [ 1663.581207][ T6165] loop2: p178 start 10 is beyond EOD, truncated [ 1663.587524][ T6165] loop2: p179 start 10 is beyond EOD, truncated [ 1663.593795][ T6165] loop2: p180 start 10 is beyond EOD, truncated [ 1663.600070][ T6165] loop2: p181 start 10 is beyond EOD, truncated [ 1663.606303][ T6165] loop2: p182 start 10 is beyond EOD, truncated [ 1663.612569][ T6165] loop2: p183 start 10 is beyond EOD, truncated [ 1663.618840][ T6165] loop2: p184 start 10 is beyond EOD, truncated [ 1663.625078][ T6165] loop2: p185 start 10 is beyond EOD, truncated [ 1663.631324][ T6165] loop2: p186 start 10 is beyond EOD, truncated [ 1663.637564][ T6165] loop2: p187 start 10 is beyond EOD, truncated [ 1663.643808][ T6165] loop2: p188 start 10 is beyond EOD, truncated [ 1663.650068][ T6165] loop2: p189 start 10 is beyond EOD, truncated [ 1663.656366][ T6165] loop2: p190 start 10 is beyond EOD, truncated [ 1663.662818][ T6165] loop2: p191 start 10 is beyond EOD, truncated [ 1663.669149][ T6165] loop2: p192 start 10 is beyond EOD, truncated [ 1663.675382][ T6165] loop2: p193 start 10 is beyond EOD, truncated [ 1663.681625][ T6165] loop2: p194 start 10 is beyond EOD, truncated [ 1663.687918][ T6165] loop2: p195 start 10 is beyond EOD, truncated [ 1663.694220][ T6165] loop2: p196 start 10 is beyond EOD, truncated [ 1663.700475][ T6165] loop2: p197 start 10 is beyond EOD, truncated [ 1663.706720][ T6165] loop2: p198 start 10 is beyond EOD, truncated [ 1663.712974][ T6165] loop2: p199 start 10 is beyond EOD, truncated [ 1663.719251][ T6165] loop2: p200 start 10 is beyond EOD, truncated [ 1663.725489][ T6165] loop2: p201 start 10 is beyond EOD, truncated [ 1663.731750][ T6165] loop2: p202 start 10 is beyond EOD, truncated [ 1663.738009][ T6165] loop2: p203 start 10 is beyond EOD, truncated [ 1663.744337][ T6165] loop2: p204 start 10 is beyond EOD, truncated [ 1663.750720][ T6165] loop2: p205 start 10 is beyond EOD, truncated [ 1663.756959][ T6165] loop2: p206 start 10 is beyond EOD, truncated [ 1663.763303][ T6165] loop2: p207 start 10 is beyond EOD, truncated [ 1663.769609][ T6165] loop2: p208 start 10 is beyond EOD, truncated [ 1663.775864][ T6165] loop2: p209 start 10 is beyond EOD, truncated [ 1663.782106][ T6165] loop2: p210 start 10 is beyond EOD, truncated [ 1663.788387][ T6165] loop2: p211 start 10 is beyond EOD, truncated [ 1663.794739][ T6165] loop2: p212 start 10 is beyond EOD, truncated [ 1663.800983][ T6165] loop2: p213 start 10 is beyond EOD, truncated [ 1663.807291][ T6165] loop2: p214 start 10 is beyond EOD, truncated [ 1663.813532][ T6165] loop2: p215 start 10 is beyond EOD, truncated [ 1663.819790][ T6165] loop2: p216 start 10 is beyond EOD, truncated [ 1663.826024][ T6165] loop2: p217 start 10 is beyond EOD, truncated [ 1663.832279][ T6165] loop2: p218 start 10 is beyond EOD, truncated [ 1663.838535][ T6165] loop2: p219 start 10 is beyond EOD, truncated [ 1663.844769][ T6165] loop2: p220 start 10 is beyond EOD, truncated [ 1663.851154][ T6165] loop2: p221 start 10 is beyond EOD, truncated [ 1663.857417][ T6165] loop2: p222 start 10 is beyond EOD, truncated [ 1663.863681][ T6165] loop2: p223 start 10 is beyond EOD, truncated [ 1663.869941][ T6165] loop2: p224 start 10 is beyond EOD, truncated [ 1663.876171][ T6165] loop2: p225 start 10 is beyond EOD, truncated [ 1663.882443][ T6165] loop2: p226 start 10 is beyond EOD, truncated [ 1663.888745][ T6165] loop2: p227 start 10 is beyond EOD, truncated [ 1663.894977][ T6165] loop2: p228 start 10 is beyond EOD, truncated [ 1663.901291][ T6165] loop2: p229 start 10 is beyond EOD, truncated [ 1663.907539][ T6165] loop2: p230 start 10 is beyond EOD, truncated [ 1663.913870][ T6165] loop2: p231 start 10 is beyond EOD, truncated [ 1663.920144][ T6165] loop2: p232 start 10 is beyond EOD, truncated [ 1663.926408][ T6165] loop2: p233 start 10 is beyond EOD, truncated [ 1663.932727][ T6165] loop2: p234 start 10 is beyond EOD, truncated [ 1663.938988][ T6165] loop2: p235 start 10 is beyond EOD, truncated [ 1663.945318][ T6165] loop2: p236 start 10 is beyond EOD, truncated [ 1663.951567][ T6165] loop2: p237 start 10 is beyond EOD, truncated [ 1663.957808][ T6165] loop2: p238 start 10 is beyond EOD, truncated [ 1663.964073][ T6165] loop2: p239 start 10 is beyond EOD, truncated [ 1663.970331][ T6165] loop2: p240 start 10 is beyond EOD, truncated [ 1663.976642][ T6165] loop2: p241 start 10 is beyond EOD, truncated [ 1663.982923][ T6165] loop2: p242 start 10 is beyond EOD, truncated [ 1663.989187][ T6165] loop2: p243 start 10 is beyond EOD, truncated [ 1663.995423][ T6165] loop2: p244 start 10 is beyond EOD, truncated [ 1664.001666][ T6165] loop2: p245 start 10 is beyond EOD, truncated [ 1664.008022][ T6165] loop2: p246 start 10 is beyond EOD, truncated [ 1664.014262][ T6165] loop2: p247 start 10 is beyond EOD, truncated [ 1664.020507][ T6165] loop2: p248 start 10 is beyond EOD, truncated [ 1664.026771][ T6165] loop2: p249 start 10 is beyond EOD, truncated [ 1664.033034][ T6165] loop2: p250 start 10 is beyond EOD, truncated [ 1664.039345][ T6165] loop2: p251 start 10 is beyond EOD, truncated [ 1664.045580][ T6165] loop2: p252 start 10 is beyond EOD, truncated [ 1664.051862][ T6165] loop2: p253 start 10 is beyond EOD, truncated 19:17:46 executing program 5: setresuid(0xee01, 0x0, 0x0) keyctl$set_reqkey_keyring(0x12, 0x1) lsetxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)=@v1={0x1000000, [{0x9, 0xe01}]}, 0xc, 0x0) 19:17:46 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac048000000054800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1664.058142][ T6165] loop2: p254 start 10 is beyond EOD, truncated [ 1664.064378][ T6165] loop2: p255 start 10 is beyond EOD, truncated [ 1664.098612][ T6137] loop4: p1 p2 p4 [ 1664.102444][ T6194] loop3: p1 p2 p3 p4 19:17:46 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x3cf, 0x0, 0x0) 19:17:46 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000480)=[{&(0x7f0000000080)=""/99, 0x63}, {&(0x7f0000000100)=""/91, 0x5b}, {&(0x7f0000000180)=""/182, 0xb6}, {&(0x7f0000000240)=""/74, 0x4a}, {&(0x7f00000002c0)=""/135, 0x87}, {&(0x7f0000000380)=""/222, 0xde}], 0x6, 0xfffffffa, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000580)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="636f6e746578743d73797374656d5f75223acdf07dfaf3b7d335aadafe4ce4dfc2d4b8b51a9b300699498c13c304f7865cef7c6110b29b337f77a8ba0232fdc74ba925bca73a"]) [ 1664.117934][ T6137] loop4: p1 start 10 is beyond EOD, truncated [ 1664.118076][ T6194] loop3: p1 start 10 is beyond EOD, truncated [ 1664.124053][ T6137] loop4: p2 size 1073872896 extends beyond EOD, truncated [ 1664.130150][ T6194] loop3: p2 size 1074266112 extends beyond EOD, truncated [ 1664.146654][ T6215] loop1: detected capacity change from 0 to 512 [ 1664.148529][ T6137] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1664.174629][ T6215] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1664.181447][ T6226] loop2: detected capacity change from 0 to 1 [ 1664.184062][ T6215] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1664.195158][ T6194] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1664.199063][ T6230] SELinux: security_context_str_to_sid(system_u:Íð}úó·Ó5ªÚþLäßÂÔ¸µ›0™IŒÃ÷†\ï|a²›3w¨º2ýÇK©%¼§:) failed for (dev tmpfs, type tmpfs) errno=-22 [ 1664.201954][ T6194] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1664.225241][ T6215] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1664.235642][ T6215] ext4_test_bit(bit=16, block=18) = 0 [ 1664.241114][ T6215] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1664.252779][ T6226] loop2: p1 p2[DM] p3 p4 [ 1664.257704][ T6226] loop2: p1 start 10 is beyond EOD, truncated [ 1664.263818][ T6226] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:47 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f00000000c0)=[{0x30, 0x0, 0x0, 0xfffff00c}, {0x6}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f0000000240)={0x5, &(0x7f0000000200)=[{0x5, 0x81, 0x7f, 0x2}, {0x1, 0x7f, 0x6, 0x800001}, {0x2, 0x20, 0x3f, 0xa2e}, {0x3, 0x20, 0xfa, 0x1}, {0x8, 0xf9, 0x0, 0x1}]}, 0x10) r3 = openat2(r2, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x400400, 0x100}, 0x18) fcntl$F_SET_FILE_RW_HINT(r3, 0x40e, &(0x7f00000001c0)=0x1) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r4, 0x29, 0x1, &(0x7f0000000100)=0x7, 0x4) bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) sendto$inet6(r4, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback, 0x80}, 0x1c) sendto$inet6(r1, &(0x7f0000000300)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090000006e75436914ab717528ee4b7a9beaf908d11137c11903064e3a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf5775dc17edc50bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00000000000000000000000000005f50ff075a3a86b97532333c3542f1c2daad015dbcc780b219a081e6e47f4b71b8e942ce15fce23c2f0666565a46d8800c46150e0f7a6ebbba0ed5dbf8b25704319dc5965f045db8edc34182cd29664845bb04c1f7726ea34bdc843ed6711f62f23f35ccab580829fc9ddf390f90767867384cb0c357e9da62537b68ae5e559095b596fdccf61a445eb6081122ecc34e0b2886dada9fc21c5f0257e18621b92a0a54c580ca4397ec85e2ff1a1cdb3b63e24bbe9f33c5e337c34baee10674769b3671c8605df36a8411f691443025372f34396351f8d53bff1c1510df8a7e4043", 0x1b6, 0x4000001, 0x0, 0x0) getsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000040), &(0x7f0000000080)=0x4) 19:17:47 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000001000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1664.277919][ T1037] loop3: p1 p2 p3 p4 [ 1664.282684][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1664.288835][ T1037] loop3: p2 size 1074266112 extends beyond EOD, truncated [ 1664.301143][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1664.307988][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1664.321717][ T6226] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:47 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000094000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:47 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000003000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:47 executing program 5: r0 = syz_mount_image$msdos(0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f00000004c0)=ANY=[]) chdir(0x0) r1 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = open$dir(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0) write(r1, &(0x7f0000001400)="bb8f9f640903127a53527c6fbfe65d43b0e0586f2d40c7e7df58cac83420e83662d6e39bb6d5430622431454eedeeaee423d8f210bc3525fa7927c18d5fbc91ab13c2041136047d8da9375934d00f325499bfe7712208d387d41c31821c2a22d1325b556528e9b790b74053d1ed631c6ec8126d37c87216173138c00cef396868029af5b76bebac5e38b74d8bbc6ae66b6e202b6d505710377710ea7d43edf00e1a4c1c670bb4c263ce777da81abdd5ba5a5c82f67232f9b4d6f21b2e6afa8b38e4642b0daa2acbc0478d89b88e8b2094d4248855e5e81992e60be3afff0f3c3799350615489a901a659abdeca0c615a622ebf64175f990320e0356d4a11ed62eff72b709c23dd65942e8b534d7d775d370c1e435654a2634e6ee3649c4c3bcbe39e866f1eb9972af1a9cef42e701798a53dc92a242aadbac343e1765cf8ea5665e22deda69777e52b1e9e5d3edc022256939e1eee013448294911139d5b9c6241049fecdf9b31f4cdf6cff65d71b5071ef70e1798347c8846aa5b905e83050e3e606986ed3f603d18c5cdeb11cda1ce3abddea9376231af130e19fc7601ec1ab8cb5a7de9e2174547f18225b09a54fc8720dbb91eb69c1be88e601c3c9df4f2758f39a5151951b9c6dbb419ffd783a34c9fad10f201b8724d31865e2fc1fcf48db2be713053b43a0e3943c1e2b08e8a26e946c439d891db2a80b5ffa054bc8d", 0x200) fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000000)='\x00', &(0x7f0000000040)='./file0\x00', r0) sendfile(r1, r2, 0x0, 0x11f08) [ 1664.328569][ T6226] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1664.364732][ T6255] loop4: detected capacity change from 0 to 1 19:17:47 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac048000000055800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1664.408066][ T6255] loop4: p1 p2 p4 [ 1664.412043][ T6255] loop4: p1 start 10 is beyond EOD, truncated [ 1664.418240][ T6255] loop4: p2 start 65536 is beyond EOD, truncated [ 1664.424637][ T6255] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:47 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x402, 0x0, 0x0) [ 1664.471263][ T6276] loop2: detected capacity change from 0 to 1 [ 1664.471499][ T6272] loop1: detected capacity change from 0 to 512 [ 1664.490328][ T6281] loop3: detected capacity change from 0 to 1 [ 1664.518319][ T1037] loop2: p1 p2[EZD] p3 p4 [ 1664.523414][ T6272] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1664.531783][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1664.537903][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1664.538635][ T6281] loop3: p1 p2 p3 p4 [ 1664.545141][ T6255] loop4: detected capacity change from 0 to 1 [ 1664.557094][ T6281] loop3: p1 start 10 is beyond EOD, truncated [ 1664.560845][ T6272] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1664.563533][ T6281] loop3: p2 size 1074331648 extends beyond EOD, truncated [ 1664.577880][ T6281] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1664.584683][ T6281] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1664.585326][ T6272] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1664.602492][ T6272] ext4_test_bit(bit=16, block=18) = 0 [ 1664.607199][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:47 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000002000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:47 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001a03000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1664.608034][ T6272] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1664.614808][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1664.636189][ T6276] loop2: p1 p2[EZD] p3 p4 [ 1664.641338][ T6276] loop2: p1 start 10 is beyond EOD, truncated [ 1664.647432][ T6276] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:47 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000000000a4000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1664.683145][ T6276] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1664.690004][ T6276] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1664.715030][ T6314] loop4: detected capacity change from 0 to 1 19:17:47 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac048000000063800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1664.748118][ T1037] loop4: p1 p2 p4 [ 1664.752861][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1664.759057][ T1037] loop4: p2 start 131072 is beyond EOD, truncated [ 1664.765485][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1664.776653][ T6321] loop3: detected capacity change from 0 to 1 [ 1664.778762][ T6322] loop1: detected capacity change from 0 to 512 [ 1664.791560][ T6314] loop4: p1 p2 p4 [ 1664.795955][ T6314] loop4: p1 start 10 is beyond EOD, truncated [ 1664.796695][ T6333] loop2: detected capacity change from 0 to 1 [ 1664.802088][ T6314] loop4: p2 start 131072 is beyond EOD, truncated [ 1664.802109][ T6314] loop4: p4 size 3657465856 extends beyond EOD, [ 1664.811292][ T6322] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1664.814655][ T6314] truncated [ 1664.833114][ T6321] loop3: p1 p2 p3 p4 [ 1664.837251][ T6321] loop3: p1 start 10 is beyond EOD, truncated 19:17:47 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000402000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1664.843351][ T6321] loop3: p2 size 1074397184 extends beyond EOD, truncated [ 1664.851967][ T6322] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1664.852385][ T6321] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1664.858789][ T6333] loop2: p1 p2 p3 p4 [ 1664.865190][ T6321] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1664.876704][ T6322] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1664.887101][ T6322] ext4_test_bit(bit=16, block=18) = 0 19:17:47 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x406, 0x0, 0x0) [ 1664.892555][ T6322] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1664.912415][ T6333] loop2: p1 start 10 is beyond EOD, truncated [ 1664.918566][ T6333] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1664.926677][ T1037] loop3: p1 p2 p3 p4 [ 1664.930824][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1664.937014][ T1037] loop3: p2 size 1074397184 extends beyond EOD, truncated 19:17:47 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f003a03000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1664.944296][ T6348] loop4: detected capacity change from 0 to 1 [ 1664.951414][ T6333] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1664.958283][ T6333] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1664.967859][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1664.974647][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:47 executing program 5: ioctl$BTRFS_IOC_SNAP_CREATE(0xffffffffffffffff, 0x50009401, 0x0) syz_mount_image$msdos(&(0x7f0000000040), &(0x7f00000003c0)='./file1\x00', 0x79d7, 0x1, &(0x7f0000000300)=[{&(0x7f0000000140)="040005090000000066617400040409000200027400f8", 0x16}], 0x90, &(0x7f0000000080)=ANY=[]) chdir(&(0x7f0000000200)='./file1\x00') r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) r1 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000001500)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020002020202020202020202020200000000000000000bf000000000000bf000000000000000000000000000000000000000000000000000000000000000001000001010000010008080018000000000000181400"/151, 0x97, 0x8000}, {0x0, 0x0, 0x8800}, {&(0x7f0000011100), 0x0, 0xe000}], 0x0, &(0x7f00000001c0)={[{@session={'session', 0x3d, 0x31}}]}) getdents(0xffffffffffffffff, &(0x7f0000000200)=""/122, 0x7a) renameat(r1, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000080)='./bus\x00') perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x8142, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ppoll(0x0, 0x0, &(0x7f0000000300), 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10) syz_open_dev$vcsu(0x0, 0x0, 0x0) io_setup(0x4, &(0x7f0000000680)=0x0) io_submit(r2, 0xe0d, &(0x7f0000000e00)=[&(0x7f00000002c0)={0x0, 0x8800000, 0x0, 0x1, 0x0, r0, &(0x7f0000000340)='b', 0x8800000}]) [ 1665.003083][ T6348] loop4: p1 p2 p4 [ 1665.006989][ T6348] loop4: p1 start 10 is beyond EOD, truncated [ 1665.013098][ T6348] loop4: p2 start 131072 is beyond EOD, truncated [ 1665.019573][ T6348] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1665.028063][ T6363] loop1: detected capacity change from 0 to 512 [ 1665.043569][ T1037] loop4: p1 p2 p4 19:17:47 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac04800200ff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1665.070869][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1665.077025][ T1037] loop4: p2 start 131072 is beyond EOD, truncated [ 1665.083486][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:47 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000104000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1665.112098][ T6363] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1665.126979][ T6363] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1665.137779][ T6363] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1665.148174][ T6363] ext4_test_bit(bit=16, block=18) = 0 19:17:47 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f005403000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1665.158448][ T6386] loop2: detected capacity change from 0 to 1 [ 1665.170079][ T6387] loop3: detected capacity change from 0 to 1 [ 1665.193674][ T6348] loop4: detected capacity change from 0 to 1 [ 1665.208775][ T1037] loop2: p1 p2 p3 p4 [ 1665.213298][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1665.219471][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1665.227401][ T6387] loop3: p1 p2 p3 p4 [ 1665.227890][ T6348] loop4: p1 p2 p4 [ 1665.232271][ T6387] loop3: p1 start 10 is beyond EOD, truncated [ 1665.235854][ T6348] loop4: p1 start 10 is beyond EOD, truncated [ 1665.241228][ T6387] loop3: p2 size 1074790400 extends beyond EOD, truncated [ 1665.247288][ T6348] loop4: p2 start 131072 is beyond EOD, truncated [ 1665.260849][ T6348] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1665.274395][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1665.281231][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1665.290169][ T6386] loop2: p1 p2 p3 p4 [ 1665.290171][ T6387] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1665.294476][ T6386] loop2: p1 start 10 is beyond EOD, truncated 19:17:48 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000003000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:48 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000174000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1665.300975][ T6387] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1665.307040][ T6386] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1665.334615][ T6386] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1665.341476][ T6386] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1665.348883][ T6405] loop1: detected capacity change from 0 to 512 19:17:48 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x604, 0x0, 0x0) [ 1665.390651][ T6405] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1665.412880][ T6405] EXT4-fs (loop1): orphan cleanup on readonly fs 19:17:48 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac048002ffff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1665.439052][ T6424] loop3: detected capacity change from 0 to 1 [ 1665.440574][ T6405] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1665.455508][ T6405] ext4_test_bit(bit=16, block=18) = 0 [ 1665.480296][ T6431] loop4: detected capacity change from 0 to 1 19:17:48 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00e203000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1665.504933][ T6443] loop2: detected capacity change from 0 to 1 [ 1665.518296][ T6424] loop3: p1 p2 p3 p4 [ 1665.522483][ T6424] loop3: p1 start 10 is beyond EOD, truncated [ 1665.528602][ T6424] loop3: p2 size 1075249152 extends beyond EOD, truncated [ 1665.542466][ T6424] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1665.549293][ T6424] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1665.557570][ T6443] loop2: p1 p2 p3 p4 [ 1665.562065][ T6443] loop2: p1 start 10 is beyond EOD, truncated [ 1665.564702][ T1037] loop4: p1 p2 p4 [ 1665.568265][ T6443] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1665.576345][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1665.585218][ T1037] loop4: p2 start 196608 is beyond EOD, truncated [ 1665.591691][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1665.599694][ T6455] loop1: detected capacity change from 0 to 512 [ 1665.616548][ T6443] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1665.623392][ T6443] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1665.631064][ T6455] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:17:48 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000254000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1665.651699][ T6455] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1665.659879][ T6431] loop4: p1 p2 p4 [ 1665.663957][ T6431] loop4: p1 start 10 is beyond EOD, truncated [ 1665.670101][ T6431] loop4: p2 start 196608 is beyond EOD, truncated [ 1665.676530][ T6431] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1665.690028][ T6455] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1665.700570][ T6455] ext4_test_bit(bit=16, block=18) = 0 [ 1665.719813][ T6469] loop3: detected capacity change from 0 to 1 19:17:48 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000204000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1665.767973][ T6469] loop3: p1 p2 p3 p4 [ 1665.772752][ T6469] loop3: p1 start 10 is beyond EOD, truncated [ 1665.778867][ T6469] loop3: p2 size 1076166656 extends beyond EOD, truncated [ 1665.794881][ T6469] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1665.801690][ T6469] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1665.803079][ T6431] loop4: detected capacity change from 0 to 1 19:17:48 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff82800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1665.827421][ T1037] loop3: p1 p2 p3 p4 [ 1665.831843][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1665.837961][ T1037] loop3: p2 size 1076166656 extends beyond EOD, truncated [ 1665.847687][ T6489] loop1: detected capacity change from 0 to 512 [ 1665.860042][ T6489] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1665.867943][ T6431] loop4: p1 p2 p4 [ 1665.872094][ T6431] loop4: p1 start 10 is beyond EOD, truncated [ 1665.875237][ T6489] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1665.878259][ T6431] loop4: p2 start 196608 is beyond EOD, truncated [ 1665.884807][ T6489] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1665.891013][ T6431] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1665.901340][ T6489] ext4_test_bit(bit=16, block=18) = 0 [ 1665.922493][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1665.929310][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1665.934060][ T6498] loop2: detected capacity change from 0 to 1 [ 1665.968155][ T6498] loop2: p1 p2 p3 p4 [ 1665.972270][ T6498] loop2: p1 start 10 is beyond EOD, truncated 19:17:48 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000264000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:48 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000604000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:48 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x700, 0x0, 0x0) 19:17:48 executing program 5: r0 = creat(&(0x7f00000002c0)='./bus\x00', 0x0) ftruncate(r0, 0x8208200) r1 = open(&(0x7f0000000780)='./bus\x00', 0x14117e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0) accept$inet(r0, 0x0, &(0x7f0000000040)) r2 = gettid() process_vm_writev(r2, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) r3 = socket$inet6(0xa, 0x2, 0x0) bind$inet(r1, &(0x7f00000000c0)={0x2, 0x4e24, @remote}, 0x10) setsockopt$inet6_int(r3, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) ioctl$BTRFS_IOC_DEFRAG_RANGE(r3, 0x40309410, &(0x7f0000000080)={0x20, 0x6, 0x1, 0x7478778, 0x3, [0x6, 0xbdb, 0x10001, 0x7]}) 19:17:48 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000004000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1665.978372][ T6498] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1665.986983][ T6498] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1665.993832][ T6498] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:48 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff85800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1666.073806][ T6537] loop3: detected capacity change from 0 to 1 [ 1666.076367][ T6530] loop4: detected capacity change from 0 to 1 [ 1666.086433][ T6531] loop1: detected capacity change from 0 to 512 [ 1666.108353][ T6543] loop2: detected capacity change from 0 to 1 [ 1666.115222][ T6531] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1666.133252][ T6531] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1666.140251][ T6537] loop3: p1 p2 p3 p4 [ 1666.144553][ T6537] loop3: p1 start 10 is beyond EOD, truncated [ 1666.148006][ T6530] loop4: p1 p2 p4 [ 1666.150686][ T6537] loop3: p2 size 1076232192 extends beyond EOD, truncated [ 1666.154454][ T6530] loop4: p1 start 10 is beyond EOD, truncated [ 1666.167545][ T6530] loop4: p2 start 262144 is beyond EOD, truncated [ 1666.169306][ T1037] loop2: p1 p2 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p2 [ 1666.173962][ T6530] loop4: p4 size 3657465856 extends beyond EOD, [ 1666.174915][ T1037] loop2: p1 start 10 is beyond EOD, [ 1666.260798][ T6530] truncated [ 1666.275601][ T1037] truncated [ 1666.278739][ T1037] loop2: p2 size 2 extends beyond EOD, truncated [ 1666.289758][ T6537] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1666.296554][ T6537] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1666.303749][ T6531] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1666.314141][ T6531] ext4_test_bit(bit=16, block=18) = 0 [ 1666.321065][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated 19:17:49 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001004000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1666.327878][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1666.343861][ T1037] loop2: p5 start 10 is beyond EOD, truncated [ 1666.349989][ T1037] loop2: p6 start 10 is beyond EOD, truncated [ 1666.356051][ T1037] loop2: p7 start 10 is beyond EOD, truncated [ 1666.362161][ T1037] loop2: p8 start 10 is beyond EOD, truncated [ 1666.368253][ T1037] loop2: p9 start 10 is beyond EOD, truncated [ 1666.374347][ T1037] loop2: p10 start 10 is beyond EOD, truncated 19:17:49 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000080)={&(0x7f0000000440)={0x1c8, r1, 0x10, 0x70bd28, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x9}, {0xc, 0x90, 0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x5}, {0xc, 0x90, 0x7ff}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0x3}, {0xc, 0x90, 0x9}}, {@pci={{0x8}, {0x11}}, {0x8}, {0xc, 0x8f, 0x3}, {0xc, 0x90, 0x81}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x3}, {0xc, 0x8f, 0x58}, {0xc, 0x90, 0x9}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x139ede3f}, {0xc, 0x90, 0x3}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0x6}, {0xc, 0x90, 0x7}}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x10}, 0x8011) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="28010000120035070000000000000000fe8800000000000000000000000000010000000000000000fe8000000000000000000000000000aaac1414bb0000000000000000000000007f00000100"/104, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="7f000001000000000000000000000000fc0100"/48, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f579f1f415f228092c93920e52f99f30d6f511cee03836aff8510b72fafd80d1773d5ff87b61186d97a8923c5284fef18dee4cee1ee08a8be79228eb5946af"], 0x128}}, 0x0) [ 1666.380702][ T1037] loop2: p11 start 10 is beyond EOD, truncated [ 1666.386887][ T1037] loop2: p12 start 10 is beyond EOD, truncated [ 1666.393360][ T1037] loop2: p13 start 10 is beyond EOD, truncated [ 1666.399613][ T1037] loop2: p14 start 10 is beyond EOD, truncated [ 1666.405790][ T1037] loop2: p15 start 10 is beyond EOD, truncated [ 1666.411964][ T1037] loop2: p16 start 10 is beyond EOD, truncated [ 1666.418159][ T1037] loop2: p17 start 10 is beyond EOD, truncated [ 1666.424491][ T1037] loop2: p18 start 10 is beyond EOD, truncated [ 1666.430684][ T1037] loop2: p19 start 10 is beyond EOD, truncated [ 1666.436850][ T1037] loop2: p20 start 10 is beyond EOD, truncated [ 1666.443051][ T1037] loop2: p21 start 10 is beyond EOD, truncated [ 1666.449229][ T1037] loop2: p22 start 10 is beyond EOD, truncated [ 1666.452831][ T6563] netlink: 280 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1666.455382][ T1037] loop2: p23 start 10 is beyond EOD, truncated [ 1666.455400][ T1037] loop2: p24 start 10 is beyond EOD, truncated [ 1666.477094][ T1037] loop2: p25 start 10 is beyond EOD, truncated 19:17:49 executing program 5: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r0 = socket(0x11, 0x800000003, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r1}) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) setsockopt$inet_mreqn(r2, 0x0, 0x24, &(0x7f0000000140)={@local, @dev={0xac, 0x14, 0x14, 0x34}, r1}, 0xc) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0xe, &(0x7f00000000c0)={@remote, r1}, 0x14) r3 = open(&(0x7f0000000000)='./bus\x00', 0x109842, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800006, 0x11, r3, 0xc03000) r4 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r4, 0xf504, 0x0) ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000040)) ftruncate(r4, 0x2008002) mremap(&(0x7f00001d3000/0x3000)=nil, 0x3000, 0x1000, 0x6, &(0x7f0000ffd000/0x1000)=nil) madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9) [ 1666.483473][ T1037] loop2: p26 start 10 is beyond EOD, truncated [ 1666.489674][ T1037] loop2: p27 start 10 is beyond EOD, truncated [ 1666.495973][ T1037] loop2: p28 start 10 is beyond EOD, truncated [ 1666.502297][ T1037] loop2: p29 start 10 is beyond EOD, truncated [ 1666.508487][ T1037] loop2: p30 start 10 is beyond EOD, truncated [ 1666.514706][ T1037] loop2: p31 start 10 is beyond EOD, truncated [ 1666.520912][ T1037] loop2: p32 start 10 is beyond EOD, truncated [ 1666.527167][ T1037] loop2: p33 start 10 is beyond EOD, truncated [ 1666.533352][ T1037] loop2: p34 start 10 is beyond EOD, truncated [ 1666.539538][ T1037] loop2: p35 start 10 is beyond EOD, truncated [ 1666.545695][ T1037] loop2: p36 start 10 is beyond EOD, truncated [ 1666.551881][ T1037] loop2: p37 start 10 is beyond EOD, truncated [ 1666.558099][ T1037] loop2: p38 start 10 is beyond EOD, truncated [ 1666.564257][ T1037] loop2: p39 start 10 is beyond EOD, truncated [ 1666.570427][ T1037] loop2: p40 start 10 is beyond EOD, truncated [ 1666.576580][ T1037] loop2: p41 start 10 is beyond EOD, truncated [ 1666.582818][ T1037] loop2: p42 start 10 is beyond EOD, truncated [ 1666.589094][ T1037] loop2: p43 start 10 is beyond EOD, truncated [ 1666.595252][ T1037] loop2: p44 start 10 is beyond EOD, truncated [ 1666.601458][ T1037] loop2: p45 start 10 is beyond EOD, truncated [ 1666.607719][ T1037] loop2: p46 start 10 is beyond EOD, truncated [ 1666.613878][ T1037] loop2: p47 start 10 is beyond EOD, truncated [ 1666.620075][ T1037] loop2: p48 start 10 is beyond EOD, truncated [ 1666.626230][ T1037] loop2: p49 start 10 is beyond EOD, truncated [ 1666.632535][ T1037] loop2: p50 start 10 is beyond EOD, truncated [ 1666.638710][ T1037] loop2: p51 start 10 is beyond EOD, truncated [ 1666.644867][ T1037] loop2: p52 start 10 is beyond EOD, truncated [ 1666.651155][ T1037] loop2: p53 start 10 is beyond EOD, truncated [ 1666.657529][ T1037] loop2: p54 start 10 is beyond EOD, truncated [ 1666.663991][ T1037] loop2: p55 start 10 is beyond EOD, truncated [ 1666.670298][ T1037] loop2: p56 start 10 is beyond EOD, truncated [ 1666.676450][ T1037] loop2: p57 start 10 is beyond EOD, truncated [ 1666.682744][ T1037] loop2: p58 start 10 is beyond EOD, truncated [ 1666.688921][ T1037] loop2: p59 start 10 is beyond EOD, truncated [ 1666.695067][ T1037] loop2: p60 start 10 is beyond EOD, truncated [ 1666.701294][ T1037] loop2: p61 start 10 is beyond EOD, truncated [ 1666.707578][ T1037] loop2: p62 start 10 is beyond EOD, truncated [ 1666.713731][ T1037] loop2: p63 start 10 is beyond EOD, truncated [ 1666.720051][ T1037] loop2: p64 start 10 is beyond EOD, truncated [ 1666.726216][ T1037] loop2: p65 start 10 is beyond EOD, truncated [ 1666.732472][ T1037] loop2: p66 start 10 is beyond EOD, truncated [ 1666.738649][ T1037] loop2: p67 start 10 is beyond EOD, truncated [ 1666.744803][ T1037] loop2: p68 start 10 is beyond EOD, truncated [ 1666.750983][ T1037] loop2: p69 start 10 is beyond EOD, truncated [ 1666.757190][ T1037] loop2: p70 start 10 is beyond EOD, truncated [ 1666.763370][ T1037] loop2: p71 start 10 is beyond EOD, truncated [ 1666.769547][ T1037] loop2: p72 start 10 is beyond EOD, truncated [ 1666.775691][ T1037] loop2: p73 start 10 is beyond EOD, truncated [ 1666.781847][ T1037] loop2: p74 start 10 is beyond EOD, truncated [ 1666.788027][ T1037] loop2: p75 start 10 is beyond EOD, truncated [ 1666.794182][ T1037] loop2: p76 start 10 is beyond EOD, truncated [ 1666.800352][ T1037] loop2: p77 start 10 is beyond EOD, truncated [ 1666.806542][ T1037] loop2: p78 start 10 is beyond EOD, truncated [ 1666.812797][ T1037] loop2: p79 start 10 is beyond EOD, truncated [ 1666.818988][ T1037] loop2: p80 start 10 is beyond EOD, truncated [ 1666.825131][ T1037] loop2: p81 start 10 is beyond EOD, truncated [ 1666.831377][ T1037] loop2: p82 start 10 is beyond EOD, truncated [ 1666.837586][ T1037] loop2: p83 start 10 is beyond EOD, truncated [ 1666.843734][ T1037] loop2: p84 start 10 is beyond EOD, truncated [ 1666.849914][ T1037] loop2: p85 start 10 is beyond EOD, truncated [ 1666.856062][ T1037] loop2: p86 start 10 is beyond EOD, truncated [ 1666.862220][ T1037] loop2: p87 start 10 is beyond EOD, truncated [ 1666.868393][ T1037] loop2: p88 start 10 is beyond EOD, truncated [ 1666.874543][ T1037] loop2: p89 start 10 is beyond EOD, truncated [ 1666.880836][ T1037] loop2: p90 start 10 is beyond EOD, truncated [ 1666.887000][ T1037] loop2: p91 start 10 is beyond EOD, truncated [ 1666.893183][ T1037] loop2: p92 start 10 is beyond EOD, truncated [ 1666.899400][ T1037] loop2: p93 start 10 is beyond EOD, truncated [ 1666.905737][ T1037] loop2: p94 start 10 is beyond EOD, truncated [ 1666.911912][ T1037] loop2: p95 start 10 is beyond EOD, truncated [ 1666.918165][ T1037] loop2: p96 start 10 is beyond EOD, truncated [ 1666.924334][ T1037] loop2: p97 start 10 is beyond EOD, truncated [ 1666.930504][ T1037] loop2: p98 start 10 is beyond EOD, truncated [ 1666.936841][ T1037] loop2: p99 start 10 is beyond EOD, truncated [ 1666.943062][ T1037] loop2: p100 start 10 is beyond EOD, truncated [ 1666.949454][ T1037] loop2: p101 start 10 is beyond EOD, truncated [ 1666.955692][ T1037] loop2: p102 start 10 is beyond EOD, truncated [ 1666.962616][ T1037] loop2: p103 start 10 is beyond EOD, truncated [ 1666.968879][ T1037] loop2: p104 start 10 is beyond EOD, truncated [ 1666.975122][ T1037] loop2: p105 start 10 is beyond EOD, truncated [ 1666.981438][ T1037] loop2: p106 start 10 is beyond EOD, truncated [ 1666.987704][ T1037] loop2: p107 start 10 is beyond EOD, truncated [ 1666.993947][ T1037] loop2: p108 start 10 is beyond EOD, truncated [ 1667.000209][ T1037] loop2: p109 start 10 is beyond EOD, truncated [ 1667.006443][ T1037] loop2: p110 start 10 is beyond EOD, truncated [ 1667.012703][ T1037] loop2: p111 start 10 is beyond EOD, truncated [ 1667.018970][ T1037] loop2: p112 start 10 is beyond EOD, truncated [ 1667.025208][ T1037] loop2: p113 start 10 is beyond EOD, truncated [ 1667.031479][ T1037] loop2: p114 start 10 is beyond EOD, truncated [ 1667.037770][ T1037] loop2: p115 start 10 is beyond EOD, truncated [ 1667.044101][ T1037] loop2: p116 start 10 is beyond EOD, truncated [ 1667.050354][ T1037] loop2: p117 start 10 is beyond EOD, truncated [ 1667.056708][ T1037] loop2: p118 start 10 is beyond EOD, truncated [ 1667.063043][ T1037] loop2: p119 start 10 is beyond EOD, truncated [ 1667.069369][ T1037] loop2: p120 start 10 is beyond EOD, truncated [ 1667.075713][ T1037] loop2: p121 start 10 is beyond EOD, truncated [ 1667.082191][ T1037] loop2: p122 start 10 is beyond EOD, truncated [ 1667.088554][ T1037] loop2: p123 start 10 is beyond EOD, truncated [ 1667.094898][ T1037] loop2: p124 start 10 is beyond EOD, truncated [ 1667.101293][ T1037] loop2: p125 start 10 is beyond EOD, truncated [ 1667.107553][ T1037] loop2: p126 start 10 is beyond EOD, truncated [ 1667.113792][ T1037] loop2: p127 start 10 is beyond EOD, truncated [ 1667.120047][ T1037] loop2: p128 start 10 is beyond EOD, truncated [ 1667.126287][ T1037] loop2: p129 start 10 is beyond EOD, truncated [ 1667.132552][ T1037] loop2: p130 start 10 is beyond EOD, truncated [ 1667.138816][ T1037] loop2: p131 start 10 is beyond EOD, truncated [ 1667.145052][ T1037] loop2: p132 start 10 is beyond EOD, truncated [ 1667.151303][ T1037] loop2: p133 start 10 is beyond EOD, truncated [ 1667.157673][ T1037] loop2: p134 start 10 is beyond EOD, truncated [ 1667.163915][ T1037] loop2: p135 start 10 is beyond EOD, truncated [ 1667.170174][ T1037] loop2: p136 start 10 is beyond EOD, truncated [ 1667.176452][ T1037] loop2: p137 start 10 is beyond EOD, truncated [ 1667.182797][ T1037] loop2: p138 start 10 is beyond EOD, truncated [ 1667.189058][ T1037] loop2: p139 start 10 is beyond EOD, truncated [ 1667.195295][ T1037] loop2: p140 start 10 is beyond EOD, truncated [ 1667.201570][ T1037] loop2: p141 start 10 is beyond EOD, truncated [ 1667.207942][ T1037] loop2: p142 start 10 is beyond EOD, truncated [ 1667.214252][ T1037] loop2: p143 start 10 is beyond EOD, truncated [ 1667.220746][ T1037] loop2: p144 start 10 is beyond EOD, truncated [ 1667.227086][ T1037] loop2: p145 start 10 is beyond EOD, truncated [ 1667.233517][ T1037] loop2: p146 start 10 is beyond EOD, truncated [ 1667.240032][ T1037] loop2: p147 start 10 is beyond EOD, truncated [ 1667.246279][ T1037] loop2: p148 start 10 is beyond EOD, truncated [ 1667.252551][ T1037] loop2: p149 start 10 is beyond EOD, truncated [ 1667.258952][ T1037] loop2: p150 start 10 is beyond EOD, truncated [ 1667.265199][ T1037] loop2: p151 start 10 is beyond EOD, truncated [ 1667.271649][ T1037] loop2: p152 start 10 is beyond EOD, truncated [ 1667.277913][ T1037] loop2: p153 start 10 is beyond EOD, truncated [ 1667.284145][ T1037] loop2: p154 start 10 is beyond EOD, truncated [ 1667.290394][ T1037] loop2: p155 start 10 is beyond EOD, truncated [ 1667.296783][ T1037] loop2: p156 start 10 is beyond EOD, truncated [ 1667.303114][ T1037] loop2: p157 start 10 is beyond EOD, truncated [ 1667.309385][ T1037] loop2: p158 start 10 is beyond EOD, truncated [ 1667.315644][ T1037] loop2: p159 start 10 is beyond EOD, truncated [ 1667.321891][ T1037] loop2: p160 start 10 is beyond EOD, truncated [ 1667.328175][ T1037] loop2: p161 start 10 is beyond EOD, truncated [ 1667.334444][ T1037] loop2: p162 start 10 is beyond EOD, truncated [ 1667.340810][ T1037] loop2: p163 start 10 is beyond EOD, truncated [ 1667.347049][ T1037] loop2: p164 start 10 is beyond EOD, truncated [ 1667.353337][ T1037] loop2: p165 start 10 is beyond EOD, truncated [ 1667.359621][ T1037] loop2: p166 start 10 is beyond EOD, truncated [ 1667.365897][ T1037] loop2: p167 start 10 is beyond EOD, truncated [ 1667.372335][ T1037] loop2: p168 start 10 is beyond EOD, truncated [ 1667.378621][ T1037] loop2: p169 start 10 is beyond EOD, truncated [ 1667.384980][ T1037] loop2: p170 start 10 is beyond EOD, truncated [ 1667.391232][ T1037] loop2: p171 start 10 is beyond EOD, truncated [ 1667.397700][ T1037] loop2: p172 start 10 is beyond EOD, truncated [ 1667.403953][ T1037] loop2: p173 start 10 is beyond EOD, truncated [ 1667.410265][ T1037] loop2: p174 start 10 is beyond EOD, truncated [ 1667.416573][ T1037] loop2: p175 start 10 is beyond EOD, truncated [ 1667.422827][ T1037] loop2: p176 start 10 is beyond EOD, truncated [ 1667.429229][ T1037] loop2: p177 start 10 is beyond EOD, truncated [ 1667.435558][ T1037] loop2: p178 start 10 is beyond EOD, truncated [ 1667.441907][ T1037] loop2: p179 start 10 is beyond EOD, truncated [ 1667.448204][ T1037] loop2: p180 start 10 is beyond EOD, truncated [ 1667.454439][ T1037] loop2: p181 start 10 is beyond EOD, truncated [ 1667.460700][ T1037] loop2: p182 start 10 is beyond EOD, truncated [ 1667.466999][ T1037] loop2: p183 start 10 is beyond EOD, truncated [ 1667.473250][ T1037] loop2: p184 start 10 is beyond EOD, truncated [ 1667.479613][ T1037] loop2: p185 start 10 is beyond EOD, truncated [ 1667.485940][ T1037] loop2: p186 start 10 is beyond EOD, truncated [ 1667.492219][ T1037] loop2: p187 start 10 is beyond EOD, truncated [ 1667.498526][ T1037] loop2: p188 start 10 is beyond EOD, truncated [ 1667.504833][ T1037] loop2: p189 start 10 is beyond EOD, truncated [ 1667.511116][ T1037] loop2: p190 start 10 is beyond EOD, truncated [ 1667.517402][ T1037] loop2: p191 start 10 is beyond EOD, truncated [ 1667.523734][ T1037] loop2: p192 start 10 is beyond EOD, truncated [ 1667.530061][ T1037] loop2: p193 start 10 is beyond EOD, truncated [ 1667.536306][ T1037] loop2: p194 start 10 is beyond EOD, truncated [ 1667.542662][ T1037] loop2: p195 start 10 is beyond EOD, truncated [ 1667.548928][ T1037] loop2: p196 start 10 is beyond EOD, truncated [ 1667.555236][ T1037] loop2: p197 start 10 is beyond EOD, truncated [ 1667.561613][ T1037] loop2: p198 start 10 is beyond EOD, truncated [ 1667.567878][ T1037] loop2: p199 start 10 is beyond EOD, truncated [ 1667.574141][ T1037] loop2: p200 start 10 is beyond EOD, truncated [ 1667.580419][ T1037] loop2: p201 start 10 is beyond EOD, truncated [ 1667.586689][ T1037] loop2: p202 start 10 is beyond EOD, truncated [ 1667.592964][ T1037] loop2: p203 start 10 is beyond EOD, truncated [ 1667.599284][ T1037] loop2: p204 start 10 is beyond EOD, truncated [ 1667.605637][ T1037] loop2: p205 start 10 is beyond EOD, truncated [ 1667.611910][ T1037] loop2: p206 start 10 is beyond EOD, truncated [ 1667.618226][ T1037] loop2: p207 start 10 is beyond EOD, truncated [ 1667.624485][ T1037] loop2: p208 start 10 is beyond EOD, truncated [ 1667.630729][ T1037] loop2: p209 start 10 is beyond EOD, truncated [ 1667.636980][ T1037] loop2: p210 start 10 is beyond EOD, truncated [ 1667.643259][ T1037] loop2: p211 start 10 is beyond EOD, truncated [ 1667.649512][ T1037] loop2: p212 start 10 is beyond EOD, truncated [ 1667.655846][ T1037] loop2: p213 start 10 is beyond EOD, truncated [ 1667.662100][ T1037] loop2: p214 start 10 is beyond EOD, truncated [ 1667.668360][ T1037] loop2: p215 start 10 is beyond EOD, truncated [ 1667.674596][ T1037] loop2: p216 start 10 is beyond EOD, truncated [ 1667.680842][ T1037] loop2: p217 start 10 is beyond EOD, truncated [ 1667.687118][ T1037] loop2: p218 start 10 is beyond EOD, truncated [ 1667.693381][ T1037] loop2: p219 start 10 is beyond EOD, truncated [ 1667.699667][ T1037] loop2: p220 start 10 is beyond EOD, truncated [ 1667.705899][ T1037] loop2: p221 start 10 is beyond EOD, truncated [ 1667.712149][ T1037] loop2: p222 start 10 is beyond EOD, truncated [ 1667.718584][ T1037] loop2: p223 start 10 is beyond EOD, truncated [ 1667.724820][ T1037] loop2: p224 start 10 is beyond EOD, truncated [ 1667.731073][ T1037] loop2: p225 start 10 is beyond EOD, truncated [ 1667.737318][ T1037] loop2: p226 start 10 is beyond EOD, truncated [ 1667.743561][ T1037] loop2: p227 start 10 is beyond EOD, truncated [ 1667.749925][ T1037] loop2: p228 start 10 is beyond EOD, truncated [ 1667.756230][ T1037] loop2: p229 start 10 is beyond EOD, truncated [ 1667.762508][ T1037] loop2: p230 start 10 is beyond EOD, truncated [ 1667.768769][ T1037] loop2: p231 start 10 is beyond EOD, truncated [ 1667.775044][ T1037] loop2: p232 start 10 is beyond EOD, truncated [ 1667.781495][ T1037] loop2: p233 start 10 is beyond EOD, truncated [ 1667.787752][ T1037] loop2: p234 start 10 is beyond EOD, truncated [ 1667.793994][ T1037] loop2: p235 start 10 is beyond EOD, truncated [ 1667.800258][ T1037] loop2: p236 start 10 is beyond EOD, truncated [ 1667.806504][ T1037] loop2: p237 start 10 is beyond EOD, truncated [ 1667.812816][ T1037] loop2: p238 start 10 is beyond EOD, truncated [ 1667.819076][ T1037] loop2: p239 start 10 is beyond EOD, truncated [ 1667.825395][ T1037] loop2: p240 start 10 is beyond EOD, truncated [ 1667.831638][ T1037] loop2: p241 start 10 is beyond EOD, truncated [ 1667.837980][ T1037] loop2: p242 start 10 is beyond EOD, truncated [ 1667.844226][ T1037] loop2: p243 start 10 is beyond EOD, truncated [ 1667.850541][ T1037] loop2: p244 start 10 is beyond EOD, truncated [ 1667.856789][ T1037] loop2: p245 start 10 is beyond EOD, truncated [ 1667.863128][ T1037] loop2: p246 start 10 is beyond EOD, truncated [ 1667.869389][ T1037] loop2: p247 start 10 is beyond EOD, truncated [ 1667.875634][ T1037] loop2: p248 start 10 is beyond EOD, truncated [ 1667.881899][ T1037] loop2: p249 start 10 is beyond EOD, truncated [ 1667.888177][ T1037] loop2: p250 start 10 is beyond EOD, truncated [ 1667.894433][ T1037] loop2: p251 start 10 is beyond EOD, truncated [ 1667.900693][ T1037] loop2: p252 start 10 is beyond EOD, truncated [ 1667.906952][ T1037] loop2: p253 start 10 is beyond EOD, truncated [ 1667.913232][ T1037] loop2: p254 start 10 is beyond EOD, truncated [ 1667.919491][ T1037] loop2: p255 start 10 is beyond EOD, truncated 19:17:50 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0xf00, 0x0, 0x0) [ 1667.936341][ T6543] loop2: p1 p2 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p2 [ 1667.936703][ T6543] loop2: p1 start 10 is beyond EOD, truncated [ 1668.029846][ T6543] loop2: p2 size 2 extends beyond EOD, truncated 19:17:50 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000005000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:50 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000000002d4000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1668.079596][ T6543] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1668.086436][ T6543] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1668.093883][ T6591] loop1: detected capacity change from 0 to 512 [ 1668.118162][ T6591] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:17:50 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) r1 = dup2(r0, r0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000440)={@remote, 0x3f, 0x1, 0x2, 0x9, 0x4, 0x1}, 0x20) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) pwritev(r0, &(0x7f00000002c0)=[{&(0x7f0000000140)="71f6a88e77f65a4388ed1161dd80558d6716aa077c73ae11b990f1f4551f3b7d9a26dca7d3cb13fb6145b622330fb3b6ddc73b8922138772e5ed3886c5deae29b27d7dfeaeef3563b12683d833ab5ee3035798d4c0a70a293b565b7b3bd61ffeabfacbd789c9c16c15e42144989e9d275c1a47fbeb801025a52bf70256281940b44acffb670e180ca3f062efb99d757e1fc0849161f7d5ef82cabc12b719e19c00b524925056efca63ea6aebf87fe656216b0ffa623b8820eeda596151f1ea3e4c38a628ad97cdb27b262e2500058a7b70229b5c9d532cea2cfc3ff6fbcdc88fedde7fb9dee9134b83c00bdeb8742411cb41e2", 0xf3}, {&(0x7f0000000040)="d461bb31f1bed642c948533644e13a7ba94ea7e790cdb579af3e84c50c4f7a14a4b93536829ec9e558cfc81eaa681027d871ecdcfdd1389d6e21f247a4c6defe2f6ea0da780d23d79eba717d2f298dadf767937bbbac84c2bc2f2df7f7e33495aff82db1b832f25319dc5c963afa72e3d0dd34a4273aef0b73088447608544db1fa619f85c92cced44f25f77b818f05d82291b62179e16d596b66532aa4cacca2126ac7dedfd5045c066f7e54f2a672ae8c623bd24b2d9c665a098", 0xbb}, {&(0x7f0000000340)="9ab709bfa14204415554be7b1f321753b6f3ba9351b24e5b7e1078c77e57b3a0878de499ec809a8eb265717286d0dcbe643249d3bb794a00b8bcc7f3c7eb4d92ef01eff17c3e26f5f7045f94ee61f3b4cf8664293c55623434c254189643d1f83eb06fef6455bf43d3fe28e2f72bff5895ec077800fa62bae297841513a91e5eed38d9c470b3b9cc9e830ba34f69790da39fef95f96b048d0afd2de40b8457379bb7327045c1b02099e9b52e26d5856fda8ed838e53e1396b347e181f2079db66e21f48a6d26997d592a890d2f60ee345058d681ebd01b90a27fa322ba9b00da2c77d0671753e8dc7cc5ff4834e231583be2", 0xf2}, {&(0x7f0000000240)="2f5520a8af29c3be8fba10d17254241d7f386089f8c5109a630883bb5c231ea3c2869ddff37b1a96662e03d4c61860be48b5a48497512c114e521aae9f9a878a4f70542b27e390330a623eb639", 0x4d}], 0x4, 0x9, 0x6) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x4030005, 0x1, &(0x7f0000000300)=[{0x0}], 0x0, &(0x7f0000013800)) [ 1668.126206][ T6599] loop3: detected capacity change from 0 to 1 [ 1668.133050][ T6596] loop4: detected capacity change from 0 to 1 [ 1668.148307][ T6591] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1668.152687][ T6543] loop2: p5 start 10 is beyond EOD, truncated [ 1668.160842][ T6543] loop2: p6 start 10 is beyond EOD, truncated [ 1668.166913][ T6543] loop2: p7 start 10 is beyond EOD, truncated 19:17:50 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00') sendfile(r0, r1, 0x0, 0x800000080004105) [ 1668.171379][ T6591] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1668.173131][ T6543] loop2: p8 start 10 is beyond EOD, [ 1668.183480][ T6591] ext4_test_bit(bit=16, block=18) = 0 [ 1668.183472][ T6543] truncated [ 1668.197239][ T6543] loop2: p9 start 10 is beyond EOD, truncated [ 1668.203365][ T6543] loop2: p10 start 10 is beyond EOD, truncated [ 1668.209538][ T6543] loop2: p11 start 10 is beyond EOD, truncated [ 1668.215864][ T6543] loop2: p12 start 10 is beyond EOD, truncated [ 1668.222121][ T6543] loop2: p13 start 10 is beyond EOD, truncated [ 1668.228293][ T6543] loop2: p14 start 10 is beyond EOD, truncated [ 1668.234449][ T6543] loop2: p15 start 10 is beyond EOD, truncated [ 1668.240629][ T6543] loop2: p16 start 10 is beyond EOD, truncated [ 1668.246895][ T6543] loop2: p17 start 10 is beyond EOD, truncated [ 1668.253078][ T6543] loop2: p18 start 10 is beyond EOD, truncated [ 1668.259346][ T6543] loop2: p19 start 10 is beyond EOD, truncated [ 1668.265558][ T6543] loop2: p20 start 10 is beyond EOD, truncated [ 1668.271748][ T6543] loop2: p21 start 10 is beyond EOD, truncated 19:17:51 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000005000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:51 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) getpgrp(0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4) r1 = socket$inet6(0xa, 0x0, 0x0) getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x50, 0x0, &(0x7f0000000200)) sendto$inet(r0, &(0x7f0000000280)="ac8ad64b54064cc3f8e46f", 0xb, 0x7f048bc21dea0b92, &(0x7f0000000140)={0x2, 0x4e21, @rand_addr=0x64010100}, 0x10) ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000100)={0x3, 'bond0\x00', {0x7}, 0xffff}) ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r1, 0x8982, &(0x7f0000000040)={0x3, 'batadv_slave_0\x00', {0x9}, 0x200}) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000300)) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0xc7) sendto$inet(r0, &(0x7f00000002c0)='\b', 0x1, 0xc0844, 0x0, 0x0) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000340)=""/119) recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x0, 0x0, 0xfffffffffffffd25) [ 1668.278048][ T6543] loop2: p22 start 10 is beyond EOD, truncated [ 1668.284229][ T6543] loop2: p23 start 10 is beyond EOD, truncated [ 1668.290425][ T6543] loop2: p24 start 10 is beyond EOD, truncated [ 1668.296580][ T6543] loop2: p25 start 10 is beyond EOD, truncated [ 1668.302783][ T6543] loop2: p26 start 10 is beyond EOD, truncated [ 1668.308992][ T6543] loop2: p27 start 10 is beyond EOD, truncated [ 1668.315145][ T6543] loop2: p28 start 10 is beyond EOD, truncated [ 1668.321363][ T6543] loop2: p29 start 10 is beyond EOD, truncated [ 1668.327569][ T6543] loop2: p30 start 10 is beyond EOD, truncated [ 1668.333728][ T6543] loop2: p31 start 10 is beyond EOD, truncated [ 1668.339965][ T6543] loop2: p32 start 10 is beyond EOD, truncated [ 1668.346116][ T6543] loop2: p33 start 10 is beyond EOD, truncated [ 1668.352296][ T6543] loop2: p34 start 10 is beyond EOD, truncated [ 1668.358654][ T6543] loop2: p35 start 10 is beyond EOD, truncated [ 1668.364817][ T6543] loop2: p36 start 10 is beyond EOD, truncated [ 1668.371021][ T6543] loop2: p37 start 10 is beyond EOD, truncated [ 1668.377213][ T6543] loop2: p38 start 10 is beyond EOD, truncated [ 1668.383492][ T6543] loop2: p39 start 10 is beyond EOD, truncated [ 1668.389662][ T6543] loop2: p40 start 10 is beyond EOD, truncated [ 1668.395817][ T6543] loop2: p41 start 10 is beyond EOD, truncated [ 1668.401997][ T6543] loop2: p42 start 10 is beyond EOD, truncated [ 1668.408187][ T6543] loop2: p43 start 10 is beyond EOD, truncated [ 1668.414340][ T6543] loop2: p44 start 10 is beyond EOD, truncated [ 1668.420502][ T6543] loop2: p45 start 10 is beyond EOD, truncated [ 1668.426794][ T6543] loop2: p46 start 10 is beyond EOD, truncated [ 1668.432952][ T6543] loop2: p47 start 10 is beyond EOD, truncated [ 1668.439124][ T6543] loop2: p48 start 10 is beyond EOD, truncated [ 1668.445280][ T6543] loop2: p49 start 10 is beyond EOD, truncated [ 1668.451450][ T6543] loop2: p50 start 10 is beyond EOD, truncated [ 1668.457630][ T6543] loop2: p51 start 10 is beyond EOD, truncated [ 1668.463796][ T6543] loop2: p52 start 10 is beyond EOD, truncated [ 1668.469954][ T6543] loop2: p53 start 10 is beyond EOD, truncated [ 1668.476098][ T6543] loop2: p54 start 10 is beyond EOD, truncated [ 1668.482275][ T6543] loop2: p55 start 10 is beyond EOD, truncated [ 1668.488535][ T6543] loop2: p56 start 10 is beyond EOD, truncated [ 1668.494680][ T6543] loop2: p57 start 10 is beyond EOD, truncated [ 1668.500914][ T6543] loop2: p58 start 10 is beyond EOD, truncated [ 1668.507062][ T6543] loop2: p59 start 10 is beyond EOD, truncated [ 1668.513220][ T6543] loop2: p60 start 10 is beyond EOD, truncated [ 1668.519390][ T6543] loop2: p61 start 10 is beyond EOD, truncated [ 1668.525545][ T6543] loop2: p62 start 10 is beyond EOD, truncated [ 1668.531773][ T6543] loop2: p63 start 10 is beyond EOD, truncated [ 1668.538000][ T6543] loop2: p64 start 10 is beyond EOD, truncated [ 1668.544145][ T6543] loop2: p65 start 10 is beyond EOD, truncated [ 1668.550296][ T6543] loop2: p66 start 10 is beyond EOD, truncated [ 1668.556445][ T6543] loop2: p67 start 10 is beyond EOD, truncated [ 1668.562600][ T6543] loop2: p68 start 10 is beyond EOD, truncated [ 1668.568838][ T6543] loop2: p69 start 10 is beyond EOD, truncated [ 1668.574992][ T6543] loop2: p70 start 10 is beyond EOD, truncated [ 1668.581177][ T6543] loop2: p71 start 10 is beyond EOD, truncated [ 1668.587337][ T6543] loop2: p72 start 10 is beyond EOD, truncated [ 1668.593604][ T6543] loop2: p73 start 10 is beyond EOD, truncated [ 1668.599780][ T6543] loop2: p74 start 10 is beyond EOD, truncated [ 1668.605931][ T6543] loop2: p75 start 10 is beyond EOD, truncated [ 1668.612106][ T6543] loop2: p76 start 10 is beyond EOD, truncated [ 1668.618309][ T6543] loop2: p77 start 10 is beyond EOD, truncated [ 1668.624456][ T6543] loop2: p78 start 10 is beyond EOD, truncated [ 1668.630618][ T6543] loop2: p79 start 10 is beyond EOD, truncated [ 1668.636850][ T6543] loop2: p80 start 10 is beyond EOD, truncated [ 1668.643179][ T6543] loop2: p81 start 10 is beyond EOD, truncated [ 1668.649404][ T6543] loop2: p82 start 10 is beyond EOD, truncated [ 1668.655572][ T6543] loop2: p83 start 10 is beyond EOD, truncated [ 1668.661728][ T6543] loop2: p84 start 10 is beyond EOD, truncated [ 1668.667952][ T6543] loop2: p85 start 10 is beyond EOD, truncated [ 1668.674109][ T6543] loop2: p86 start 10 is beyond EOD, truncated [ 1668.680268][ T6543] loop2: p87 start 10 is beyond EOD, truncated [ 1668.686415][ T6543] loop2: p88 start 10 is beyond EOD, truncated [ 1668.692616][ T6543] loop2: p89 start 10 is beyond EOD, truncated [ 1668.698872][ T6543] loop2: p90 start 10 is beyond EOD, truncated [ 1668.705040][ T6543] loop2: p91 start 10 is beyond EOD, truncated [ 1668.711224][ T6543] loop2: p92 start 10 is beyond EOD, truncated [ 1668.717408][ T6543] loop2: p93 start 10 is beyond EOD, truncated [ 1668.723547][ T6543] loop2: p94 start 10 is beyond EOD, truncated [ 1668.729731][ T6543] loop2: p95 start 10 is beyond EOD, truncated [ 1668.735943][ T6543] loop2: p96 start 10 is beyond EOD, truncated [ 1668.742184][ T6543] loop2: p97 start 10 is beyond EOD, truncated [ 1668.748370][ T6543] loop2: p98 start 10 is beyond EOD, truncated [ 1668.754527][ T6543] loop2: p99 start 10 is beyond EOD, truncated [ 1668.760682][ T6543] loop2: p100 start 10 is beyond EOD, truncated [ 1668.766928][ T6543] loop2: p101 start 10 is beyond EOD, truncated [ 1668.773236][ T6543] loop2: p102 start 10 is beyond EOD, truncated [ 1668.779562][ T6543] loop2: p103 start 10 is beyond EOD, truncated [ 1668.785867][ T6543] loop2: p104 start 10 is beyond EOD, truncated [ 1668.792140][ T6543] loop2: p105 start 10 is beyond EOD, truncated [ 1668.798402][ T6543] loop2: p106 start 10 is beyond EOD, truncated [ 1668.804687][ T6543] loop2: p107 start 10 is beyond EOD, truncated [ 1668.810945][ T6543] loop2: p108 start 10 is beyond EOD, truncated [ 1668.817187][ T6543] loop2: p109 start 10 is beyond EOD, truncated [ 1668.823431][ T6543] loop2: p110 start 10 is beyond EOD, truncated [ 1668.829703][ T6543] loop2: p111 start 10 is beyond EOD, truncated [ 1668.835951][ T6543] loop2: p112 start 10 is beyond EOD, truncated [ 1668.842225][ T6543] loop2: p113 start 10 is beyond EOD, truncated [ 1668.848499][ T6543] loop2: p114 start 10 is beyond EOD, truncated [ 1668.854795][ T6543] loop2: p115 start 10 is beyond EOD, truncated [ 1668.861057][ T6543] loop2: p116 start 10 is beyond EOD, truncated [ 1668.867305][ T6543] loop2: p117 start 10 is beyond EOD, truncated [ 1668.873589][ T6543] loop2: p118 start 10 is beyond EOD, truncated [ 1668.879845][ T6543] loop2: p119 start 10 is beyond EOD, truncated [ 1668.886103][ T6543] loop2: p120 start 10 is beyond EOD, truncated [ 1668.892344][ T6543] loop2: p121 start 10 is beyond EOD, truncated [ 1668.898603][ T6543] loop2: p122 start 10 is beyond EOD, truncated [ 1668.904876][ T6543] loop2: p123 start 10 is beyond EOD, truncated [ 1668.911142][ T6543] loop2: p124 start 10 is beyond EOD, truncated [ 1668.917401][ T6543] loop2: p125 start 10 is beyond EOD, truncated [ 1668.923648][ T6543] loop2: p126 start 10 is beyond EOD, truncated [ 1668.929935][ T6543] loop2: p127 start 10 is beyond EOD, truncated [ 1668.936215][ T6543] loop2: p128 start 10 is beyond EOD, truncated [ 1668.942526][ T6543] loop2: p129 start 10 is beyond EOD, truncated [ 1668.948792][ T6543] loop2: p130 start 10 is beyond EOD, truncated [ 1668.955080][ T6543] loop2: p131 start 10 is beyond EOD, truncated [ 1668.961404][ T6543] loop2: p132 start 10 is beyond EOD, truncated [ 1668.967664][ T6543] loop2: p133 start 10 is beyond EOD, truncated [ 1668.973903][ T6543] loop2: p134 start 10 is beyond EOD, truncated [ 1668.980285][ T6543] loop2: p135 start 10 is beyond EOD, truncated [ 1668.986526][ T6543] loop2: p136 start 10 is beyond EOD, truncated [ 1668.992783][ T6543] loop2: p137 start 10 is beyond EOD, truncated [ 1668.999197][ T6543] loop2: p138 start 10 is beyond EOD, truncated [ 1669.005448][ T6543] loop2: p139 start 10 is beyond EOD, truncated [ 1669.011799][ T6543] loop2: p140 start 10 is beyond EOD, truncated [ 1669.018056][ T6543] loop2: p141 start 10 is beyond EOD, truncated [ 1669.024294][ T6543] loop2: p142 start 10 is beyond EOD, truncated [ 1669.030558][ T6543] loop2: p143 start 10 is beyond EOD, truncated [ 1669.036798][ T6543] loop2: p144 start 10 is beyond EOD, truncated [ 1669.043047][ T6543] loop2: p145 start 10 is beyond EOD, truncated [ 1669.049357][ T6543] loop2: p146 start 10 is beyond EOD, truncated [ 1669.055754][ T6543] loop2: p147 start 10 is beyond EOD, truncated [ 1669.062039][ T6543] loop2: p148 start 10 is beyond EOD, truncated [ 1669.068348][ T6543] loop2: p149 start 10 is beyond EOD, truncated [ 1669.074612][ T6543] loop2: p150 start 10 is beyond EOD, truncated [ 1669.080919][ T6543] loop2: p151 start 10 is beyond EOD, truncated [ 1669.087163][ T6543] loop2: p152 start 10 is beyond EOD, truncated [ 1669.093550][ T6543] loop2: p153 start 10 is beyond EOD, truncated [ 1669.099806][ T6543] loop2: p154 start 10 is beyond EOD, truncated [ 1669.106059][ T6543] loop2: p155 start 10 is beyond EOD, truncated [ 1669.112318][ T6543] loop2: p156 start 10 is beyond EOD, truncated [ 1669.118590][ T6543] loop2: p157 start 10 is beyond EOD, truncated [ 1669.124832][ T6543] loop2: p158 start 10 is beyond EOD, truncated 19:17:51 executing program 5: r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) write$cgroup_type(r0, &(0x7f0000000200), 0xf642e7e) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x20) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r0, 0xc038943b, &(0x7f0000000180)={0x1, 0x30, '\x00', 0x0, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) r1 = open(&(0x7f0000000040)='./file0\x00', 0x143042, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f00000000c0)={0x0, r1}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r3, 0x29, 0x4b, &(0x7f0000000100)=0xfffffff7, 0x4) bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r3, 0x80089419, &(0x7f0000000100)) [ 1669.131083][ T6543] loop2: p159 start 10 is beyond EOD, truncated [ 1669.137345][ T6543] loop2: p160 start 10 is beyond EOD, truncated [ 1669.143631][ T6543] loop2: p161 start 10 is beyond EOD, truncated [ 1669.149991][ T6543] loop2: p162 start 10 is beyond EOD, truncated [ 1669.156230][ T6543] loop2: p163 start 10 is beyond EOD, truncated [ 1669.162487][ T6543] loop2: p164 start 10 is beyond EOD, truncated [ 1669.168800][ T6543] loop2: p165 start 10 is beyond EOD, truncated [ 1669.175042][ T6543] loop2: p166 start 10 is beyond EOD, truncated [ 1669.181307][ T6543] loop2: p167 start 10 is beyond EOD, truncated [ 1669.187584][ T6543] loop2: p168 start 10 is beyond EOD, truncated [ 1669.193832][ T6543] loop2: p169 start 10 is beyond EOD, truncated [ 1669.200143][ T6543] loop2: p170 start 10 is beyond EOD, truncated [ 1669.206388][ T6543] loop2: p171 start 10 is beyond EOD, truncated [ 1669.212652][ T6543] loop2: p172 start 10 is beyond EOD, truncated [ 1669.218950][ T6543] loop2: p173 start 10 is beyond EOD, truncated [ 1669.225199][ T6543] loop2: p174 start 10 is beyond EOD, truncated [ 1669.231692][ T6543] loop2: p175 start 10 is beyond EOD, truncated [ 1669.237959][ T6543] loop2: p176 start 10 is beyond EOD, truncated [ 1669.244198][ T6543] loop2: p177 start 10 is beyond EOD, truncated [ 1669.250500][ T6543] loop2: p178 start 10 is beyond EOD, truncated [ 1669.256784][ T6543] loop2: p179 start 10 is beyond EOD, truncated [ 1669.263124][ T6543] loop2: p180 start 10 is beyond EOD, truncated [ 1669.269419][ T6543] loop2: p181 start 10 is beyond EOD, truncated [ 1669.275659][ T6543] loop2: p182 start 10 is beyond EOD, truncated [ 1669.281928][ T6543] loop2: p183 start 10 is beyond EOD, truncated [ 1669.288205][ T6543] loop2: p184 start 10 is beyond EOD, truncated [ 1669.294448][ T6543] loop2: p185 start 10 is beyond EOD, truncated [ 1669.300705][ T6543] loop2: p186 start 10 is beyond EOD, truncated [ 1669.307043][ T6543] loop2: p187 start 10 is beyond EOD, truncated [ 1669.313458][ T6543] loop2: p188 start 10 is beyond EOD, truncated [ 1669.319725][ T6543] loop2: p189 start 10 is beyond EOD, truncated [ 1669.325974][ T6543] loop2: p190 start 10 is beyond EOD, truncated [ 1669.332238][ T6543] loop2: p191 start 10 is beyond EOD, truncated [ 1669.338645][ T6543] loop2: p192 start 10 is beyond EOD, truncated [ 1669.344949][ T6543] loop2: p193 start 10 is beyond EOD, truncated [ 1669.351230][ T6543] loop2: p194 start 10 is beyond EOD, truncated [ 1669.357607][ T6543] loop2: p195 start 10 is beyond EOD, truncated [ 1669.363883][ T6543] loop2: p196 start 10 is beyond EOD, truncated [ 1669.370157][ T6543] loop2: p197 start 10 is beyond EOD, truncated [ 1669.376426][ T6543] loop2: p198 start 10 is beyond EOD, truncated [ 1669.382694][ T6543] loop2: p199 start 10 is beyond EOD, truncated [ 1669.388987][ T6543] loop2: p200 start 10 is beyond EOD, truncated [ 1669.395258][ T6543] loop2: p201 start 10 is beyond EOD, truncated [ 1669.401527][ T6543] loop2: p202 start 10 is beyond EOD, truncated [ 1669.407814][ T6543] loop2: p203 start 10 is beyond EOD, truncated [ 1669.414059][ T6543] loop2: p204 start 10 is beyond EOD, truncated [ 1669.420344][ T6543] loop2: p205 start 10 is beyond EOD, truncated [ 1669.426633][ T6543] loop2: p206 start 10 is beyond EOD, truncated [ 1669.432897][ T6543] loop2: p207 start 10 is beyond EOD, truncated [ 1669.439150][ T6543] loop2: p208 start 10 is beyond EOD, truncated [ 1669.445433][ T6543] loop2: p209 start 10 is beyond EOD, truncated [ 1669.451691][ T6543] loop2: p210 start 10 is beyond EOD, truncated [ 1669.457985][ T6543] loop2: p211 start 10 is beyond EOD, truncated [ 1669.464270][ T6543] loop2: p212 start 10 is beyond EOD, truncated [ 1669.470597][ T6543] loop2: p213 start 10 is beyond EOD, truncated [ 1669.476854][ T6543] loop2: p214 start 10 is beyond EOD, truncated [ 1669.483178][ T6543] loop2: p215 start 10 is beyond EOD, truncated [ 1669.489457][ T6543] loop2: p216 start 10 is beyond EOD, truncated [ 1669.495857][ T6543] loop2: p217 start 10 is beyond EOD, truncated [ 1669.502110][ T6543] loop2: p218 start 10 is beyond EOD, truncated [ 1669.508368][ T6543] loop2: p219 start 10 is beyond EOD, truncated [ 1669.514773][ T6543] loop2: p220 start 10 is beyond EOD, truncated [ 1669.521016][ T6543] loop2: p221 start 10 is beyond EOD, truncated [ 1669.527353][ T6543] loop2: p222 start 10 is beyond EOD, truncated [ 1669.533591][ T6543] loop2: p223 start 10 is beyond EOD, truncated [ 1669.539871][ T6543] loop2: p224 start 10 is beyond EOD, truncated [ 1669.546153][ T6543] loop2: p225 start 10 is beyond EOD, truncated [ 1669.552416][ T6543] loop2: p226 start 10 is beyond EOD, truncated [ 1669.558949][ T6543] loop2: p227 start 10 is beyond EOD, truncated [ 1669.565303][ T6543] loop2: p228 start 10 is beyond EOD, truncated [ 1669.571576][ T6543] loop2: p229 start 10 is beyond EOD, truncated [ 1669.577843][ T6543] loop2: p230 start 10 is beyond EOD, truncated [ 1669.584085][ T6543] loop2: p231 start 10 is beyond EOD, truncated [ 1669.590377][ T6543] loop2: p232 start 10 is beyond EOD, truncated [ 1669.596673][ T6543] loop2: p233 start 10 is beyond EOD, truncated [ 1669.602933][ T6543] loop2: p234 start 10 is beyond EOD, truncated [ 1669.609308][ T6543] loop2: p235 start 10 is beyond EOD, truncated [ 1669.615577][ T6543] loop2: p236 start 10 is beyond EOD, truncated [ 1669.621860][ T6543] loop2: p237 start 10 is beyond EOD, truncated [ 1669.628171][ T6543] loop2: p238 start 10 is beyond EOD, truncated [ 1669.634418][ T6543] loop2: p239 start 10 is beyond EOD, truncated [ 1669.640676][ T6543] loop2: p240 start 10 is beyond EOD, truncated [ 1669.646994][ T6543] loop2: p241 start 10 is beyond EOD, truncated [ 1669.653347][ T6543] loop2: p242 start 10 is beyond EOD, truncated [ 1669.659684][ T6543] loop2: p243 start 10 is beyond EOD, truncated [ 1669.665937][ T6543] loop2: p244 start 10 is beyond EOD, truncated [ 1669.672195][ T6543] loop2: p245 start 10 is beyond EOD, truncated [ 1669.678470][ T6543] loop2: p246 start 10 is beyond EOD, truncated [ 1669.684750][ T6543] loop2: p247 start 10 is beyond EOD, truncated [ 1669.691023][ T6543] loop2: p248 start 10 is beyond EOD, truncated [ 1669.697306][ T6543] loop2: p249 start 10 is beyond EOD, truncated [ 1669.703586][ T6543] loop2: p250 start 10 is beyond EOD, truncated [ 1669.709833][ T6543] loop2: p251 start 10 is beyond EOD, truncated [ 1669.716149][ T6543] loop2: p252 start 10 is beyond EOD, truncated [ 1669.722396][ T6543] loop2: p253 start 10 is beyond EOD, truncated [ 1669.728712][ T6543] loop2: p254 start 10 is beyond EOD, truncated [ 1669.734947][ T6543] loop2: p255 start 10 is beyond EOD, truncated [ 1669.742779][ T6596] loop4: p1 p2 p4 [ 1669.746635][ T6596] loop4: p1 start 10 is beyond EOD, truncated [ 1669.752747][ T6596] loop4: p2 start 327680 is beyond EOD, truncated [ 1669.759340][ T6596] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1669.766502][ T6599] loop3: p1 p2 p3 p4 [ 1669.771204][ T6599] loop3: p1 start 10 is beyond EOD, truncated [ 1669.777424][ T6599] loop3: p2 size 1076690944 extends beyond EOD, truncated 19:17:52 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffffa5800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:52 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x1083, 0x0, 0x0) 19:17:52 executing program 5: perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x104, 0x1, 0x0, 0x20000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x1) clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000380)="1a01", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r2 = getpgid(r0) process_vm_writev(r2, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) tkill(r0, 0x40) wait4(0x0, 0x0, 0x0, 0x0) move_pages(0x0, 0x0, 0x0, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x7ffffffd], 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r3 = gettid() tkill(r3, 0x25) [ 1669.786545][ T6599] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1669.793398][ T6599] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:52 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000006000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1669.830406][ T1037] loop3: p1 p2 p3 p4 [ 1669.834540][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1669.840630][ T1037] loop3: p2 size 1076690944 extends beyond EOD, truncated [ 1669.866287][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1669.873664][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:52 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000314000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1669.879507][ T6652] loop2: detected capacity change from 0 to 1 [ 1669.880833][ T6646] loop1: detected capacity change from 0 to 512 [ 1669.899034][ T6646] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1669.916311][ T6646] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1669.918495][ T6652] loop2: p1 p2 p3 p4 [ 1669.925928][ T6646] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1669.935339][ T6652] loop2: p1 start 10 is beyond EOD, [ 1669.937198][ T6646] ext4_test_bit(bit=16, block=18) = 0 [ 1669.937178][ T6652] truncated [ 1669.942492][ T6646] EXT4-fs mount: 6 callbacks suppressed [ 1669.942503][ T6646] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1669.947862][ T6652] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:52 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) setresuid(r1, 0xffffffffffffffff, 0xee01) r2 = geteuid() ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000080)=0x0) setresuid(r1, r2, r3) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x3, &(0x7f0000000340)=[{0x5}, {0x4d, 0x8}, {0x6}]}) close(0xffffffffffffffff) 19:17:52 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe5}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) writev(r0, &(0x7f0000000780)=[{&(0x7f0000000100)="df", 0x1}], 0x1) getsockname(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000140)=0x80) close(r1) sendmmsg$inet(r0, &(0x7f0000002e40)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000002c0)="3f23b529049f41213edfd571fdac3c003096f4a117a999490cb70f025c4599055a980e537b87de129f351bca95f7aeefc6fd4365f5804982c0dac803be2be695e779b0ef46b0dd74d0e2f1f4278b997a091da616709a59f77be1c46bb12b29292def64f6e4ae156f94270302c721c92615a9824a19eaac1dfacf075c52882f0a7221159f8f851d0063b634bb06c8739646cf7e73c08772ed57b9ed2c3d3bf979188a018a13ba2354b27f389f477580ac6fcb8be0a3f7a3c55d3c6a39084e13afeb6e24c89dad4e8ca64ecced96193180389cfb3d6fe57635f07c36e43c416b01b03837e2298eafbae009b1d92f5fc60439dd0949c8e81d29", 0xf8}, {&(0x7f00000004c0)="25310fae7f05314dcec680a1b15185874621b721d2e2d2079e5d0f9b24414b38420f322ae7cec20fb03284401d9023d61157eee986745b4219acd885efe0fd82e36b0d2e21f3b0154b9b0ec90c8cfe5cd0ebaa56028965abb92e2d1fd21bff2b47083e5437be7a0222cf62c31adb046f5a8f69571bdc9dc068e341b5e0ace7a87e019babe2d9598092cdad05c2948dff61d83bc4dcb3ef4914210068b754fef2a1d41a48df22a325a82aeb3076ee22c5a12799d0975d3fba29704bb219847695336d14b1fb4ab783d221a82199f889526a7d9fe8be1d109961abdb7b80e123da3f55ae3aecc25c072c735c303f", 0xed}, {&(0x7f0000000640)="248128665f7c39236ccec8e77c987bdc32c6bd0251b85b28c0112f28d66c83c6503fbbf4c02976997c60d2912ad720add185ea0702b5056435e5e85c22b00a33b7e718ad17b2855d62fa0ea9719344307a18b954fc30077226ab8536b2be6e5fbe8f9f700985b8c02138e874396707e36979e9a295263f8fb0596f4f5eb1f17028f4443f84cdb31b1a", 0x89}, {&(0x7f00000007c0)="d0d2eb07cca0296eb2b3eaf13cf0c1545516c7b23e76b08a72df1cbf75131630c69d5d91bd8dbed0ab5563df90c5ff74399a46f21a2c6e9452fdc8b9964284e2ac58b38d77cc50c3fd87c2359ed785ba464187785d54363ac6a4cd029cbdcdc61c6900e6a5f2adaa5ae033af28e7c9dcdf3616dee008c84480bb40d0c7b4e54a88f95cc8c65f7ba17fea7dc43627f21d99fbd11a24a84669711d443bccb8b5f58513d7bccf9f536adf2f4d", 0xab}, {&(0x7f0000000080)="af5f3879a40d43ebb76a3f9eb042d41a5b1e4d9fe6ee70f852195e4fea6886f0a9c98a7a451e5fdade", 0x29}, {&(0x7f0000000880)="39513b0fc9aef9dbab9490ce3e1f753bd28786a1da9ac5beef4e05209bbc84682dddecbff59491a9ea337f5b1f2c0d47dc634d9f0c863bf4a9fd5eba89b0e20df5049d1476b1345399ab1d4ba5d17e22f5685a84dc22bdc5fa2d7c67e3c15a11011d0dbde5d19038c58efa5881a553cd00ea88f8069fbeb1c70d1de0246c9f9a472b18df8d66672eea0679f8ff181320255fcf49c3905aa96862bee0b6895d4a2948d1294f8030dd29b7b3fa51a86723e1e8fbb3e55c38aabffeef5f3013febea4a73482d90ba10f910488385942b429a0175c74d94fed0f66", 0xd9}, {&(0x7f0000000980)="1288efc8afea12a52f405b53e363f225a32d9ca6dcb5314b9b8ee9280b6f995fb296977356364ed72562055777e41ddc3076e903fa626a389f1b7da2fcd44bc2ff48ecd54ee859330472e66cc0d3ef289d728acc63c2d51c18449bdda11a", 0x5e}], 0x7}}], 0x1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) [ 1669.982380][ T6652] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1669.989216][ T6652] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1670.006337][ T6678] loop3: detected capacity change from 0 to 1 19:17:52 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000006000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:52 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffffa6800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1670.047997][ T6681] loop4: detected capacity change from 0 to 1 [ 1670.048081][ T6678] loop3: p1 p2 p3 p4 [ 1670.060703][ T6678] loop3: p1 start 10 is beyond EOD, truncated [ 1670.066853][ T6678] loop3: p2 size 1076953088 extends beyond EOD, truncated [ 1670.088796][ T6681] loop4: p1 p2 p4 [ 1670.095463][ T6681] loop4: p1 start 10 is beyond EOD, truncated [ 1670.101581][ T6681] loop4: p2 start 393216 is beyond EOD, truncated [ 1670.108060][ T6681] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1670.111656][ T6697] loop2: detected capacity change from 0 to 1 [ 1670.127335][ T6678] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1670.134171][ T6678] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:52 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008000000000000003f4000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1670.143382][ T6703] loop1: detected capacity change from 0 to 512 [ 1670.152802][ T1037] loop3: p1 p2 p3 p4 [ 1670.156910][ T6681] loop4: detected capacity change from 0 to 1 [ 1670.156950][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1670.169295][ T1037] loop3: p2 size 1076953088 extends beyond EOD, truncated [ 1670.177432][ T6697] loop2: p1 p2 p3 p4 [ 1670.181555][ T6697] loop2: p1 start 10 is beyond EOD, truncated [ 1670.187677][ T6697] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1670.197806][ T6681] loop4: p1 p2 p4 [ 1670.200884][ T6697] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1670.201940][ T6681] loop4: p1 start 10 is beyond EOD, [ 1670.208347][ T6697] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1670.220745][ T6681] truncated [ 1670.223846][ T6681] loop4: p2 start 393216 is beyond EOD, truncated [ 1670.223966][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1670.230291][ T6681] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1670.237046][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1670.267550][ T6703] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1670.276114][ T6703] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1670.283381][ T6703] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1670.293751][ T6703] ext4_test_bit(bit=16, block=18) = 0 19:17:53 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000406000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:53 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x2000, 0x0, 0x0) 19:17:53 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffffa9800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1670.299152][ T6703] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1670.376971][ T6736] loop3: detected capacity change from 0 to 1 [ 1670.413081][ T6741] loop4: detected capacity change from 0 to 1 [ 1670.419966][ T6736] loop3: p1 p2 p3 p4 19:17:53 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000406000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1670.424317][ T6736] loop3: p1 start 10 is beyond EOD, truncated [ 1670.430532][ T6736] loop3: p2 size 1077870592 extends beyond EOD, truncated [ 1670.449777][ T6746] loop2: detected capacity change from 0 to 1 [ 1670.453316][ T6736] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1670.462861][ T6736] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1670.497534][ T1037] loop4: p1 p2 p4 [ 1670.502138][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1670.508267][ T1037] loop4: p2 start 393216 is beyond EOD, truncated [ 1670.513094][ T6746] loop2: p1 p2 p3 p4 [ 1670.514703][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1670.527082][ T6741] loop4: p1 p2 p4 [ 1670.532399][ T6741] loop4: p1 start 10 is beyond EOD, truncated [ 1670.538548][ T6741] loop4: p2 start 393216 is beyond EOD, truncated 19:17:53 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000644000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1670.540472][ T6746] loop2: p1 start 10 is beyond EOD, [ 1670.544976][ T6741] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1670.546380][ T6759] loop1: detected capacity change from 0 to 512 [ 1670.550559][ T6746] truncated [ 1670.550566][ T6746] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1670.575660][ T6759] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1670.584194][ T6759] EXT4-fs (loop1): orphan cleanup on readonly fs 19:17:53 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000007000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1670.590729][ T6759] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1670.601144][ T6759] ext4_test_bit(bit=16, block=18) = 0 [ 1670.606545][ T6759] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1670.618576][ T6773] loop3: detected capacity change from 0 to 1 [ 1670.624976][ T6746] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1670.631820][ T6746] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1670.657501][ T6773] loop3: p1 p2 p3 p4 [ 1670.661893][ T6773] loop3: p1 start 10 is beyond EOD, truncated [ 1670.668130][ T6773] loop3: p2 size 1080295424 extends beyond EOD, truncated [ 1670.686256][ T6785] loop1: detected capacity change from 0 to 512 [ 1670.694803][ T6785] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:17:53 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000007000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:53 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000009000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1670.703182][ T6785] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1670.709775][ T6785] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1670.720194][ T6785] ext4_test_bit(bit=16, block=18) = 0 [ 1670.725579][ T6785] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1670.736796][ T6773] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1670.743648][ T6773] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1670.754613][ T6795] loop4: detected capacity change from 0 to 1 [ 1670.825535][ T6795] loop4: p1 p2 p4 [ 1670.829641][ T6795] loop4: p1 start 10 is beyond EOD, truncated [ 1670.835742][ T6795] loop4: p2 start 458752 is beyond EOD, truncated [ 1670.842322][ T6795] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1670.844474][ T6810] loop1: detected capacity change from 0 to 512 [ 1670.864855][ T6810] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1670.873830][ T6810] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1670.882111][ T6810] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1670.892607][ T6810] ext4_test_bit(bit=16, block=18) = 0 [ 1670.898051][ T6810] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:53 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffffa5800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:53 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffffbf800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:53 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x3000, 0x0, 0x0) 19:17:53 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000001644000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1670.927257][ T6795] loop4: detected capacity change from 0 to 1 [ 1670.977284][ T6795] loop4: p1 p2 p4 [ 1670.981282][ T6795] loop4: p1 start 10 is beyond EOD, truncated [ 1670.987386][ T6795] loop4: p2 start 458752 is beyond EOD, truncated [ 1670.993859][ T6795] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:53 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00000a000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:53 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffffa5800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:53 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffffa5800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1671.033656][ T6835] loop2: detected capacity change from 0 to 1 [ 1671.049044][ T6833] loop3: detected capacity change from 0 to 1 19:17:53 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) clone(0x2000000000200500, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x20000080000000, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') write$binfmt_misc(r0, 0x0, 0x0) fchdir(r1) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0x0, 0x0}) sendmmsg(r2, &(0x7f0000008600)=[{{0x0, 0x0, &(0x7f0000003140)}}, {{&(0x7f00000072c0)=@un=@file={0x0, './file0/file0\x00'}, 0x80, &(0x7f0000007380), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x48}}], 0x2, 0x0) 19:17:53 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000008000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1671.101232][ T6833] loop3: p1 p2 p3 p4 [ 1671.105313][ T6833] loop3: p1 start 10 is beyond EOD, truncated [ 1671.111396][ T6833] loop3: p2 size 1080295680 extends beyond EOD, truncated [ 1671.119463][ T6835] loop2: p1 p2 p3 p4 [ 1671.124035][ T6835] loop2: p1 start 10 is beyond EOD, truncated [ 1671.127821][ T6841] loop1: detected capacity change from 0 to 512 [ 1671.130172][ T6835] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1671.147859][ T1037] loop4: p1 p2 p4 [ 1671.151841][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1671.152248][ T6835] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1671.157957][ T1037] loop4: p2 start 458752 is beyond EOD, truncated [ 1671.157976][ T1037] loop4: p4 size 3657465856 extends beyond EOD, [ 1671.164734][ T6835] loop2: p4 size 3657465856 extends beyond EOD, [ 1671.171231][ T1037] truncated [ 1671.181540][ T6833] loop3: p3 start 2127165541 is beyond EOD, [ 1671.183954][ T6835] truncated [ 1671.196308][ T6833] truncated 19:17:54 executing program 5: r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000080)=[{&(0x7f0000001440)="7a737f9d5b207d022b65899c0072507298cb40cf71d9c713cc6b68b8178002bba4b5c820d6a546baa7e5597d1c2fb27357077eae602e9db57bbb2f6fd20c097631410791441a0487232cb4a91afbaa90cea23f0f8a0220686bfb625feafe5b9db1ab2e18703186543c1bb5283733cb037fa8fd723d3c2a03dba699541cba13c6d6e7cae84aaccea718914d48386956fd8d32a5f9585b6cf26f53122b2d66e9261add9f8b09534182c4b9b33e0d9ca74dc180d8619ecb9b2bc9cc34db830ea7e2f5d3bbc9510c264b4a2d7f20fb6957a224d759938624606fb9e88f2c378b428d31e105278a503cc1cb586a17463ebf14775137fa10c27b22bf6ddb1a972341a92da0cea87ac693a869e583c55e06e5bfeef074cb97d8bb8aca81f949134f6af6824850ff6c19d10a42e65c8808075775da6b645614b17eeeb18c8a58d63e9794c2fe1d1d5e25246243ff2fe88200d1560176f9bb7856a78db9ec7fa4c814237a4e300ae0aa3057e6a605bbfbe26d3eab27758a7ccd837eaa203949246cddf945d6c1b19a8344ec2470d906cb8340d6cdabbe81733959af6ece63300085161e841465c3dd8e3f3fe90b618ffa9026798c8399a82fee34aac539e0d1e8c8542482ce486fbc0a46e9e58c25391745e3fccb99597f8ddebe4ca4cd6fa19e792ec39c22f23748f28f41f29b617bc374b8aca95a9e16b4a7964b62e5ce2bbdb2d32a94dcb4691f20bd93fb5eefa014f502694c8f68448a9b2a92c36cd9bbbacac7df6494da27bf49948bf9a4800ab0b4dc2b396caf43433d610f0366f73488a505086f1d7a065be193be4b4e55db184f87b5dfb6d759d8540cb2511b10b7c2098e194cc9801454dcf659d2f343887f161987bb458fff7bb9714324520fbed37ce428e260f0956021133e25907ab665531f50504d556f11c820f968dfa048d8d88cb7080eb34fc58d3ee1d39b830d4bfc2fa7ec2653754de0afa7aae56ec079f9ecc42b38b1b118607589e7e0ef09081b9357a32bcbbbadf93549c48c267955d258a9d2b36342ca3aac6565361ab7da08d02b51cfc7eb8fa45f82b146ae8da9295edfc787fa2a1f07e918101b990d38595a20eb15b51607eabbe95dc793ca24239ce45e204a329597c175ddf1ebfab6232169033bee6dade3aa0445e133ac423bf6695d1b71d7ce947a22db5cd00f7bc665197fc05475171e5db57db82970723c9030e27f847fd39ee7b41b369fd516c8ef4d083c3d4bac2d98812354ec8d9cce810f0a03958f6c948a7c860aaf98c6dad359034dc446aa119f01f0b21ad28ca4ebb3124f6a73cd36ec833c670f89cbd9a9e3b87f076ec81c34cc9abf1a27d55f20a9f51d30331f7e37964eb0a16aa2e73797eba0c22d7e9cdf20aa20291375e515d92e65dc653ef1e659ba9e92f2fd96a925559134d77b23e91b33c8661a3df0265540b793a57acee4498d12d5a91ed0a2ea62602f291854b2ae52f1ed81d58d7ddcee348471204ed4a1758201ab0f071f687eb8a0d71054e366434d938a74e4e7be8cf57237603d259c9fa65df621fae8a0c3fb31257f65dfdc08a9878dc24ef1f9f6342a7495d4b158146d593e6574a6ddbf4bc40f1afd30ab20f5f159a0dea753e2e263fd9540b99125a45e9c4178f9ba7cb947d9cccda48ee27e3f383ecbe243777e541f273dd0ea4f468d33221459ca69e9a842c7d9e93e9f4d1fd19259f3f5ac39945c4bbf7507bfdd47993eeee7dcee851caced91c25be95e6e74e6860f19f7db36234f92db05b024d68e679436662784d4ed2e5feb4e395ae76aca8a4db23408e0fa65ba05bcb6b7d5b2176c98137b932ce18529768e2ffcd34fa20a94ce23131148898ddd998e41faf59d69e52108baef316b5698992d9cfb577d67b1f11be1fa6a11bdb9489c5d046d924410388e53e102dbc0bfd6e24e34071f7fd9af27bd26502d687ef0f8a1b7bfe61c6fdd0eab4a325f51bd0e20a8377d61025904fd0a7e5aa7dc730d9d0befa87dc248ab8ed15011e04044fe725851a0d838e156d5ed90166d47ef7feab38dbafea3e56204ccf36b3d85f34ea279b6006fb3443c4aee697ce1af8d04743e23359a81a7fb32ea85408ae341995bac6be367bffef1e084148941770d486698f6354fbae01267bc21e035ee93cbb7cbf76333524749b591f7a2231be228b648e3b343746d06313c77a91799869f7cd0deaa1237168e30acc74c5fbdc0c53ed1677536d9a17f6fe64190e468ae88b9b7546fdbb3431486e4202d2351af5237c08ef9ed278d068350b9768efbd8ed100378425eb99a51f021f95bd0c0094de9b8f752d7c26a3b1056e63fa5df16d0e1e5238c4d64f95e11931d6b8033f3339022534684806ad7bd9de28fae8a42b65b3195638d6580d4a00108b04f06dce4a5d04f739bc1d8a45207130f7b4d24f82971414f09f09cdc962e408840efdd08bbfcb71c74169004880efe8379115baefa6698c31442d58ade96e81b804374663eba49ac5c617a7bab275de156e606f0c6a5d0340132fd5890bbdb491e05d9e31245fe1a778d1db1335ed4be7c0c598175d51a760c36691a40c598c2698ca1467dc3691c99f91304134c59b4dd2119a923ad464dfc45f2995ba5099023bf6d5eac9046bb0312196a995bd14f8d0ea0e9ad1f2a59833bd9c20f634b1e3193b78fa4e6b58faef6cc16e41c027f85474e3949bc07995d6c918d4f229e70cd8378a511dbdbc1f63386011801c488c118cd21d08c79d0ae367286b9b708f34c67d3df13609e28a89e9e0f288203e4700eddbf33dad76ff27471006278584078f93d1c99e031286c78cdab87e160a0dafefefeb0f279191ecd1a8e0f0669a560ed1ff9bae90e15855ced645b2ea8c85bc542e7bf8f5b21e53db850683c3dcb284666f0a45460cfd7e6940224832719ce11537c5dc8456ecdbcc967a09cdab56e0a11cdbf980bb4f8b4329c05c50523a6aa26fdf2e8a7d1db98ebf38927d69a2ceb6a7f411ae29508dd585a557d853f7fb78b2529a4f37a0e4b5bcffc90fef56a6f36563191d26ecdf0420afe860d62b8b833335f8291c7c6c484fcc2ab68623d450c8d0bb1323e72ffec007491b283d97b0b325c664ab67439480ce5392ee8da716b05e15e8567f73c3cf5d7722e96ee2555e4e28ba2fde142ef8e3021ddd4a47a5bc6782a2daf325db0815649b8fd208ec91e02bc6d7f8c66d6de3ea54ce0d4cd328f200339fe9989a5d82cf1951730a3a37a2a504d9c7b06308d6563dff7cf38aae8b70f02f7e3bee20a577c4cb8184c3e8f62e5a469bf74c22b30650c6708ac190e7815e5ba845ec151769f2054c7c9b80b34585b1ff6cd3e1132ede086661b1164b83c9503325513961be7082c8032db3025124fe3c70635e81530c6a344589b9d6a28be6a072bfd8f2dd14f7b02c4f0ac2c4b08dfa5370a82d0964976ee5afeb0f7c99e2ac0dac997491b5f468356ee2f3a51ff2e84659847a57d22d64247d9b8c3a3214ec98da4e168b788bbf67b5a18240bb809a3d1fe4b5922905f29a6b4f9ca971b50f3ae58d3aa33a0631bf3b4a58380c48a1bc3ebffa3f5b985819933dbf9dd7d64b21267efdf032d0df8a1ef021b99d4e7340c105e8f34e4e27f0382b7dbc978f53a1915580f69474f05acf7ddc28f7ef56c54be4483afbcc4b25569d870930d11e18c1f4a0c9005e76607aaca01f12e04889fedd057df448141e7c272f5436de17be3319940dab63c4ca902d0f4145e7b41eaa57cd259b23173e623808585e227ca5c08596c3d4a95b498d4f866af978c27d0929d2c0886bd851492b04437000093d8d31048d6baef201557f1999f9a7ac3abce53bf1fb68c31eed6304a1de7070cdcbfedc52abda18dce6c035cb61d3099255ca17167adf32b2dd28caaf77a85f9e5dcfcd2668448175cda137c5b5fe21578aa1b7f1395dda92781bf56b6be378908c35f91567892008ccb90414494f29efb1f4d280eeb087e63a6d060a100cc247102e7d0becad307d5e864437dc65a382aa8467aed3decca61737008f03eb0521cd5158d3baddc527b746b95de139a77b76b5eef5871d9b59896cacd3aefc88d2d7719c1edf77524e562edc343dfe9e8ac7196fd1fd28574f692bae0f60b413923f5fdf81e11cb7eb276856529eea29b8c8738be79a55341cea74c0d4b691beae822093c4d5c4e873e20c608a056f6cdd1e906fd295c210a3179102d2fa3cdd0d742e93ac74c37be0d1efb439900af0e41c5d51e8bce01fa286cd62b1b21245b96b48a72c1e2b0b71cdafed7b2d620bd0468ac931bdd73a2160dd2dc1b861fbcdf10f437df5a19349857bb1055e5429d214f69ddb32cbbd9d9448f3463925d8042dc8805b1cae284d87ccbdc18aba39d22bd5b0a611ef47abcceb2fc5eceba0891fe53791b5159df7e07f7f0cc7a5a743e1c780a47c02e7686566e491342c6acdfa74a611d66697ba49ab264a12224d49e8b074ea5cf7778a79c3db63b391a02fe058100456fd7316cd455495eec7795f76779adb5e2c421e78ae719723ad02ebbd794c9c4600b5aec99a83e3c4ff1bbd8b87ae981ce9e364ab115097682d2daff6b2ae1b365a9ca0d026d248baae4b876531443edf9c01ee28da48125c0ca0b169b311268208399ce21d286c3a748f5ee34e092f97f67c449cc1e35d8b269f89114b1834d0bfd89fa07a77277964acb8b32cf14ed6b8b070bc9a1d8f85df11f5d0f14939a55b98a46dda14551932c82dce34eefb3a4f50f566426c2569ea489791f8fc28faa355155cf4b0e5b40e332b3ad7d660ef8fa81603d5dadae040462379dadce83d9c0bb421798b2de05e0c1cc2dd0594c26e4cd2274fb54656d4695d6855cc51979d74c610bdfba7c957145ab447f6e3d313939a5dcdd45880f3f946a0df5b45a92353f95531fc52d0cb1889a1ac6ec3a9e15a3f0b766e32e04dd1f32f17967e0f6f38398377458e95f6a7e4b96684ab338daa05dc7e26430cde408ad734c3354b877729468f2cd70c75c57934f5aaab7bb6251401b2f1eefde923017f8712dee4706a6e40fd5bf8bce803be29812dae06e162f020b35d7154466210e756d9760252a9926060c3bd9a76b33e4322da0629b4fe2f61c09bc6776efc337665510d1635b11e9543cd998775ca9f226b2ab9f024d4c5e27ac67957bfdc342a7e45cc0272d93d81c4eb392f1a125b2a07a60fa3fb39affd14bfb453b85239e553281232eaabd4aed5114ff090b6952328fbee40df4931b14083d89379e0343febd9ac09711b7409ccca9bfe2837db0e3173c758908bc96039d3208f3b9902fe57be452a419b93da21b080553d97bab3a401f37576f9a1fd6edb09203626883cc96aeb98a6a4674b2114151a862db702621011619d95efd7c82650840f6182e27181e0ac3164eeae95a6b6ee19a6ae991e1f2fc8d7d5157fa184b415da87fa60c79c54089392332702fc182fafcdc7522b85a9021430c27ca8832fca3b281ce154596c1e5351e04c9a2cc64b06bddf818f94f8f3927a5de0889158b016feebea3a900b79d8b4754069924fddf4788f512bbd2c84c2f385c7af546108411fe35c73414b6b4c9f977a1179d8e71be6206ec45e526193e002270afa8b2a4928488e2f41e681a5e49636622637e6c6951b0c064cb93bb1872f49e497bae", 0xfa9, 0x56}], 0x0, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x10000, 0x20) r2 = socket$inet6_icmp(0xa, 0x2, 0x3a) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000000c0), &(0x7f0000000140)=0xc) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x18, &(0x7f0000000100)=0x6, 0x36) bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c) sendfile(r3, r0, &(0x7f0000000040)=0x100000000, 0xe0) ftruncate(r1, 0x800) preadv(r1, &(0x7f00000002c0)=[{&(0x7f0000000180)=""/185, 0xb9}, {&(0x7f0000000240)=""/112, 0x70}], 0x2, 0x200, 0x2) [ 1671.199445][ T6833] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1671.206835][ T6841] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1671.226319][ T6841] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1671.232822][ T6841] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1671.243252][ T6841] ext4_test_bit(bit=16, block=18) = 0 19:17:54 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00000b000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:54 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x810}, 0x24000000) r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)={0x58, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x4}, {0x5}, {0x5}, {0x5}, {0x5}, {0x5}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}]}, 0x58}}, 0x0) 19:17:54 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000a00000000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:54 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffffee800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1671.248638][ T6841] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1671.284101][ T6867] loop4: detected capacity change from 0 to 1 [ 1671.328080][ T1037] loop4: p1 p2 p4 [ 1671.335544][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1671.337175][ T6891] loop1: detected capacity change from 0 to 512 [ 1671.341679][ T1037] loop4: p2 start 524288 is beyond EOD, truncated [ 1671.354345][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1671.373342][ T6891] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1671.376914][ T6903] loop3: detected capacity change from 0 to 1 [ 1671.385780][ T6891] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1671.396029][ T6906] loop2: detected capacity change from 0 to 1 [ 1671.397040][ T6891] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1671.412459][ T6891] ext4_test_bit(bit=16, block=18) = 0 [ 1671.417960][ T6891] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:54 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x4000, 0x0, 0x0) 19:17:54 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffffbf800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:54 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00000c000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1671.431564][ T6867] loop4: p1 p2 p4 [ 1671.437573][ T6867] loop4: p1 start 10 is beyond EOD, truncated [ 1671.443737][ T6867] loop4: p2 start 524288 is beyond EOD, truncated [ 1671.450289][ T6867] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1671.458273][ T6903] loop3: p1 p2 p3 p4 [ 1671.462337][ T6903] loop3: p1 start 10 is beyond EOD, truncated [ 1671.468450][ T6903] loop3: p2 size 10 extends beyond EOD, truncated 19:17:54 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffffbf800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1671.477812][ T6903] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1671.484582][ T6903] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1671.506100][ T1037] loop3: p1 p2 p3 p4 [ 1671.510645][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1671.516723][ T1037] loop3: p2 size 10 extends beyond EOD, truncated 19:17:54 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480fffffffd800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:54 executing program 5: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffffbf800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1671.537697][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1671.544493][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1671.552755][ T6867] loop4: detected capacity change from 0 to 1 [ 1671.568149][ T6938] loop1: detected capacity change from 0 to 512 [ 1671.576786][ T6938] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1671.585852][ T6938] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1671.587345][ T6867] loop4: p1 p2 p4 [ 1671.593290][ T6938] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1671.606289][ T6938] ext4_test_bit(bit=16, block=18) = 0 [ 1671.611721][ T6938] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1671.638359][ T6951] loop2: detected capacity change from 0 to 1 [ 1671.642696][ T6867] loop4: p1 start 10 is beyond EOD, truncated [ 1671.650679][ T6867] loop4: p2 start 524288 is beyond EOD, truncated [ 1671.657218][ T6867] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1671.699868][ T1037] loop2: p1 p2 p3 p4 [ 1671.704238][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1671.710413][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1671.719205][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1671.725994][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1671.735852][ T6951] loop2: p1 p2 p3 p4 [ 1671.740157][ T6951] loop2: p1 start 10 is beyond EOD, truncated 19:17:54 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000009000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:54 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000040000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:54 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00000d000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:54 executing program 5: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000380)) r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x208242) openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f00000000c0)={0x0, 0x0, r2, 0x400}) openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x581602, 0x1) [ 1671.746262][ T6951] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:54 executing program 5: creat(&(0x7f0000000000)='./bus\x00', 0x0) r0 = open(&(0x7f0000000780)='./bus\x00', 0x10303e, 0x0) r1 = creat(&(0x7f00000001c0)='./bus\x00', 0x0) r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x6000) io_setup(0x1, &(0x7f0000000080)=0x0) ftruncate(r2, 0x81fa) fallocate(r2, 0x0, 0x0, 0x7) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x2, 0x0, 0x1299}) io_submit(r3, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f0000000000), 0x16000}]) ftruncate(r1, 0x208200) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x601c00, 0x7ffffe, 0x4002011, r0, 0x0) [ 1671.788462][ T6968] loop3: detected capacity change from 0 to 1 [ 1671.794948][ T6951] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1671.801762][ T6951] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1671.820177][ T6975] loop1: detected capacity change from 0 to 512 19:17:54 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x4200, 0x0, 0x0) [ 1671.847648][ T6968] loop3: p1 p2 p3 p4 [ 1671.852546][ T6968] loop3: p1 start 10 is beyond EOD, truncated [ 1671.858678][ T6968] loop3: p2 size 262144 extends beyond EOD, truncated [ 1671.872371][ T6968] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1671.879189][ T6968] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:54 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ff020081800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1671.890965][ T6975] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1671.890996][ T6987] loop4: detected capacity change from 0 to 1 [ 1671.899660][ T6975] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1671.914865][ T1037] loop3: p1 p2 p3 p4 [ 1671.919560][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1671.925724][ T1037] loop3: p2 size 262144 extends beyond EOD, truncated [ 1671.932961][ T6987] loop4: p1 p2 p4 [ 1671.933057][ T6975] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1671.938278][ T6987] loop4: p1 start 10 is beyond EOD, truncated [ 1671.947068][ T6975] ext4_test_bit(bit=16, block=18) = 0 [ 1671.953118][ T6987] loop4: p2 start 589824 is beyond EOD, truncated [ 1671.958493][ T6975] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1671.964908][ T6987] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1671.980906][ T7006] loop2: detected capacity change from 0 to 1 [ 1671.989772][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated 19:17:54 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x800006, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x7c, &(0x7f00000002c0)="c4c691019919da078a0098d1e0a59320ff79b040f762910016775a8454cc16dc38f06ee04fa4ea57ff22ea97be19af3dcba01419cd2386ad59157689bce0e2db60713a3a7eeba5c9c6a47312334c2a97a4837714569255344e22045dffbcd48a70502173d6efa56b60f48cf0c9d0989ecbbfc220bd2b39df9ad8d6b1"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040), 0x4f}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x17) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) r2 = gettid() tkill(r2, 0x34) 19:17:54 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000000200000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1671.996585][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1672.017468][ T7006] loop2: p1 p2 p3 p4 [ 1672.037588][ T7006] loop2: p1 start 10 is beyond EOD, truncated 19:17:54 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00000e000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:54 executing program 5: perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000480)={0x0, 0x0}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/power/state', 0x2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendfile(r0, r0, &(0x7f0000000000)=0x7, 0x3) preadv(r0, &(0x7f0000000400)=[{&(0x7f0000000140)=""/201, 0xc9}, {&(0x7f0000000040)=""/4, 0x4}, {&(0x7f0000000300)=""/243, 0xf3}, {&(0x7f0000000240)=""/44, 0x2c}, {&(0x7f00000004c0)=""/142, 0x8e}, {&(0x7f0000000580)=""/132, 0x84}, {&(0x7f0000000640)=""/232, 0xe8}, {&(0x7f0000000280)=""/56, 0x38}], 0x8, 0x7, 0x2) [ 1672.043772][ T7006] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1672.053119][ T6987] loop4: detected capacity change from 0 to 1 [ 1672.074496][ T7006] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1672.081339][ T7006] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1672.094685][ T7032] loop3: detected capacity change from 0 to 1 [ 1672.108092][ T6987] loop4: p1 p2 p4 [ 1672.112102][ T6987] loop4: p1 start 10 is beyond EOD, truncated [ 1672.118239][ T6987] loop4: p2 start 589824 is beyond EOD, truncated [ 1672.124772][ T6987] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1672.133716][ T7039] loop1: detected capacity change from 0 to 512 [ 1672.142125][ T1037] loop2: p1 p2 p3 p4 19:17:54 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2c, &(0x7f0000000040)={0x0, {{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e20, @multicast2}}}, 0x108) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0x2bcf) close(r0) lsetxattr$trusted_overlay_origin(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200), 0x2, 0x3) 19:17:54 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000a000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1672.146586][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1672.152722][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1672.160859][ T7032] loop3: p1 p2 p3 p4 [ 1672.174189][ T7032] loop3: p1 start 10 is beyond EOD, truncated [ 1672.174362][ T7039] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1672.180341][ T7032] loop3: p2 size 2097152 extends beyond EOD, truncated [ 1672.197870][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1672.204703][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1672.207457][ T7032] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1672.213318][ T7039] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1672.218681][ T7032] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1672.233813][ T7039] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1672.244313][ T7039] ext4_test_bit(bit=16, block=18) = 0 19:17:55 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ff02ff81800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1672.249766][ T7039] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1672.255642][ T7059] loop4: detected capacity change from 0 to 1 19:17:55 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00000f000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:55 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000ffe0f50500ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1672.307640][ T7059] loop4: p1 p2 p4 [ 1672.311874][ T7075] loop2: detected capacity change from 0 to 1 [ 1672.311889][ T7059] loop4: p1 start 10 is beyond EOD, truncated [ 1672.324049][ T7059] loop4: p2 start 655360 is beyond EOD, truncated [ 1672.330488][ T7059] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:55 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x60ff, 0x0, 0x0) [ 1672.367376][ T7075] loop2: p1 p2 p3 p4 [ 1672.371606][ T7075] loop2: p1 start 10 is beyond EOD, truncated [ 1672.375444][ T7082] loop3: detected capacity change from 0 to 1 [ 1672.377783][ T7075] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1672.379538][ T7075] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1672.397952][ T7075] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1672.407480][ T7082] loop3: p1 p2 p3 p4 19:17:55 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffff0281800800000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1672.423384][ T7082] loop3: p1 start 10 is beyond EOD, truncated [ 1672.429575][ T7082] loop3: p2 size 99999999 extends beyond EOD, truncated [ 1672.437302][ T7082] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1672.444095][ T7082] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1672.455735][ T7059] loop4: detected capacity change from 0 to 1 [ 1672.463732][ T7096] loop1: detected capacity change from 0 to 512 [ 1672.487693][ T7096] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1672.497217][ T7059] loop4: p1 p2 p4 [ 1672.501388][ T7059] loop4: p1 start 10 is beyond EOD, truncated [ 1672.503310][ T7096] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1672.507498][ T7059] loop4: p2 start 655360 is beyond EOD, truncated [ 1672.520284][ T7059] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:55 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000200024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1672.528963][ T7096] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1672.539359][ T7096] ext4_test_bit(bit=16, block=18) = 0 [ 1672.544786][ T7096] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1672.558883][ T7117] loop2: detected capacity change from 0 to 1 19:17:55 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000b000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:55 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000410000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1672.607369][ T1037] loop2: p1 p2 p3 p4 [ 1672.611783][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1672.617923][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1672.626808][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1672.633135][ T7131] loop3: detected capacity change from 0 to 1 [ 1672.633620][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1672.649906][ T7117] loop2: p1 p2 p3 p4 [ 1672.650911][ T7139] loop4: detected capacity change from 0 to 1 [ 1672.654237][ T7117] loop2: p1 start 10 is beyond EOD, truncated [ 1672.666095][ T7117] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1672.673720][ T7117] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1672.680698][ T7117] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1672.693181][ T7131] loop3: p1 p2 p3 p4 [ 1672.697351][ T7131] loop3: p1 start 10 is beyond EOD, truncated [ 1672.703532][ T7131] loop3: p2 size 1073872898 extends beyond EOD, truncated [ 1672.711054][ T7139] loop4: p1 p2 p4 [ 1672.713333][ T7147] loop1: detected capacity change from 0 to 512 [ 1672.714981][ T7139] loop4: p1 start 10 is beyond EOD, truncated [ 1672.727238][ T7139] loop4: p2 start 720896 is beyond EOD, truncated [ 1672.733729][ T7139] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1672.742128][ T7147] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1672.750387][ T7131] loop3: p3 start 2127165541 is beyond EOD, truncated 19:17:55 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81002000000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:55 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x8310, 0x0, 0x0) [ 1672.755161][ T7147] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1672.757276][ T7131] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1672.763944][ T7147] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1672.781063][ T7147] ext4_test_bit(bit=16, block=18) = 0 [ 1672.786432][ T7147] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1672.807158][ T7161] loop2: detected capacity change from 0 to 1 [ 1672.852876][ T7161] loop2: p1 p2 p3 p4 [ 1672.859036][ T7161] loop2: p1 start 10 is beyond EOD, truncated [ 1672.865138][ T7161] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1672.871836][ T7139] loop4: detected capacity change from 0 to 1 [ 1672.897769][ T7161] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1672.904599][ T7161] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1672.926384][ T1037] loop2: p1 p2 p3 p4 [ 1672.927197][ T7139] loop4: p1 p2 p4 [ 1672.930823][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1672.934301][ T7139] loop4: p1 start 10 is beyond EOD, truncated [ 1672.940273][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1672.953455][ T7139] loop4: p2 start 720896 is beyond EOD, truncated [ 1672.959890][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1672.959901][ T7139] loop4: p4 size 3657465856 extends beyond EOD, [ 1672.959921][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1672.980514][ T7139] truncated 19:17:55 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2c, &(0x7f0000000040)={0x0, {{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e20, @multicast2}}}, 0x108) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0x2bcf) close(r0) lsetxattr$trusted_overlay_origin(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200), 0x2, 0x3) 19:17:55 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f002010000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:55 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000300024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:55 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800200000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:55 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000c000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:55 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x9700, 0x0, 0x0) [ 1673.066995][ T7198] loop3: detected capacity change from 0 to 1 [ 1673.073412][ T7204] loop1: detected capacity change from 0 to 512 [ 1673.076302][ T7206] loop2: detected capacity change from 0 to 1 [ 1673.088490][ T7204] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1673.096754][ T7204] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1673.105484][ T7204] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1673.105879][ T1037] loop4: p1 p2 p4 [ 1673.115868][ T7204] ext4_test_bit(bit=16, block=18) = 0 [ 1673.115887][ T7204] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1673.121763][ T7198] loop3: p1 p2 p3 p4 [ 1673.134896][ T1037] loop4: p1 start 10 is beyond EOD, [ 1673.138292][ T7206] loop2: p1 p2 p3 p4 [ 1673.139509][ T1037] truncated [ 1673.144849][ T7206] loop2: p1 start 10 is beyond EOD, [ 1673.148741][ T1037] loop4: p2 start 720896 is beyond EOD, truncated [ 1673.151853][ T7206] truncated 19:17:55 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000011000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1673.151859][ T7206] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1673.173841][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1673.180640][ T7198] loop3: p1 start 10 is beyond EOD, truncated [ 1673.187126][ T7198] loop3: p2 size 1073872899 extends beyond EOD, truncated [ 1673.188284][ T7206] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1673.201068][ T7206] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1673.209612][ T7198] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1673.216557][ T7198] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1673.225779][ T7222] loop4: detected capacity change from 0 to 1 [ 1673.257298][ T1037] loop4: p1 p2 p4 [ 1673.261121][ T1037] loop4: p1 start 10 is beyond EOD, truncated 19:17:56 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000400024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:56 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800300000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1673.267321][ T1037] loop4: p2 start 786432 is beyond EOD, truncated [ 1673.273945][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1673.300550][ T7242] loop1: detected capacity change from 0 to 512 [ 1673.308292][ T7248] loop3: detected capacity change from 0 to 1 [ 1673.308741][ T7246] loop2: detected capacity change from 0 to 1 [ 1673.321269][ T7222] loop4: p1 p2 p4 [ 1673.323564][ T7242] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1673.325062][ T7222] loop4: p1 start 10 is beyond EOD, truncated [ 1673.333370][ T7242] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1673.339050][ T7222] loop4: p2 start 786432 is beyond EOD, truncated [ 1673.345488][ T7242] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1673.351779][ T7222] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1673.362127][ T7242] ext4_test_bit(bit=16, block=18) = 0 [ 1673.374605][ T7242] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1673.387239][ T7248] loop3: p1 p2 p3 p4 [ 1673.393312][ T7248] loop3: p1 start 10 is beyond EOD, truncated [ 1673.397504][ T7246] loop2: p1 p2 p3 p4 [ 1673.399461][ T7248] loop3: p2 size 1073872900 extends beyond EOD, truncated [ 1673.403576][ T7246] loop2: p1 start 10 is beyond EOD, truncated [ 1673.411119][ T7248] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1673.416666][ T7246] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1673.430575][ T7248] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1673.438544][ T7246] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1673.445370][ T7246] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:56 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000012000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:56 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000500024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1673.470113][ T7222] loop4: detected capacity change from 0 to 1 19:17:56 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800400000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1673.513244][ T7222] loop4: p1 p2 p4 [ 1673.531445][ T7222] loop4: p1 start 10 is beyond EOD, truncated [ 1673.537580][ T7222] loop4: p2 start 786432 is beyond EOD, truncated [ 1673.544014][ T7222] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1673.558797][ T7284] loop1: detected capacity change from 0 to 512 [ 1673.565313][ T7283] loop3: detected capacity change from 0 to 1 [ 1673.568000][ T7290] loop2: detected capacity change from 0 to 1 [ 1673.590121][ T7283] loop3: p1 p2 p3 p4 [ 1673.594306][ T7283] loop3: p1 start 10 is beyond EOD, truncated [ 1673.594748][ T1037] loop4: p1 p2 p4 [ 1673.600414][ T7283] loop3: p2 size 1073872901 extends beyond EOD, truncated [ 1673.615102][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1673.619994][ T7283] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1673.621441][ T1037] loop4: p2 start 786432 is beyond EOD, truncated [ 1673.628243][ T7283] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1673.634641][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1673.652572][ T7290] loop2: p1 p2 p3 p4 [ 1673.656866][ T7284] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1673.665249][ T7290] loop2: p1 start 10 is beyond EOD, truncated [ 1673.671361][ T7290] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1673.679359][ T7284] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1673.686346][ T7284] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1673.696762][ T7284] ext4_test_bit(bit=16, block=18) = 0 [ 1673.702172][ T7284] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1673.730436][ T7290] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1673.737283][ T7290] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:56 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0xcf03, 0x0, 0x0) 19:17:56 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2c, &(0x7f0000000040)={0x0, {{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e20, @multicast2}}}, 0x108) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0x2bcf) close(r0) lsetxattr$trusted_overlay_origin(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200), 0x2, 0x3) 19:17:56 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000d000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:56 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000600024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:56 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800500000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:56 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001514000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1673.931841][ T7325] loop3: detected capacity change from 0 to 1 [ 1673.943159][ T7327] loop1: detected capacity change from 0 to 512 [ 1673.953135][ T7327] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1673.957566][ T7335] loop4: detected capacity change from 0 to 1 [ 1673.965520][ T7327] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1673.974016][ T7327] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1673.984393][ T7327] ext4_test_bit(bit=16, block=18) = 0 [ 1673.989781][ T7327] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1674.004017][ T7325] loop3: p1 p2 p3 p4 [ 1674.008657][ T7325] loop3: p1 start 10 is beyond EOD, truncated [ 1674.012475][ T7335] loop4: p1 p2 p4 [ 1674.014750][ T7325] loop3: p2 size 1073872902 extends beyond EOD, truncated [ 1674.027310][ T7336] loop2: detected capacity change from 0 to 1 [ 1674.027788][ T7325] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1674.040215][ T7325] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1674.041576][ T7335] loop4: p1 start 10 is beyond EOD, truncated [ 1674.053547][ T7335] loop4: p2 start 851968 is beyond EOD, truncated [ 1674.060043][ T7335] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1674.099588][ T7336] loop2: p1 p2 p3 p4 [ 1674.103842][ T7336] loop2: p1 start 10 is beyond EOD, truncated [ 1674.109964][ T7336] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1674.118675][ T7336] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1674.125507][ T7336] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:56 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000700024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:56 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001415000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1674.179478][ T7335] loop4: detected capacity change from 0 to 1 19:17:57 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800600000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1674.240323][ T7335] loop4: p1 p2 p4 [ 1674.247098][ T7335] loop4: p1 start 10 is beyond EOD, truncated [ 1674.253205][ T7335] loop4: p2 start 851968 is beyond EOD, truncated [ 1674.259796][ T7335] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1674.301458][ T7375] loop3: detected capacity change from 0 to 1 [ 1674.312949][ T7374] loop1: detected capacity change from 0 to 512 [ 1674.340341][ T7383] loop2: detected capacity change from 0 to 1 [ 1674.340452][ T1037] loop4: p1 p2 p4 19:17:57 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x104000, 0x0, 0x0) [ 1674.346803][ T7374] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1674.350622][ T7375] loop3: p1 p2 p3 p4 [ 1674.362360][ T7375] loop3: p1 start 10 is beyond EOD, truncated [ 1674.368665][ T7375] loop3: p2 size 1073872903 extends beyond EOD, truncated [ 1674.370897][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1674.377577][ T7375] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1674.381951][ T1037] loop4: p2 start 851968 is beyond EOD, truncated [ 1674.388707][ T7375] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:57 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000e000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1674.395113][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1674.415789][ T7374] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1674.422944][ T7383] loop2: p1 p2 p3 p4 [ 1674.427547][ T7383] loop2: p1 start 10 is beyond EOD, truncated [ 1674.434185][ T7383] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:57 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000800024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1674.457155][ T7383] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1674.459415][ T7374] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1674.463989][ T7383] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1674.474339][ T7374] ext4_test_bit(bit=16, block=18) = 0 [ 1674.474355][ T7374] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:57 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001515000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1674.527498][ T1037] loop2: p1 p2 p3 p4 [ 1674.532015][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1674.538190][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1674.550250][ T7413] loop4: detected capacity change from 0 to 1 [ 1674.556590][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1674.556700][ T7414] loop3: detected capacity change from 0 to 1 [ 1674.563410][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1674.605516][ T7425] loop1: detected capacity change from 0 to 512 [ 1674.607120][ T7414] loop3: p1 p2 p3 p4 [ 1674.615789][ T7413] loop4: p1 p2 p4 [ 1674.616507][ T7414] loop3: p1 start 10 is beyond EOD, truncated [ 1674.620251][ T7413] loop4: p1 start 10 is beyond EOD, [ 1674.625912][ T7414] loop3: p2 size 1073872904 extends beyond EOD, truncated [ 1674.638501][ T7413] truncated [ 1674.641628][ T7413] loop4: p2 start 917504 is beyond EOD, truncated [ 1674.647398][ T7414] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1674.648099][ T7413] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1674.654839][ T7414] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1674.674792][ T7425] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1674.683635][ T7425] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1674.685740][ T1037] loop3: p1 p2 p3 p4 [ 1674.691764][ T7425] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1674.694374][ T1037] loop3: p1 start 10 is beyond EOD, [ 1674.704574][ T7425] ext4_test_bit(bit=16, block=18) = 0 [ 1674.704590][ T7425] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1674.709883][ T1037] truncated [ 1674.709890][ T1037] loop3: p2 size 1073872904 extends beyond EOD, truncated [ 1674.736663][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1674.743478][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:57 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2c, &(0x7f0000000040)={0x0, {{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e20, @multicast2}}}, 0x108) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0x2bcf) close(r0) lsetxattr$trusted_overlay_origin(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200), 0x2, 0x3) 19:17:57 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800700000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:57 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x105400, 0x0, 0x0) 19:17:57 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001715000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1674.755146][ T7413] loop4: detected capacity change from 0 to 1 19:17:57 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000900024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1674.797779][ T7413] loop4: p1 p2 p4 [ 1674.807621][ T7413] loop4: p1 start 10 is beyond EOD, truncated [ 1674.813734][ T7413] loop4: p2 start 917504 is beyond EOD, truncated [ 1674.820268][ T7413] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1674.839347][ T7457] loop2: detected capacity change from 0 to 1 19:17:57 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000f000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1674.854079][ T7468] loop3: detected capacity change from 0 to 1 [ 1674.863898][ T7471] loop1: detected capacity change from 0 to 512 [ 1674.873035][ T7471] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1674.877171][ T7457] loop2: p1 p2 p3 p4 [ 1674.882481][ T7471] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1674.888635][ T7457] loop2: p1 start 10 is beyond EOD, truncated [ 1674.891993][ T1037] loop4: p1 p2 p4 [ 1674.897682][ T7457] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1674.898024][ T7468] loop3: p1 p2 p3 p4 [ 1674.901718][ T1037] loop4: p1 start 10 is beyond EOD, [ 1674.910571][ T7471] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1674.912553][ T1037] truncated [ 1674.912559][ T1037] loop4: p2 start 917504 is beyond EOD, truncated [ 1674.912575][ T1037] loop4: p4 size 3657465856 extends beyond EOD, [ 1674.917912][ T7471] ext4_test_bit(bit=16, block=18) = 0 [ 1674.928236][ T1037] truncated [ 1674.935186][ T7468] loop3: p1 start 10 is beyond EOD, [ 1674.937859][ T7471] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1674.944191][ T7468] truncated [ 1674.944197][ T7468] loop3: p2 size 1073872905 extends beyond EOD, [ 1674.958838][ T7457] loop2: p3 start 2127165541 is beyond EOD, [ 1674.968492][ T7468] truncated [ 1674.987107][ T7457] truncated [ 1674.990210][ T7457] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:57 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001815000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1675.006174][ T7468] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1675.013035][ T7468] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1675.021786][ T1037] loop2: p1 p2 p3 p4 [ 1675.026172][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1675.032372][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1675.041167][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1675.048013][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:57 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000a00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:57 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800900000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1675.067787][ T7502] loop4: detected capacity change from 0 to 1 [ 1675.074123][ T7504] loop1: detected capacity change from 0 to 512 [ 1675.103109][ T7504] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1675.127111][ T7502] loop4: p1 p2 p4 [ 1675.131192][ T7502] loop4: p1 start 10 is beyond EOD, truncated [ 1675.137429][ T7502] loop4: p2 start 983040 is beyond EOD, truncated [ 1675.143854][ T7502] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1675.155532][ T7504] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1675.165935][ T7504] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1675.168853][ T7523] loop3: detected capacity change from 0 to 1 [ 1675.176320][ T7504] ext4_test_bit(bit=16, block=18) = 0 [ 1675.187952][ T7504] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1675.206045][ T7526] loop2: detected capacity change from 0 to 1 [ 1675.221132][ T1037] loop4: p1 p2 p4 19:17:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001915000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1675.226086][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1675.232288][ T1037] loop4: p2 start 983040 is beyond EOD, truncated [ 1675.238832][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1675.246973][ T7526] loop2: p1 p2 p3 p4 [ 1675.248558][ T7523] loop3: p1 p2 p3 p4 [ 1675.251298][ T7526] loop2: p1 start 10 is beyond EOD, truncated [ 1675.255268][ T7523] loop3: p1 start 10 is beyond EOD, truncated [ 1675.261170][ T7526] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:17:58 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000010000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1675.267277][ T7523] loop3: p2 size 1073872906 extends beyond EOD, truncated [ 1675.282203][ T7523] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1675.289144][ T7523] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1675.292746][ T7526] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1675.303270][ T7526] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1675.321618][ T7546] loop1: detected capacity change from 0 to 512 19:17:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001517000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1675.330607][ T7546] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1675.339278][ T7546] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1675.345911][ T7546] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1675.356605][ T7546] ext4_test_bit(bit=16, block=18) = 0 [ 1675.362184][ T7546] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1675.419886][ T7560] loop4: detected capacity change from 0 to 1 [ 1675.467145][ T1037] loop4: p1 p2 p4 [ 1675.471136][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1675.475998][ T7568] loop1: detected capacity change from 0 to 512 [ 1675.477411][ T1037] loop4: p2 start 1048576 is beyond EOD, truncated [ 1675.490276][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1675.491419][ T7568] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1675.505965][ T7560] loop4: p1 p2 p4 [ 1675.507466][ T7568] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1675.510535][ T7560] loop4: p1 start 10 is beyond EOD, truncated [ 1675.516574][ T7568] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1675.522252][ T7560] loop4: p2 start 1048576 is beyond EOD, truncated [ 1675.532592][ T7568] ext4_test_bit(bit=16, block=18) = 0 [ 1675.532609][ T7568] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1675.539227][ T7560] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1675.602752][ T7560] loop4: detected capacity change from 0 to 1 19:17:58 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2c, &(0x7f0000000040)={0x0, {{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e20, @multicast2}}}, 0x108) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0x2bcf) close(r0) 19:17:58 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800a00000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:58 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x200000, 0x0, 0x0) 19:17:58 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000b00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000018000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1675.647125][ T7560] loop4: p1 p2 p4 [ 1675.651530][ T7560] loop4: p1 start 10 is beyond EOD, truncated [ 1675.657765][ T7560] loop4: p2 start 1048576 is beyond EOD, truncated [ 1675.664321][ T7560] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1675.678834][ T1037] loop4: p1 p2 p4 [ 1675.685743][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1675.691870][ T1037] loop4: p2 start 1048576 is beyond EOD, truncated [ 1675.698477][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1675.709896][ T7597] loop1: detected capacity change from 0 to 512 [ 1675.716506][ T7599] loop2: detected capacity change from 0 to 1 [ 1675.724663][ T7598] loop3: detected capacity change from 0 to 1 [ 1675.738484][ T7597] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:17:58 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000011000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1675.754076][ T7597] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1675.763135][ T7597] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1675.773663][ T7597] ext4_test_bit(bit=16, block=18) = 0 [ 1675.779072][ T7597] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1675.796820][ T7599] loop2: p1 p2 p3 p4 19:17:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001518000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1675.800964][ T7599] loop2: p1 start 10 is beyond EOD, truncated [ 1675.807062][ T7599] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1675.814390][ T7598] loop3: p1 p2 p3 p4 [ 1675.819685][ T7598] loop3: p1 start 10 is beyond EOD, truncated [ 1675.825784][ T7598] loop3: p2 size 1073872907 extends beyond EOD, truncated [ 1675.836543][ T7598] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1675.843374][ T7598] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1675.851441][ T7599] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1675.858429][ T7599] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:58 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000c00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1675.934400][ T7624] loop4: detected capacity change from 0 to 1 [ 1675.952716][ T7634] loop1: detected capacity change from 0 to 512 [ 1675.959608][ T7624] loop4: p1 p2 p4 [ 1675.963567][ T7624] loop4: p1 start 10 is beyond EOD, truncated [ 1675.969880][ T7624] loop4: p2 start 1114112 is beyond EOD, truncated [ 1675.976441][ T7624] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:58 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800b00000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1676.007232][ T7644] loop3: detected capacity change from 0 to 1 [ 1676.017545][ T7634] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1676.027498][ T7634] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1676.034248][ T7634] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1676.044824][ T7634] ext4_test_bit(bit=16, block=18) = 0 19:17:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000019000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1676.050243][ T7634] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1676.069276][ T7644] loop3: p1 p2 p3 p4 [ 1676.073429][ T7644] loop3: p1 start 10 is beyond EOD, truncated [ 1676.079639][ T7644] loop3: p2 size 1073872908 extends beyond EOD, truncated [ 1676.087416][ T7644] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1676.094197][ T7644] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:58 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x400000, 0x0, 0x0) 19:17:58 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000d00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1676.119977][ T7656] loop2: detected capacity change from 0 to 1 [ 1676.126487][ T7624] loop4: detected capacity change from 0 to 1 [ 1676.183688][ T7624] loop4: p1 p2 p4 [ 1676.187579][ T1037] loop2: p1 p2 p3 p4 [ 1676.188642][ T7674] loop3: detected capacity change from 0 to 1 [ 1676.191885][ T7624] loop4: p1 start 10 is beyond EOD, truncated [ 1676.204067][ T7624] loop4: p2 start 1114112 is beyond EOD, truncated [ 1676.210698][ T7624] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1676.216276][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1676.224050][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1676.231440][ T7675] loop1: detected capacity change from 0 to 512 [ 1676.241444][ T7675] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1676.249821][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1676.250314][ T7675] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1676.256675][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1676.263535][ T7675] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1676.271710][ T7674] loop3: p1 p2 p3 p4 [ 1676.280633][ T7675] ext4_test_bit(bit=16, block=18) = 0 [ 1676.290035][ T7675] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1676.294741][ T7674] loop3: p1 start 10 is beyond EOD, truncated [ 1676.306822][ T7674] loop3: p2 size 1073872909 extends beyond EOD, truncated [ 1676.314653][ T7674] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1676.321470][ T7674] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1676.336167][ T7656] loop2: p1 p2 p3 p4 [ 1676.340460][ T7656] loop2: p1 start 10 is beyond EOD, truncated [ 1676.346582][ T7656] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1676.355493][ T7656] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1676.362312][ T7656] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:59 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2c, &(0x7f0000000040)={0x0, {{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e20, @multicast2}}}, 0x108) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0x2bcf) 19:17:59 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000012000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:59 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001519000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:17:59 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800c00000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:59 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000e00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:59 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x401000, 0x0, 0x0) [ 1676.567130][ T7719] loop2: detected capacity change from 0 to 1 [ 1676.581934][ T7716] loop4: detected capacity change from 0 to 1 [ 1676.590623][ T7718] loop3: detected capacity change from 0 to 1 [ 1676.616984][ T7719] loop2: p1 p2 p3 p4 [ 1676.621487][ T7719] loop2: p1 start 10 is beyond EOD, truncated [ 1676.627626][ T7719] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1676.643516][ T7716] loop4: p1 p2 p4 [ 1676.647634][ T7716] loop4: p1 start 10 is beyond EOD, truncated [ 1676.653753][ T7716] loop4: p2 start 1179648 is beyond EOD, truncated [ 1676.660356][ T7716] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1676.668765][ T7718] loop3: p1 p2 p3 p4 [ 1676.673148][ T7718] loop3: p1 start 10 is beyond EOD, truncated [ 1676.679287][ T7718] loop3: p2 size 1073872910 extends beyond EOD, truncated [ 1676.687046][ T7726] loop1: detected capacity change from 0 to 512 [ 1676.693560][ T7719] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1676.700502][ T7719] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1676.703424][ T7718] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1676.714426][ T7718] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:17:59 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800d00000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1676.778970][ T7726] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1676.804375][ T7726] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1676.818241][ T7716] loop4: detected capacity change from 0 to 1 [ 1676.838949][ T7726] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1676.842948][ T7749] loop2: detected capacity change from 0 to 1 [ 1676.849371][ T7726] ext4_test_bit(bit=16, block=18) = 0 [ 1676.860958][ T7726] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:17:59 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00031a000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1676.901854][ T7749] loop2: p1 p2 p3 p4 [ 1676.909662][ T7716] loop4: p1 p2 p4 [ 1676.909698][ T7749] loop2: p1 start 10 is beyond EOD, truncated [ 1676.917140][ T7716] loop4: p1 start 10 is beyond EOD, truncated [ 1676.919532][ T7749] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1676.925566][ T7716] loop4: p2 start 1179648 is beyond EOD, truncated [ 1676.939298][ T7716] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:17:59 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000f00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:17:59 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000013000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1676.975652][ T7749] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1676.982551][ T7749] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:17:59 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800e00000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1677.026904][ T7764] loop3: detected capacity change from 0 to 1 [ 1677.033982][ T7770] loop1: detected capacity change from 0 to 512 [ 1677.072146][ T7779] loop2: detected capacity change from 0 to 1 [ 1677.076838][ T7764] loop3: p1 p2 p3 p4 [ 1677.082304][ T7764] loop3: p1 start 10 is beyond EOD, truncated [ 1677.088417][ T7764] loop3: p2 size 1073872911 extends beyond EOD, truncated 19:17:59 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x4af000, 0x0, 0x0) [ 1677.116784][ T7770] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1677.130760][ T7779] loop2: p1 p2 p3 p4 [ 1677.131107][ T7788] loop4: detected capacity change from 0 to 1 [ 1677.137056][ T7779] loop2: p1 start 10 is beyond EOD, truncated [ 1677.147150][ T7779] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1677.152810][ T7770] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1677.156001][ T7779] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1677.167476][ T7779] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1677.168800][ T7764] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1677.181416][ T7764] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1677.188127][ T7770] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1677.188931][ T1037] loop4: p1 p2 p4 [ 1677.198961][ T7770] ext4_test_bit(bit=16, block=18) = 0 [ 1677.205694][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1677.208052][ T7770] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1677.214111][ T1037] loop4: p2 start 1245184 is beyond EOD, truncated [ 1677.232138][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1677.242870][ T7788] loop4: p1 p2 p4 [ 1677.247082][ T7788] loop4: p1 start 10 is beyond EOD, truncated [ 1677.253316][ T7788] loop4: p2 start 1245184 is beyond EOD, truncated [ 1677.259854][ T7788] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1677.350413][ T7788] loop4: detected capacity change from 0 to 1 [ 1677.396920][ T7788] loop4: p1 p2 p4 [ 1677.400889][ T7788] loop4: p1 start 10 is beyond EOD, truncated [ 1677.406991][ T7788] loop4: p2 start 1245184 is beyond EOD, truncated [ 1677.413602][ T7788] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1677.436634][ T1037] loop4: p1 p2 p4 [ 1677.440552][ T1037] loop4: p1 start 10 is beyond EOD, truncated 19:18:00 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2c, &(0x7f0000000040)={0x0, {{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e20, @multicast2}}}, 0x108) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:00 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00001b000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:00 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000001000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:00 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81801000000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:00 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000021a000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1677.446681][ T1037] loop4: p2 start 1245184 is beyond EOD, truncated [ 1677.453192][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1677.480376][ T7830] loop2: detected capacity change from 0 to 1 [ 1677.488292][ T7831] loop3: detected capacity change from 0 to 1 19:18:00 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1677.494508][ T7834] loop1: detected capacity change from 0 to 512 [ 1677.504496][ T7834] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1677.526845][ T7831] loop3: p1 p2 p3 p4 [ 1677.526863][ T7830] loop2: p1 p2 p3 p4 [ 1677.533324][ T7831] loop3: p1 start 10 is beyond EOD, truncated [ 1677.536304][ T7830] loop2: p1 start 10 is beyond EOD, [ 1677.540997][ T7831] loop3: p2 size 1073872912 extends beyond EOD, truncated [ 1677.541915][ T7834] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1677.546310][ T7830] truncated [ 1677.546316][ T7830] loop2: p2 size 1073872896 extends beyond EOD, [ 1677.562136][ T7831] loop3: p3 start 2127165541 is beyond EOD, [ 1677.563064][ T7830] truncated [ 1677.578539][ T7831] truncated [ 1677.581646][ T7831] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:18:00 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1677.601175][ T7834] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1677.601911][ T7830] loop2: p3 start 2127165541 is beyond EOD, [ 1677.611593][ T7834] ext4_test_bit(bit=16, block=18) = 0 [ 1677.611608][ T7834] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1677.617644][ T7830] truncated [ 1677.617650][ T7830] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:00 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000020000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:00 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1677.656375][ T7851] loop4: detected capacity change from 0 to 1 [ 1677.664858][ T1037] loop2: p1 p2 p3 p4 [ 1677.669253][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1677.675404][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1677.683858][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1677.690685][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1677.698930][ T7851] loop4: p1 p2 p4 19:18:00 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x4fd000, 0x0, 0x0) 19:18:00 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000001100024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:00 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1677.702730][ T7851] loop4: p1 start 10 is beyond EOD, truncated [ 1677.708843][ T7851] loop4: p2 start 1703936 is beyond EOD, truncated [ 1677.715545][ T7851] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:00 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:00 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81801100000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1677.747097][ T7875] loop3: detected capacity change from 0 to 1 [ 1677.770980][ T7851] loop4: detected capacity change from 0 to 1 [ 1677.782322][ T7874] loop1: detected capacity change from 0 to 512 19:18:00 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1677.807039][ T7875] loop3: p1 p2 p3 p4 [ 1677.811256][ T7851] loop4: p1 p2 p4 [ 1677.815257][ T7874] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1677.824321][ T7851] loop4: p1 start 10 is beyond EOD, truncated [ 1677.830467][ T7851] loop4: p2 start 1703936 is beyond EOD, truncated [ 1677.837024][ T7851] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1677.845129][ T7875] loop3: p1 start 10 is beyond EOD, truncated 19:18:00 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1677.851260][ T7875] loop3: p2 size 1073872913 extends beyond EOD, truncated [ 1677.866192][ T7896] loop2: detected capacity change from 0 to 1 [ 1677.869350][ T7874] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1677.879259][ T7874] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1677.889633][ T7874] ext4_test_bit(bit=16, block=18) = 0 [ 1677.895113][ T7874] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1677.907152][ T7875] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1677.914006][ T7875] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1677.921940][ T7896] loop2: p1 p2 p3 p4 [ 1677.926478][ T7896] loop2: p1 start 10 is beyond EOD, truncated [ 1677.932633][ T7896] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1677.952394][ T1037] loop3: p1 p2 p3 p4 19:18:00 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000020000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:00 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f001020000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:00 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:00 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1677.960437][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1677.966682][ T1037] loop3: p2 size 1073872913 extends beyond EOD, truncated [ 1677.979011][ T7896] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1677.985820][ T7896] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1677.994125][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1678.000947][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:18:00 executing program 5: setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1678.037445][ T7921] loop1: detected capacity change from 0 to 512 [ 1678.085601][ T7929] loop4: detected capacity change from 0 to 1 [ 1678.097748][ T7921] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1678.116933][ T7929] loop4: p1 p2 p4 [ 1678.120887][ T7929] loop4: p1 start 10 is beyond EOD, truncated [ 1678.127072][ T7929] loop4: p2 start 2097152 is beyond EOD, truncated [ 1678.133581][ T7929] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1678.143532][ T7921] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1678.161633][ T7921] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1678.172195][ T7921] ext4_test_bit(bit=16, block=18) = 0 19:18:00 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x541000, 0x0, 0x0) 19:18:00 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000001200024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:00 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81801200000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:00 executing program 5: setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1678.177658][ T7921] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1678.228492][ T7929] loop4: detected capacity change from 0 to 1 [ 1678.237601][ T7956] loop3: detected capacity change from 0 to 1 [ 1678.244758][ T7957] loop2: detected capacity change from 0 to 1 [ 1678.251422][ T7929] loop4: p1 p2 p4 [ 1678.255426][ T7929] loop4: p1 start 10 is beyond EOD, truncated [ 1678.261540][ T7929] loop4: p2 start 2097152 is beyond EOD, truncated [ 1678.266681][ T7956] loop3: p1 p2 p3 p4 19:18:01 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000022000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:01 executing program 5: setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1678.268076][ T7929] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1678.272183][ T7956] loop3: p1 start 10 is beyond EOD, truncated [ 1678.285329][ T7956] loop3: p2 size 1073872914 extends beyond EOD, truncated [ 1678.313812][ T7956] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1678.320770][ T7956] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1678.331570][ T1037] loop3: p1 p2 p3 p4 [ 1678.335694][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1678.341813][ T1037] loop3: p2 size 1073872914 extends beyond EOD, truncated [ 1678.350553][ T7957] loop2: p1 p2 p3 p4 [ 1678.354711][ T7957] loop2: p1 start 10 is beyond EOD, truncated [ 1678.360943][ T7957] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:18:01 executing program 5: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:01 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000024000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1678.379585][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1678.386403][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1678.396612][ T7982] loop1: detected capacity change from 0 to 512 [ 1678.405018][ T7982] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1678.414282][ T7982] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1678.416572][ T7957] loop2: p3 start 2127165541 is beyond EOD, truncated 19:18:01 executing program 5: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:01 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000001300024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1678.421367][ T7982] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1678.427445][ T7957] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1678.437776][ T7982] ext4_test_bit(bit=16, block=18) = 0 [ 1678.450379][ T7982] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:18:01 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000023000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:01 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81802900000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1678.525791][ T8006] loop4: detected capacity change from 0 to 1 [ 1678.540290][ T8010] loop3: detected capacity change from 0 to 1 [ 1678.586876][ T1037] loop4: p1 p2 p4 [ 1678.590697][ T8010] loop3: p1 p2 p3 p4 [ 1678.594875][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1678.600556][ T8020] loop2: detected capacity change from 0 to 1 [ 1678.600979][ T1037] loop4: p2 start 2359296 is beyond EOD, truncated [ 1678.613539][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1678.620924][ T8010] loop3: p1 start 10 is beyond EOD, truncated [ 1678.626771][ T8019] loop1: detected capacity change from 0 to 512 [ 1678.627194][ T8010] loop3: p2 size 1073872915 extends beyond EOD, truncated [ 1678.641859][ T8019] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1678.647469][ T8010] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1678.650709][ T8019] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1678.656768][ T8010] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1678.666560][ T8020] loop2: p1 p2 p3 p4 [ 1678.670414][ T8006] loop4: p1 p2 p4 [ 1678.674541][ T8020] loop2: p1 start 10 is beyond EOD, truncated 19:18:01 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x970000, 0x0, 0x0) 19:18:01 executing program 5: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1678.684314][ T8020] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1678.688346][ T8006] loop4: p1 start 10 is beyond EOD, truncated [ 1678.697653][ T8006] loop4: p2 start 2359296 is beyond EOD, truncated [ 1678.704328][ T8006] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1678.707507][ T8020] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1678.717824][ T8019] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1678.718460][ T8020] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:01 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000024000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1678.728831][ T8019] ext4_test_bit(bit=16, block=18) = 0 [ 1678.741409][ T8019] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:18:01 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:01 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800007000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:01 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000001a00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:01 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1678.810884][ T8006] loop4: detected capacity change from 0 to 1 [ 1678.861255][ T1037] loop4: p1 p2 p4 [ 1678.865215][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1678.871596][ T1037] loop4: p2 start 2359296 is beyond EOD, truncated [ 1678.878140][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1678.886282][ T8059] loop1: detected capacity change from 0 to 512 [ 1678.890375][ T8066] loop2: detected capacity change from 0 to 1 [ 1678.900231][ T8059] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:18:01 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000025000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:01 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1678.909344][ T8006] loop4: p1 p2 p4 [ 1678.913322][ T8006] loop4: p1 start 10 is beyond EOD, truncated [ 1678.919498][ T8006] loop4: p2 start 2359296 is beyond EOD, truncated [ 1678.922321][ T8069] loop3: detected capacity change from 0 to 1 [ 1678.926217][ T8006] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1678.942476][ T8059] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1678.946826][ T8066] loop2: p1 p2 p3 p4 [ 1678.951783][ T8059] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1678.953129][ T8066] loop2: p1 start 10 is beyond EOD, [ 1678.963329][ T8059] ext4_test_bit(bit=16, block=18) = 0 [ 1678.963335][ T8066] truncated [ 1678.963345][ T8059] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1678.968633][ T8066] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1678.994924][ T1037] loop4: p1 p2 p4 [ 1678.999281][ T8066] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1679.000247][ T1037] loop4: p1 start 10 is beyond EOD, 19:18:01 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:01 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000025000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:01 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0xc04a01, 0x0, 0x0) [ 1679.006090][ T8066] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1679.018560][ T1037] truncated [ 1679.021713][ T1037] loop4: p2 start 2359296 is beyond EOD, truncated [ 1679.028280][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1679.036626][ T8069] loop3: p1 p2 p3 p4 [ 1679.044405][ T8069] loop3: p1 start 10 is beyond EOD, truncated [ 1679.050524][ T8069] loop3: p2 size 1073872922 extends beyond EOD, truncated 19:18:01 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:01 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1679.062783][ T8069] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1679.069626][ T8069] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:18:01 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000002400024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:01 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81809607000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:01 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1679.114233][ T8094] loop4: detected capacity change from 0 to 1 [ 1679.146796][ T8094] loop4: p1 p2 p4 [ 1679.152714][ T8094] loop4: p1 start 10 is beyond EOD, truncated 19:18:01 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1679.158875][ T8094] loop4: p2 start 2424832 is beyond EOD, truncated [ 1679.162371][ T8125] loop2: detected capacity change from 0 to 1 [ 1679.165381][ T8094] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1679.165630][ T8116] loop1: detected capacity change from 0 to 512 [ 1679.174781][ T8122] loop3: detected capacity change from 0 to 1 19:18:02 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1679.226870][ T8122] loop3: p1 p2 p3 p4 [ 1679.231365][ T1037] loop2: p1 p2 p3 p4 [ 1679.235943][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1679.238198][ T8094] loop4: detected capacity change from 0 to 1 [ 1679.242195][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1679.256068][ T8122] loop3: p1 start 10 is beyond EOD, truncated [ 1679.262318][ T8122] loop3: p2 size 1073872932 extends beyond EOD, truncated [ 1679.276331][ T8116] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1679.286680][ T8122] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1679.290052][ T8116] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1679.293471][ T8122] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1679.306750][ T8094] loop4: p1 p2 p4 [ 1679.311297][ T8094] loop4: p1 start 10 is beyond EOD, truncated [ 1679.317000][ T8116] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1679.317485][ T8094] loop4: p2 start 2424832 is beyond EOD, truncated [ 1679.327809][ T8116] ext4_test_bit(bit=16, block=18) = 0 [ 1679.334295][ T8094] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1679.339697][ T8116] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1679.361485][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1679.368388][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:02 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000026000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:02 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:02 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000026000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:02 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000002500024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1679.377506][ T8125] loop2: p1 p2 p3 p4 [ 1679.381807][ T8125] loop2: p1 start 10 is beyond EOD, truncated [ 1679.387982][ T8125] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1679.408809][ T8125] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1679.415615][ T8125] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:02 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0xd04f00, 0x0, 0x0) 19:18:02 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1679.447832][ T8165] loop3: detected capacity change from 0 to 1 [ 1679.448485][ T8166] loop1: detected capacity change from 0 to 512 [ 1679.476735][ T8165] loop3: p1 p2 p3 p4 [ 1679.487936][ T8165] loop3: p1 start 10 is beyond EOD, truncated 19:18:02 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81809f07000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1679.494214][ T8165] loop3: p2 size 1073872933 extends beyond EOD, truncated [ 1679.510882][ T8166] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:18:02 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1679.539674][ T8166] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1679.541192][ T8188] loop4: detected capacity change from 0 to 1 [ 1679.552736][ T8165] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1679.559668][ T8165] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1679.567060][ T8166] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1679.574573][ T8189] loop2: detected capacity change from 0 to 1 [ 1679.577442][ T8166] ext4_test_bit(bit=16, block=18) = 0 19:18:02 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:02 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1679.588894][ T8166] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1679.616432][ T8188] loop4: p1 p2 p4 [ 1679.622412][ T8188] loop4: p1 start 10 is beyond EOD, truncated [ 1679.628538][ T8188] loop4: p2 start 2490368 is beyond EOD, truncated 19:18:02 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000002600024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:02 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000027000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1679.635053][ T8188] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1679.647827][ T8189] loop2: p1 p2 p3 p4 [ 1679.652266][ T8189] loop2: p1 start 10 is beyond EOD, truncated [ 1679.658382][ T8189] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1679.673672][ T8189] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1679.679935][ T8211] loop3: detected capacity change from 0 to 1 [ 1679.680530][ T8189] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1679.695531][ T1037] loop4: p1 p2 p4 [ 1679.699900][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1679.705995][ T1037] loop4: p2 start 2490368 is beyond EOD, truncated [ 1679.712611][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1679.727038][ T8211] loop3: p1 p2 p3 p4 [ 1679.731138][ T8211] loop3: p1 start 10 is beyond EOD, truncated [ 1679.737251][ T8211] loop3: p2 size 1073872934 extends beyond EOD, truncated [ 1679.745817][ T8211] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1679.752633][ T8211] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1679.763176][ T8224] loop1: detected capacity change from 0 to 512 [ 1679.775852][ T8224] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1679.785429][ T8224] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1679.792495][ T8224] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1679.802910][ T8224] ext4_test_bit(bit=16, block=18) = 0 [ 1679.808420][ T8224] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1679.819992][ T8188] loop4: detected capacity change from 0 to 1 19:18:02 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000002e000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:02 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:02 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180a607000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:02 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000002e00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1679.913787][ T8252] loop3: detected capacity change from 0 to 1 [ 1679.982210][ T8254] loop2: detected capacity change from 0 to 1 [ 1679.988964][ T8252] loop3: p1 p2 p3 p4 [ 1679.998463][ T8252] loop3: p1 start 10 is beyond EOD, truncated [ 1680.004570][ T8252] loop3: p2 size 1073872942 extends beyond EOD, truncated [ 1680.060722][ T8252] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1680.067568][ T8252] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1680.082406][ T8254] loop2: p1 p2 p3 p4 [ 1680.086662][ T8254] loop2: p1 start 10 is beyond EOD, truncated [ 1680.092803][ T8254] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1680.103941][ T8262] loop4: detected capacity change from 0 to 1 19:18:02 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0xf04a00, 0x0, 0x0) 19:18:02 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000028000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:02 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1680.107729][ T8254] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1680.116832][ T8254] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1680.151072][ T8262] loop4: p1 p2 p4 19:18:02 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000004800024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:02 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1680.160822][ T8262] loop4: p1 start 10 is beyond EOD, truncated [ 1680.166952][ T8262] loop4: p2 start 3014656 is beyond EOD, truncated [ 1680.173466][ T8262] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1680.195250][ T8275] loop1: detected capacity change from 0 to 512 19:18:03 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180ad07000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:03 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1680.230674][ T8262] loop4: detected capacity change from 0 to 1 [ 1680.243886][ T8275] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:18:03 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000030000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1680.282043][ T8275] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1680.296089][ T8300] loop2: detected capacity change from 0 to 1 [ 1680.299684][ T8275] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1680.302441][ T8294] loop3: detected capacity change from 0 to 1 [ 1680.312822][ T8275] ext4_test_bit(bit=16, block=18) = 0 19:18:03 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0) 19:18:03 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0) 19:18:03 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00022b000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1680.324301][ T8275] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1680.366794][ T8300] loop2: p1 p2 p3 p4 [ 1680.371153][ T8300] loop2: p1 start 10 is beyond EOD, truncated [ 1680.376591][ T8294] loop3: p1 p2 p3 p4 [ 1680.377322][ T8300] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1680.381444][ T8294] loop3: p1 start 10 is beyond EOD, truncated [ 1680.394601][ T8294] loop3: p2 size 1073872968 extends beyond EOD, truncated 19:18:03 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0) [ 1680.421046][ T8317] loop4: detected capacity change from 0 to 1 [ 1680.424881][ T8294] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1680.434068][ T8294] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1680.446368][ T8300] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1680.448357][ T8319] loop1: detected capacity change from 0 to 512 [ 1680.453165][ T8300] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1680.474438][ T8319] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1680.476864][ T8317] loop4: p1 p2 p4 [ 1680.483003][ T8319] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1680.487221][ T8317] loop4: p1 start 10 is beyond EOD, truncated [ 1680.492731][ T8319] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1680.498643][ T8317] loop4: p2 start 3145728 is beyond EOD, [ 1680.509062][ T8319] ext4_test_bit(bit=16, block=18) = 0 [ 1680.509079][ T8319] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1680.514774][ T8317] truncated [ 1680.514780][ T8317] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1680.596360][ T8317] loop4: detected capacity change from 0 to 1 [ 1680.616640][ T8317] loop4: p1 p2 p4 [ 1680.620624][ T8317] loop4: p1 start 10 is beyond EOD, truncated [ 1680.626804][ T8317] loop4: p2 start 3145728 is beyond EOD, truncated [ 1680.633371][ T8317] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:03 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x1000000, 0x0, 0x0) 19:18:03 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0)=0x1, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:03 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00022d000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:03 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000004c00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:03 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180f207000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:03 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000003f000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1680.706517][ T1037] loop4: p1 p2 p4 [ 1680.710491][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1680.716610][ T1037] loop4: p2 start 3145728 is beyond EOD, truncated [ 1680.723117][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1680.731065][ T8357] loop2: detected capacity change from 0 to 1 [ 1680.741023][ T8359] loop1: detected capacity change from 0 to 512 [ 1680.742900][ T8360] loop3: detected capacity change from 0 to 1 [ 1680.754649][ T8359] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1680.777583][ T8359] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1680.784179][ T8359] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1680.794615][ T8359] ext4_test_bit(bit=16, block=18) = 0 19:18:03 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1680.800021][ T8359] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1680.816570][ T8357] loop2: p1 p2 p3 p4 [ 1680.817726][ T8360] loop3: p1 p2 p3 p4 [ 1680.821392][ T8357] loop2: p1 start 10 is beyond EOD, truncated [ 1680.830674][ T8357] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1680.835182][ T8360] loop3: p1 start 10 is beyond EOD, truncated [ 1680.843893][ T8360] loop3: p2 size 1073872972 extends beyond EOD, truncated 19:18:03 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00002e000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1680.855274][ T8360] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1680.862096][ T8360] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1680.876510][ T8379] loop4: detected capacity change from 0 to 1 [ 1680.884444][ T8357] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1680.891338][ T8357] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:03 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:03 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1680.906777][ T8379] loop4: p1 p2 p4 [ 1680.912960][ T8379] loop4: p1 start 10 is beyond EOD, truncated [ 1680.919090][ T8379] loop4: p2 start 4128768 is beyond EOD, truncated [ 1680.925605][ T8379] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:03 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000006000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:03 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1680.999585][ T8379] loop4: detected capacity change from 0 to 1 [ 1681.012383][ T8407] loop3: detected capacity change from 0 to 1 [ 1681.040113][ T8379] loop4: p1 p2 p4 [ 1681.044160][ T8379] loop4: p1 start 10 is beyond EOD, truncated [ 1681.050316][ T8379] loop4: p2 start 4128768 is beyond EOD, truncated [ 1681.056916][ T8379] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1681.076133][ T8407] loop3: p1 p2 p3 p4 [ 1681.081843][ T8407] loop3: p1 start 10 is beyond EOD, truncated 19:18:03 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x14ac000, 0x0, 0x0) 19:18:03 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180f507000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:03 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1681.088038][ T8407] loop3: p2 size 1073872992 extends beyond EOD, truncated [ 1681.097632][ T8407] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1681.104424][ T8407] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1681.106388][ T8415] loop1: detected capacity change from 0 to 512 19:18:03 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1681.148634][ T8428] loop2: detected capacity change from 0 to 1 [ 1681.157588][ T8415] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1681.186672][ T8428] loop2: p1 p2 p3 p4 [ 1681.188437][ T8415] EXT4-fs (loop1): orphan cleanup on readonly fs 19:18:04 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000040000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:04 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000006800024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1681.190922][ T8428] loop2: p1 start 10 is beyond EOD, truncated [ 1681.203197][ T8428] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1681.212885][ T8415] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1681.223489][ T8415] ext4_test_bit(bit=16, block=18) = 0 [ 1681.228890][ T8415] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:18:04 executing program 5: setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:04 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000231000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:04 executing program 5: setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1681.268110][ T8428] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1681.274901][ T8428] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1681.283772][ T1037] loop4: p1 p2 p4 [ 1681.288059][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1681.294185][ T1037] loop4: p2 start 4128768 is beyond EOD, truncated [ 1681.300797][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1681.309261][ T8446] loop3: detected capacity change from 0 to 1 19:18:04 executing program 5: setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:04 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180000a000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:04 executing program 5: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1681.387591][ T8446] loop3: p1 p2 p3 p4 [ 1681.387630][ T8457] loop4: detected capacity change from 0 to 1 [ 1681.391788][ T8446] loop3: p1 start 10 is beyond EOD, truncated [ 1681.404311][ T8446] loop3: p2 size 1073873000 extends beyond EOD, truncated [ 1681.427128][ T8446] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1681.433959][ T8446] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1681.451746][ T8457] loop4: p1 p2 p4 [ 1681.457011][ T8457] loop4: p1 start 10 is beyond EOD, truncated [ 1681.463273][ T8457] loop4: p2 start 4194304 is beyond EOD, truncated [ 1681.469836][ T8457] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1681.478506][ T8446] ================================================================== [ 1681.486598][ T8446] BUG: KCSAN: data-race in setattr_copy / vfs_getattr_nosec [ 1681.494041][ T8446] [ 1681.496377][ T8446] write to 0xffff888143804af0 of 2 bytes by task 19 on cpu 1: [ 1681.503842][ T8446] setattr_copy+0x1af/0x1c0 [ 1681.508372][ T8446] shmem_setattr+0xb0/0x450 [ 1681.512996][ T8446] notify_change+0x8a3/0xa80 [ 1681.517777][ T8446] devtmpfs_work_loop+0x783/0x8d0 [ 1681.522809][ T8446] devtmpfsd+0x3f/0x40 [ 1681.526888][ T8446] kthread+0x1d0/0x1f0 [ 1681.530989][ T8446] ret_from_fork+0x1f/0x30 [ 1681.535412][ T8446] 19:18:04 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x2000000, 0x0, 0x0) 19:18:04 executing program 5: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1681.537738][ T8446] read to 0xffff888143804af0 of 2 bytes by task 8446 on cpu 0: [ 1681.545392][ T8446] vfs_getattr_nosec+0x1a5/0x2f0 [ 1681.550341][ T8446] vfs_statx+0x128/0x290 [ 1681.554590][ T8446] __se_sys_newstat+0x46/0x250 [ 1681.559365][ T8446] __x64_sys_newstat+0x2d/0x40 [ 1681.560964][ T8475] loop2: detected capacity change from 0 to 1 [ 1681.564250][ T8446] do_syscall_64+0x4a/0x90 [ 1681.564276][ T8446] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1681.564299][ T8446] [ 1681.583065][ T8446] value changed: 0x6180 -> 0x6000 [ 1681.588084][ T8446] [ 1681.590403][ T8446] Reported by Kernel Concurrency Sanitizer on: [ 1681.596544][ T8446] CPU: 0 PID: 8446 Comm: syz-executor.3 Tainted: G W 5.13.0-rc4-syzkaller #0 [ 1681.606617][ T8446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1681.616689][ T8446] ================================================================== [ 1681.626437][ T1037] loop3: p1 p2 p3 p4 [ 1681.630518][ T1037] loop3: p1 start 10 is beyond EOD, truncated 19:18:04 executing program 5: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1681.636612][ T1037] loop3: p2 size 1073873000 extends beyond EOD, truncated [ 1681.644126][ T8483] loop1: detected capacity change from 0 to 512 [ 1681.656266][ T8457] loop4: detected capacity change from 0 to 1 [ 1681.662612][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1681.666900][ T8475] loop2: p1 p2 p3 p4 [ 1681.669485][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1681.673746][ T8475] loop2: p1 start 10 is beyond EOD, truncated [ 1681.687447][ T8475] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1681.695122][ T8483] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1681.704108][ T8457] loop4: p1 p2 p4 [ 1681.709358][ T8457] loop4: p1 start 10 is beyond EOD, truncated [ 1681.711419][ T8483] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1681.715461][ T8457] loop4: p2 start 4194304 is beyond EOD, truncated [ 1681.721984][ T8483] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 19:18:04 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000032000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1681.728356][ T8457] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1681.738854][ T8483] ext4_test_bit(bit=16, block=18) = 0 [ 1681.751315][ T8483] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1681.762711][ T8475] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1681.769526][ T8475] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:04 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800080040000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:04 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:04 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000006c00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:04 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180000d000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1681.865170][ T8535] loop1: detected capacity change from 0 to 512 [ 1681.867703][ T1037] loop4: p1 p2 p4 [ 1681.875867][ T8535] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1681.876138][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1681.890076][ T1037] loop4: p2 start 4194304 is beyond EOD, truncated [ 1681.896615][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1681.898299][ T8535] EXT4-fs (loop1): orphan cleanup on readonly fs 19:18:04 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:04 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x2040000, 0x0, 0x0) 19:18:04 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1681.911313][ T8535] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1681.916407][ T8544] loop3: detected capacity change from 0 to 1 [ 1681.921802][ T8535] ext4_test_bit(bit=16, block=18) = 0 [ 1681.930465][ T8545] loop2: detected capacity change from 0 to 1 [ 1681.933229][ T8535] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:18:04 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1681.986731][ T8544] loop3: p1 p2 p3 p4 [ 1681.991452][ T1037] loop2: p1 p2 p3 p4 [ 1682.000214][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1682.006324][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1682.013820][ T8544] loop3: p1 start 10 is beyond EOD, truncated [ 1682.019924][ T8544] loop3: p2 size 1073873004 extends beyond EOD, truncated [ 1682.028004][ T8544] loop3: p3 start 2127165541 is beyond EOD, truncated 19:18:04 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000233000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:04 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1682.034951][ T8544] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1682.042381][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1682.049255][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1682.056525][ T8564] loop4: detected capacity change from 0 to 1 [ 1682.084661][ T8545] loop2: p1 p2 p3 p4 [ 1682.089261][ T8545] loop2: p1 start 10 is beyond EOD, truncated [ 1682.095339][ T8545] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1682.103554][ T8564] loop4: p1 p2 p4 [ 1682.107729][ T8545] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1682.107808][ T8564] loop4: p1 start 10 is beyond EOD, truncated [ 1682.114526][ T8545] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1682.120620][ T8564] loop4: p2 start 4194304 is beyond EOD, truncated 19:18:04 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000007400024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1682.134419][ T8564] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:04 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1682.168442][ T8587] loop1: detected capacity change from 0 to 512 [ 1682.182473][ T8590] loop3: detected capacity change from 0 to 1 [ 1682.194428][ T8587] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1682.217825][ T8587] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1682.224594][ T8587] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1682.235201][ T8587] ext4_test_bit(bit=16, block=18) = 0 [ 1682.240635][ T8587] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1682.251877][ T8590] loop3: p1 p2 p3 p4 [ 1682.261719][ T8590] loop3: p1 start 10 is beyond EOD, truncated [ 1682.268022][ T8590] loop3: p2 size 1073873012 extends beyond EOD, truncated [ 1682.282825][ T8564] loop4: detected capacity change from 0 to 1 [ 1682.282976][ T8590] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1682.295891][ T8590] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1682.304561][ T1037] loop3: p1 p2 p3 p4 [ 1682.316245][ T8564] loop4: p1 p2 p4 [ 1682.316398][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1682.320109][ T8564] loop4: p1 start 10 is beyond EOD, truncated [ 1682.326193][ T1037] loop3: p2 size 1073873012 extends beyond EOD, [ 1682.332248][ T8564] loop4: p2 start 4194304 is beyond EOD, truncated [ 1682.332266][ T8564] loop4: p4 size 3657465856 extends beyond EOD, [ 1682.338590][ T1037] truncated [ 1682.342125][ T1037] loop3: p3 start 2127165541 is beyond EOD, [ 1682.345081][ T8564] truncated [ 1682.363793][ T1037] truncated 19:18:05 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000240000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:05 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:05 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f009735000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:05 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800110000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:05 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x6040000, 0x0, 0x0) 19:18:05 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000007a00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1682.367006][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:18:05 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:05 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1682.449725][ T8626] loop1: detected capacity change from 0 to 512 [ 1682.456939][ T8633] loop2: detected capacity change from 0 to 1 [ 1682.485284][ T8634] loop3: detected capacity change from 0 to 1 19:18:05 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1682.505913][ T8626] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1682.514243][ T8652] loop4: detected capacity change from 0 to 1 [ 1682.514741][ T8626] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1682.527084][ T8626] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1682.537565][ T8626] ext4_test_bit(bit=16, block=18) = 0 [ 1682.543083][ T8626] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1682.554463][ T8633] loop2: p1 p2 p3 p4 [ 1682.558923][ T8634] loop3: p1 p2 p3 p4 [ 1682.563008][ T8634] loop3: p1 start 10 is beyond EOD, truncated [ 1682.569382][ T8634] loop3: p2 size 1073873018 extends beyond EOD, truncated [ 1682.572219][ T8633] loop2: p1 start 10 is beyond EOD, truncated [ 1682.582623][ T8633] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1682.590532][ T8652] loop4: p1 p2 p4 [ 1682.594628][ T8652] loop4: p1 start 10 is beyond EOD, truncated 19:18:05 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1682.597168][ T8634] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1682.600785][ T8652] loop4: p2 start 4194304 is beyond EOD, truncated [ 1682.607590][ T8634] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1682.614192][ T8652] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1682.626650][ T8633] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1682.635563][ T8633] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1682.644775][ T1037] loop2: p1 p2 p3 p4 [ 1682.650248][ T1037] loop2: p1 start 10 is beyond EOD, truncated 19:18:05 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00033a000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:05 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x7000000, 0x0, 0x0) [ 1682.656498][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1682.675940][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1682.682772][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1682.710659][ T8652] loop4: detected capacity change from 0 to 1 [ 1682.729927][ T8691] loop1: detected capacity change from 0 to 512 [ 1682.741761][ T8691] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1682.746442][ T8652] loop4: p1 p2 p4 [ 1682.752356][ T8691] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1682.753926][ T8652] loop4: p1 start 10 is beyond EOD, truncated [ 1682.767181][ T8652] loop4: p2 start 4194304 is beyond EOD, truncated [ 1682.773787][ T8652] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1682.787399][ T8691] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1682.797963][ T8691] ext4_test_bit(bit=16, block=18) = 0 19:18:05 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000242000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:05 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:05 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000008a00024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:05 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800fff000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:05 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00003f000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1682.803390][ T8691] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1682.820338][ T1037] loop4: p1 p2 p4 [ 1682.824287][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1682.830401][ T1037] loop4: p2 start 4194304 is beyond EOD, truncated [ 1682.836960][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:05 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0xf000000, 0x0, 0x0) 19:18:05 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1682.890437][ T8717] loop3: detected capacity change from 0 to 1 [ 1682.928847][ T8729] loop2: detected capacity change from 0 to 1 19:18:05 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) [ 1682.939107][ T8735] loop1: detected capacity change from 0 to 512 [ 1682.945632][ T8732] loop4: detected capacity change from 0 to 1 [ 1682.952818][ T8717] loop3: p1 p2 p3 p4 [ 1682.957475][ T8717] loop3: p1 start 10 is beyond EOD, truncated [ 1682.963601][ T8717] loop3: p2 size 1073873034 extends beyond EOD, truncated [ 1682.966311][ T8729] loop2: p1 p2 p3 p4 [ 1682.975031][ T8729] loop2: p1 start 10 is beyond EOD, truncated [ 1682.981159][ T8729] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1682.989577][ T8729] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1682.996329][ T1037] loop4: p1 p2 p4 [ 1682.996397][ T8729] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1683.001384][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1683.011369][ T8717] loop3: p3 start 2127165541 is beyond EOD, [ 1683.013576][ T1037] loop4: p2 start 4325376 is beyond EOD, truncated [ 1683.013594][ T1037] loop4: p4 size 3657465856 extends beyond EOD, [ 1683.019625][ T8717] truncated [ 1683.026212][ T1037] truncated [ 1683.038794][ T8717] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1683.049595][ T8735] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1683.061712][ T8732] loop4: p1 p2 p4 [ 1683.077257][ T8732] loop4: p1 start 10 is beyond EOD, truncated [ 1683.083365][ T8732] loop4: p2 start 4325376 is beyond EOD, truncated [ 1683.089896][ T8732] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1683.115256][ T8735] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1683.121780][ T8735] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1683.132164][ T8735] ext4_test_bit(bit=16, block=18) = 0 19:18:05 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) 19:18:05 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff818032011f0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:05 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000009000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:05 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000040000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1683.137565][ T8735] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1683.163332][ T8773] loop3: detected capacity change from 0 to 1 [ 1683.173549][ T8776] loop2: detected capacity change from 0 to 1 [ 1683.188577][ T8732] loop4: detected capacity change from 0 to 1 [ 1683.201891][ T1037] loop2: p1 p2 p3 p4 [ 1683.206562][ T8773] loop3: p1 p2 p3 p4 [ 1683.206616][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1683.210903][ T8773] loop3: p1 start 10 is beyond EOD, truncated [ 1683.216765][ T1037] loop2: p2 start 31 is beyond EOD, [ 1683.222997][ T8773] loop3: p2 size 1073873040 extends beyond EOD, truncated [ 1683.223544][ T8732] loop4: p1 p2 p4 [ 1683.228539][ T1037] truncated [ 1683.228545][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1683.228562][ T1037] loop2: p4 size 3657465856 extends beyond EOD, [ 1683.236547][ T8732] loop4: p1 start 10 is beyond EOD, [ 1683.239520][ T1037] truncated [ 1683.252580][ T8773] loop3: p3 start 2127165541 is beyond EOD, [ 1683.255780][ T8732] truncated [ 1683.255828][ T8732] loop4: p2 start 4325376 is beyond EOD, [ 1683.261186][ T8773] truncated [ 1683.261192][ T8773] loop3: p4 size 3657465856 extends beyond EOD, [ 1683.264314][ T8732] truncated [ 1683.264320][ T8732] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1683.270314][ T8773] truncated [ 1683.280886][ T8790] loop1: detected capacity change from 0 to 512 [ 1683.287030][ T8776] loop2: p1 p2 p3 p4 [ 1683.291833][ T8790] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1683.292233][ T8776] loop2: p1 start 10 is beyond EOD, [ 1683.300354][ T8790] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1683.302407][ T8776] truncated [ 1683.302413][ T8776] loop2: p2 start 31 is beyond EOD, truncated 19:18:06 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000048000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:06 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0) 19:18:06 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x10000000, 0x0, 0x0) 19:18:06 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800000cc0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:06 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000c000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:06 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0) [ 1683.302431][ T8776] loop2: p3 start 2127165541 is beyond EOD, [ 1683.309971][ T8790] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1683.312795][ T8776] truncated [ 1683.312801][ T8776] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1683.368602][ T8790] ext4_test_bit(bit=16, block=18) = 0 [ 1683.373988][ T8790] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:18:06 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000048000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:06 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0) [ 1683.434671][ T8819] loop4: detected capacity change from 0 to 1 [ 1683.449585][ T8823] loop3: detected capacity change from 0 to 1 [ 1683.449625][ T8824] loop2: detected capacity change from 0 to 1 19:18:06 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1683.496405][ T8819] loop4: p1 p2 p4 [ 1683.507072][ T8824] loop2: p1 p2 p3 p4 [ 1683.513441][ T8823] loop3: p1 p2 p3 p4 [ 1683.516263][ T8819] loop4: p1 start 10 is beyond EOD, truncated [ 1683.522340][ T8824] loop2: p1 start 10 is beyond EOD, [ 1683.524016][ T8819] loop4: p2 start 4718592 is beyond EOD, truncated [ 1683.524035][ T8819] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1683.542973][ T8824] truncated 19:18:06 executing program 5 (fault-call:2 fault-nth:0): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1683.543283][ T8823] loop3: p1 start 10 is beyond EOD, [ 1683.546098][ T8824] loop2: p2 start 204 is beyond EOD, truncated [ 1683.546118][ T8824] loop2: p3 start 2127165541 is beyond EOD, [ 1683.551397][ T8823] truncated [ 1683.551404][ T8823] loop3: p2 size 1073873088 extends beyond EOD, [ 1683.557592][ T8824] truncated [ 1683.557598][ T8824] loop2: p4 size 3657465856 extends beyond EOD, [ 1683.563564][ T8823] truncated [ 1683.585618][ T8824] truncated [ 1683.589677][ T1037] loop4: p1 p2 p4 [ 1683.598074][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1683.598163][ T8823] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1683.604185][ T1037] loop4: p2 start 4718592 is beyond EOD, truncated [ 1683.610988][ T8823] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1683.617507][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1683.632374][ T8840] loop1: detected capacity change from 0 to 512 19:18:06 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:06 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x2, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:06 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000004c000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1683.650460][ T8840] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1683.660028][ T8840] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1683.667316][ T8840] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1683.677834][ T8840] ext4_test_bit(bit=16, block=18) = 0 [ 1683.683306][ T8840] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:18:06 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x30000000, 0x0, 0x0) 19:18:06 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800000cf0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:06 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000402024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:06 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00004c000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:06 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x3, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1683.761235][ T8875] loop4: detected capacity change from 0 to 1 [ 1683.789062][ T8890] loop2: detected capacity change from 0 to 1 [ 1683.796406][ T8892] loop3: detected capacity change from 0 to 1 [ 1683.801993][ T8875] loop4: p1 p2 p4 [ 1683.806809][ T8875] loop4: p1 start 10 is beyond EOD, truncated [ 1683.812952][ T8875] loop4: p2 start 4980736 is beyond EOD, truncated [ 1683.819515][ T8875] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1683.835281][ T8902] loop1: detected capacity change from 0 to 512 [ 1683.842421][ T8892] loop3: p1 p2 p3 p4 [ 1683.847173][ T8892] loop3: p1 start 10 is beyond EOD, truncated [ 1683.853275][ T8892] loop3: p2 size 1073873412 extends beyond EOD, truncated [ 1683.861114][ T8890] loop2: p1 p2 p3 p4 [ 1683.866886][ T8890] loop2: p1 start 10 is beyond EOD, truncated [ 1683.873116][ T8890] loop2: p2 start 207 is beyond EOD, truncated [ 1683.879407][ T8890] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1683.886263][ T8890] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1683.903657][ T8892] loop3: p3 start 2127165541 is beyond EOD, truncated 19:18:06 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x4, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:06 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x5, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:06 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xa, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1683.910622][ T8892] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1683.918431][ T8902] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1683.926726][ T8902] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1683.933434][ T8902] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1683.943853][ T8902] ext4_test_bit(bit=16, block=18) = 0 [ 1683.949336][ T8902] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:18:06 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x40000000, 0x0, 0x0) 19:18:06 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000001402024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:06 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800000d50000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1684.007281][ T8875] loop4: detected capacity change from 0 to 1 [ 1684.036153][ T8875] loop4: p1 p2 p4 [ 1684.040386][ T8875] loop4: p1 start 10 is beyond EOD, truncated [ 1684.046679][ T8875] loop4: p2 start 4980736 is beyond EOD, truncated [ 1684.052686][ T8940] loop3: detected capacity change from 0 to 1 [ 1684.053196][ T8875] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1684.068075][ T8943] loop2: detected capacity change from 0 to 1 [ 1684.116453][ T8940] loop3: p1 p2 p3 p4 [ 1684.120666][ T8943] loop2: p1 p2 p3 p4 [ 1684.125075][ T8943] loop2: p1 start 10 is beyond EOD, truncated [ 1684.131331][ T8943] loop2: p2 start 213 is beyond EOD, truncated [ 1684.137521][ T8943] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1684.140068][ T8940] loop3: p1 start 10 is beyond EOD, [ 1684.144307][ T8943] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1684.156932][ T8940] truncated 19:18:06 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000054000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:06 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000354000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:06 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x18, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1684.160038][ T8940] loop3: p2 size 1073873428 extends beyond EOD, truncated [ 1684.167635][ T8940] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1684.174489][ T8940] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1684.182029][ T1037] loop4: p1 p2 p4 [ 1684.188180][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1684.194269][ T1037] loop4: p2 start 4980736 is beyond EOD, truncated [ 1684.201156][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:07 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x24, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:07 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800000db0000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1684.216436][ T8962] loop1: detected capacity change from 0 to 512 [ 1684.230644][ T8962] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1684.243247][ T8975] loop2: detected capacity change from 0 to 1 [ 1684.243633][ T8962] EXT4-fs (loop1): orphan cleanup on readonly fs 19:18:07 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x42000000, 0x0, 0x0) 19:18:07 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x58, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1684.266885][ T8962] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1684.277315][ T8962] ext4_test_bit(bit=16, block=18) = 0 [ 1684.282695][ T8962] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1684.313468][ T8975] loop2: p1 p2 p3 p4 19:18:07 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000003024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1684.322217][ T8975] loop2: p1 start 10 is beyond EOD, truncated [ 1684.328492][ T8975] loop2: p2 start 219 is beyond EOD, truncated [ 1684.335017][ T8975] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1684.341947][ T8975] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1684.353991][ T8996] loop4: detected capacity change from 0 to 1 19:18:07 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x20c, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1684.378995][ T8996] loop4: p1 p2 p4 [ 1684.383057][ T8996] loop4: p1 start 10 is beyond EOD, truncated [ 1684.389208][ T8996] loop4: p2 start 5505024 is beyond EOD, truncated [ 1684.395745][ T8996] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1684.412781][ T9002] loop3: detected capacity change from 0 to 1 [ 1684.420650][ T1037] loop2: p1 p2 p3 p4 19:18:07 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000060000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:07 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800800000000000001004000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:07 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x218, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1684.425071][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1684.431192][ T1037] loop2: p2 start 219 is beyond EOD, truncated [ 1684.437376][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1684.444270][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1684.486527][ T9002] loop3: p1 p2 p3 p4 [ 1684.496451][ T9002] loop3: p1 start 10 is beyond EOD, truncated [ 1684.502642][ T9002] loop3: p2 size 1073873664 extends beyond EOD, truncated [ 1684.513536][ T8996] loop4: detected capacity change from 0 to 1 [ 1684.518982][ T9002] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1684.526507][ T9002] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1684.526730][ T9034] loop1: detected capacity change from 0 to 512 [ 1684.533878][ T9025] loop2: detected capacity change from 0 to 1 [ 1684.566174][ T8996] loop4: p1 p2 p4 [ 1684.570037][ T8996] loop4: p1 start 10 is beyond EOD, truncated [ 1684.576147][ T8996] loop4: p2 start 5505024 is beyond EOD, truncated [ 1684.582649][ T8996] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1684.590070][ T9025] loop2: p1 p2 p3 p4 [ 1684.594149][ T9025] loop2: p1 start 10 is beyond EOD, truncated [ 1684.600246][ T9025] loop2: p2 size 1073742080 extends beyond EOD, truncated [ 1684.616577][ T9025] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1684.623360][ T9025] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:07 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000055000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:07 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x241, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:07 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x83100000, 0x0, 0x0) 19:18:07 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000204024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1684.630897][ T9034] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1684.639929][ T1037] loop2: p1 p2 p3 p4 [ 1684.644040][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1684.650143][ T1037] loop2: p2 size 1073742080 extends beyond EOD, truncated [ 1684.650646][ T9034] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1684.658260][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1684.670414][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:07 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800800000000000000014000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:07 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x300, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1684.679123][ T9034] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1684.689554][ T9034] ext4_test_bit(bit=16, block=18) = 0 [ 1684.695021][ T9034] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1684.707984][ T9059] loop3: detected capacity change from 0 to 1 [ 1684.744480][ T9068] loop4: detected capacity change from 0 to 1 [ 1684.746184][ T1037] loop3: p1 p2 p3 p4 [ 1684.765216][ T9076] loop2: detected capacity change from 0 to 1 [ 1684.770602][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1684.777402][ T1037] loop3: p2 size 1073873922 extends beyond EOD, truncated [ 1684.786266][ T9068] loop4: p1 p2 p4 19:18:07 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000162000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1684.790754][ T9068] loop4: p1 start 10 is beyond EOD, truncated [ 1684.796860][ T9068] loop4: p2 start 5570560 is beyond EOD, truncated [ 1684.803386][ T9068] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1684.816190][ T9076] loop2: p1 p2 p3 p4 [ 1684.820623][ T9076] loop2: p1 start 10 is beyond EOD, truncated [ 1684.826755][ T9076] loop2: p2 size 1073807360 extends beyond EOD, truncated 19:18:07 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x500, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1684.847791][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1684.851078][ T9076] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1684.854585][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1684.861351][ T9076] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1684.879550][ T9059] loop3: p1 p2 p3 p4 [ 1684.883700][ T9059] loop3: p1 start 10 is beyond EOD, truncated [ 1684.889812][ T9059] loop3: p2 size 1073873922 extends beyond EOD, truncated 19:18:07 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xa00, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:07 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800802000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1684.898228][ T9059] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1684.905022][ T9059] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1684.923611][ T9068] loop4: detected capacity change from 0 to 1 [ 1684.938751][ T9116] loop1: detected capacity change from 0 to 512 19:18:07 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xc02, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:07 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000604024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1684.956443][ T9068] loop4: p1 p2 p4 [ 1684.966365][ T9068] loop4: p1 start 10 is beyond EOD, truncated [ 1684.972645][ T9068] loop4: p2 start 5570560 is beyond EOD, truncated [ 1684.979187][ T9068] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1684.987564][ T9116] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1684.999471][ T9129] loop2: detected capacity change from 0 to 1 [ 1685.011972][ T9116] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1685.019403][ T9116] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1685.029986][ T9116] ext4_test_bit(bit=16, block=18) = 0 [ 1685.035495][ T9116] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1685.046460][ T9129] loop2: p1 p2 p3 p4 [ 1685.046730][ T9139] loop3: detected capacity change from 0 to 1 19:18:07 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000060000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:07 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0xcf030000, 0x0, 0x0) 19:18:07 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x1800, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:07 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000163000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1685.050561][ T9129] loop2: p1 start 10 is beyond EOD, truncated [ 1685.062679][ T9129] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1685.071777][ T9129] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1685.078665][ T9129] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1685.091768][ T1037] loop2: p1 p2 p3 p4 [ 1685.095923][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1685.102082][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1685.116822][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1685.123621][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1685.146375][ T9139] loop3: p1 p2 p3 p4 [ 1685.150682][ T9139] loop3: p1 start 10 is beyond EOD, truncated [ 1685.156842][ T9139] loop3: p2 size 1073873926 extends beyond EOD, truncated 19:18:07 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800803000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1685.165657][ T9139] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1685.172540][ T9139] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1685.199941][ T9168] loop1: detected capacity change from 0 to 512 19:18:08 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x1802, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1685.212111][ T9166] loop4: detected capacity change from 0 to 1 [ 1685.221276][ T1037] loop3: p1 p2 p3 p4 [ 1685.234959][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1685.241124][ T1037] loop3: p2 size 1073873926 extends beyond EOD, truncated [ 1685.249499][ T9168] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1685.257892][ T9174] loop2: detected capacity change from 0 to 1 [ 1685.264847][ T9168] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1685.272249][ T9166] loop4: p1 p2 p4 [ 1685.276524][ T9166] loop4: p1 start 10 is beyond EOD, truncated [ 1685.277153][ T9168] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1685.282614][ T9166] loop4: p2 start 6291456 is beyond EOD, truncated [ 1685.292984][ T9168] ext4_test_bit(bit=16, block=18) = 0 [ 1685.299539][ T9166] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:08 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x2400, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:08 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000068000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1685.304909][ T9168] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1685.317239][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1685.329401][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1685.340985][ T9174] loop2: p1 p2 p3 p4 [ 1685.345523][ T9174] loop2: p1 start 10 is beyond EOD, truncated [ 1685.351643][ T9174] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:18:08 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x4102, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:08 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0xeffdffff, 0x0, 0x0) [ 1685.369611][ T9174] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1685.376638][ T9174] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1685.396970][ T9166] loop4: detected capacity change from 0 to 1 19:18:08 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000008004024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1685.414060][ T9207] loop1: detected capacity change from 0 to 512 [ 1685.436350][ T9166] loop4: p1 p2 p4 [ 1685.440127][ T9166] loop4: p1 start 10 is beyond EOD, truncated [ 1685.446255][ T9166] loop4: p2 start 6291456 is beyond EOD, truncated [ 1685.452754][ T9166] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:08 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800804000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1685.478812][ T9220] loop3: detected capacity change from 0 to 1 [ 1685.505593][ T9207] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1685.516229][ T9228] loop2: detected capacity change from 0 to 1 [ 1685.519471][ T9207] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1685.529094][ T1037] loop3: p1 p2 p3 p4 [ 1685.533254][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1685.539348][ T1037] loop3: p2 size 1073874048 extends beyond EOD, truncated [ 1685.547838][ T9207] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1685.547990][ T9228] loop2: p1 p2 p3 p4 [ 1685.558293][ T9207] ext4_test_bit(bit=16, block=18) = 0 [ 1685.562712][ T9228] loop2: p1 start 10 is beyond EOD, [ 1685.567639][ T9207] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1685.572150][ T1037] loop3: p3 start 2127165541 is beyond EOD, [ 1685.572938][ T9228] truncated [ 1685.572944][ T9228] loop2: p2 size 1073872896 extends beyond EOD, [ 1685.583453][ T1037] truncated [ 1685.589414][ T9228] truncated [ 1685.590078][ T9228] loop2: p3 start 2127165541 is beyond EOD, [ 1685.592526][ T1037] loop3: p4 size 3657465856 extends beyond EOD, [ 1685.598859][ T9228] truncated [ 1685.601944][ T1037] truncated 19:18:08 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000063000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:08 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x5800, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:08 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00006c000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1685.623589][ T9228] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1685.632351][ T9220] loop3: p1 p2 p3 p4 [ 1685.637079][ T9220] loop3: p1 start 10 is beyond EOD, truncated [ 1685.643194][ T9220] loop3: p2 size 1073874048 extends beyond EOD, truncated [ 1685.654605][ T9220] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1685.661416][ T9220] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:18:08 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000f504024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:08 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800805000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:08 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xd7ff, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1685.719831][ T9256] loop4: detected capacity change from 0 to 1 [ 1685.762307][ T9256] loop4: p1 p2 p4 [ 1685.765347][ T9267] loop1: detected capacity change from 0 to 512 [ 1685.766365][ T9256] loop4: p1 start 10 is beyond EOD, truncated [ 1685.778468][ T9256] loop4: p2 start 6488064 is beyond EOD, truncated [ 1685.785099][ T9256] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1685.791518][ T9270] loop3: detected capacity change from 0 to 1 [ 1685.805978][ T9278] loop2: detected capacity change from 0 to 1 19:18:08 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xff0f, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1685.812430][ T9267] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1685.816399][ T9270] loop3: p1 p2 p3 p4 [ 1685.825478][ T9270] loop3: p1 start 10 is beyond EOD, truncated [ 1685.826477][ T9267] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1685.831759][ T9270] loop3: p2 size 1073874165 extends beyond EOD, truncated [ 1685.846025][ T9267] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1685.856592][ T9267] ext4_test_bit(bit=16, block=18) = 0 19:18:08 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xffd7, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1685.862055][ T9267] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1685.873381][ T9278] loop2: p1 p2 p3 p4 [ 1685.876552][ T9270] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1685.880231][ T9278] loop2: p1 start 10 is beyond EOD, [ 1685.884121][ T9270] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1685.896630][ T9278] truncated [ 1685.899763][ T9278] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:18:08 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00016c000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:08 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0xff600000, 0x0, 0x0) 19:18:08 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000005024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:08 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x50000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1685.915694][ T9278] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1685.922638][ T9278] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1685.943505][ T9256] loop4: detected capacity change from 0 to 1 [ 1686.006229][ T1037] loop4: p1 p2 p4 [ 1686.010058][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1686.016159][ T1037] loop4: p2 start 6488064 is beyond EOD, truncated [ 1686.022755][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1686.025109][ T9326] loop3: detected capacity change from 0 to 1 [ 1686.036871][ T9327] loop1: detected capacity change from 0 to 512 [ 1686.066104][ T9327] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1686.076437][ T9256] loop4: p1 p2 p4 [ 1686.080407][ T9327] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1686.080491][ T9326] loop3: p1 p2 p3 p4 [ 1686.089804][ T9256] loop4: p1 start 10 is beyond EOD, truncated [ 1686.091435][ T9326] loop3: p1 start 10 is beyond EOD, truncated [ 1686.096842][ T9256] loop4: p2 start 6488064 is beyond EOD, truncated [ 1686.102929][ T9326] loop3: p2 size 1073874176 extends beyond EOD, truncated 19:18:08 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000068000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:08 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xf0ff7f, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:08 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800806000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1686.109435][ T9256] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1686.117804][ T9326] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1686.124751][ T9327] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1686.130498][ T9326] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1686.140853][ T9327] ext4_test_bit(bit=16, block=18) = 0 [ 1686.153311][ T9327] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:18:08 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00016d000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:08 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000006024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1686.183119][ T9350] loop2: detected capacity change from 0 to 1 [ 1686.216041][ T9350] loop2: p1 p2 p3 p4 [ 1686.223721][ T9350] loop2: p1 start 10 is beyond EOD, truncated 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x1000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1686.229867][ T9350] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1686.273126][ T9350] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1686.280415][ T9350] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1686.286109][ T9372] loop3: detected capacity change from 0 to 1 [ 1686.287582][ T9370] loop1: detected capacity change from 0 to 512 [ 1686.300159][ T9371] loop4: detected capacity change from 0 to 1 [ 1686.316062][ T9372] loop3: p1 p2 p3 p4 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x2000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1686.320330][ T9372] loop3: p1 start 10 is beyond EOD, truncated [ 1686.326625][ T9372] loop3: p2 size 1073874432 extends beyond EOD, truncated [ 1686.335931][ T9370] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1686.350034][ T9370] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1686.355553][ T9372] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1686.363225][ T9372] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x3000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:09 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800807000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1686.371508][ T9370] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1686.371844][ T9371] loop4: p1 p2 p4 [ 1686.382010][ T9370] ext4_test_bit(bit=16, block=18) = 0 [ 1686.387661][ T9371] loop4: p1 start 10 is beyond EOD, truncated [ 1686.391093][ T9370] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1686.397178][ T9371] loop4: p2 start 6815744 is beyond EOD, truncated [ 1686.397194][ T9371] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1686.463035][ T9371] loop4: detected capacity change from 0 to 1 [ 1686.486707][ T9371] loop4: p1 p2 p4 [ 1686.490928][ T9371] loop4: p1 start 10 is beyond EOD, truncated [ 1686.497060][ T9371] loop4: p2 start 6815744 is beyond EOD, truncated [ 1686.503108][ T9411] loop2: detected capacity change from 0 to 1 19:18:09 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0xfffffdef, 0x0, 0x0) 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x4000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:09 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000406024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1686.503566][ T9371] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1686.526198][ T1037] loop2: p1 p2 p3 p4 [ 1686.530403][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1686.536513][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1686.545040][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1686.551930][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:09 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000006c000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:09 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000074000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xa000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1686.565826][ T9411] loop2: p1 p2 p3 p4 [ 1686.568416][ T9427] loop3: detected capacity change from 0 to 1 [ 1686.576015][ T9411] loop2: p1 start 10 is beyond EOD, truncated [ 1686.582137][ T9411] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1686.600507][ T9411] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1686.607345][ T9411] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xc020000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1686.616045][ T9427] loop3: p1 p2 p3 p4 [ 1686.620129][ T9427] loop3: p1 start 10 is beyond EOD, truncated [ 1686.620949][ T9439] loop1: detected capacity change from 0 to 512 [ 1686.626256][ T9427] loop3: p2 size 1073874436 extends beyond EOD, truncated [ 1686.652235][ T9439] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1686.671992][ T9427] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1686.674220][ T9439] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1686.678806][ T9427] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1686.692397][ T9451] loop4: detected capacity change from 0 to 1 [ 1686.697448][ T9439] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1686.709165][ T9439] ext4_test_bit(bit=16, block=18) = 0 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x18000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:09 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800808000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1686.714527][ T9439] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:18:09 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000178000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x18020000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x24000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1686.776029][ T9451] loop4: p1 p2 p4 [ 1686.780119][ T9451] loop4: p1 start 10 is beyond EOD, truncated [ 1686.786242][ T9451] loop4: p2 start 7077888 is beyond EOD, truncated [ 1686.792773][ T9451] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1686.795935][ T9469] loop2: detected capacity change from 0 to 1 [ 1686.811511][ T9481] loop1: detected capacity change from 0 to 512 19:18:09 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x400000000000, 0x0, 0x0) 19:18:09 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000007024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x41020000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1686.833853][ T9481] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1686.845536][ T9481] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1686.873733][ T9481] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1686.884133][ T9481] ext4_test_bit(bit=16, block=18) = 0 [ 1686.889611][ T9481] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1686.896575][ T9451] loop4: detected capacity change from 0 to 1 [ 1686.906802][ T9469] loop2: p1 p2 p3 p4 [ 1686.910893][ T9469] loop2: p1 start 10 is beyond EOD, truncated [ 1686.917041][ T9469] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1686.929260][ T9503] loop3: detected capacity change from 0 to 1 [ 1686.936186][ T9469] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1686.943006][ T9469] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1686.957332][ T1037] loop4: p1 p2 p4 [ 1686.961223][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1686.966099][ T9503] loop3: p1 p2 p3 p4 [ 1686.967313][ T1037] loop4: p2 start 7077888 is beyond EOD, truncated [ 1686.971521][ T9503] loop3: p1 start 10 is beyond EOD, truncated [ 1686.977951][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1686.984004][ T9503] loop3: p2 size 1073874688 extends beyond EOD, truncated [ 1686.999185][ T9503] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1687.006036][ T9503] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1687.018138][ T9451] loop4: p1 p2 p4 [ 1687.022044][ T9451] loop4: p1 start 10 is beyond EOD, truncated [ 1687.028273][ T9451] loop4: p2 start 7077888 is beyond EOD, truncated [ 1687.034781][ T9451] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x58000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:09 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000179000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:09 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800809000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:09 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000006e000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:09 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000009024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1687.111516][ T1037] loop4: p1 p2 p4 [ 1687.115419][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1687.121551][ T1037] loop4: p2 start 7077888 is beyond EOD, truncated [ 1687.128073][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1687.164342][ T9547] loop1: detected capacity change from 0 to 512 [ 1687.173599][ T9548] loop2: detected capacity change from 0 to 1 [ 1687.173618][ T9551] loop3: detected capacity change from 0 to 1 [ 1687.187765][ T9547] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1687.197801][ T9547] EXT4-fs (loop1): orphan cleanup on readonly fs 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x7ffff000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1687.204748][ T9547] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1687.215186][ T9547] ext4_test_bit(bit=16, block=18) = 0 [ 1687.220647][ T9547] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1687.232433][ T9545] loop4: detected capacity change from 0 to 1 [ 1687.249723][ T9548] loop2: p1 p2 p3 p4 19:18:10 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00007a000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1687.268104][ T9548] loop2: p1 start 10 is beyond EOD, truncated [ 1687.274266][ T9548] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1687.281437][ T9551] loop3: p1 p2 p3 p4 [ 1687.285531][ T9551] loop3: p1 start 10 is beyond EOD, truncated [ 1687.291636][ T9551] loop3: p2 size 1073875200 extends beyond EOD, truncated [ 1687.299326][ T9551] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1687.306140][ T9551] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x91ffffff, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:10 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x60ffffffffff, 0x0, 0x0) [ 1687.315669][ T9548] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1687.322549][ T9548] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1687.330048][ T9545] loop4: p1 p2 p4 [ 1687.333918][ T9545] loop4: p1 start 10 is beyond EOD, truncated [ 1687.340020][ T9545] loop4: p2 start 7208960 is beyond EOD, truncated [ 1687.346563][ T9545] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:10 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000a024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1687.374405][ T9583] loop1: detected capacity change from 0 to 512 [ 1687.393066][ T9583] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1687.413725][ T9583] EXT4-fs (loop1): orphan cleanup on readonly fs 19:18:10 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180080a000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xa28570fb, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1687.417847][ T9545] loop4: detected capacity change from 0 to 1 [ 1687.430581][ T9583] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1687.434883][ T9601] loop3: detected capacity change from 0 to 1 [ 1687.440975][ T9583] ext4_test_bit(bit=16, block=18) = 0 [ 1687.440991][ T9583] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. 19:18:10 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000084000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xb99cffff, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1687.495988][ T9545] loop4: p1 p2 p4 [ 1687.499962][ T9545] loop4: p1 start 10 is beyond EOD, truncated [ 1687.506078][ T9545] loop4: p2 start 7208960 is beyond EOD, truncated [ 1687.511007][ T9606] loop2: detected capacity change from 0 to 1 [ 1687.512738][ T9545] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1687.513016][ T9601] loop3: p1 p2 p3 p4 [ 1687.541942][ T9601] loop3: p1 start 10 is beyond EOD, truncated [ 1687.548065][ T9601] loop3: p2 size 1073875456 extends beyond EOD, truncated [ 1687.568498][ T9601] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1687.568862][ T1037] loop2: p1 p2 p3 p4 [ 1687.575297][ T9601] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1687.586624][ T1037] loop2: p1 start 10 is beyond EOD, truncated 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xd7ff0000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:10 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000074000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xd7ffffff, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1687.592713][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1687.615649][ T9627] loop1: detected capacity change from 0 to 512 [ 1687.622382][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1687.629220][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1687.641361][ T9627] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1687.654621][ T9627] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1687.663319][ T9606] loop2: p1 p2 p3 p4 [ 1687.663337][ T9639] loop4: detected capacity change from 0 to 1 [ 1687.668032][ T9606] loop2: p1 start 10 is beyond EOD, truncated [ 1687.679600][ T9606] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1687.680189][ T9627] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xf5ffffff, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:10 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000286000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1687.697185][ T9627] ext4_test_bit(bit=16, block=18) = 0 [ 1687.702557][ T9627] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1687.710505][ T9606] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1687.719867][ T9606] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1687.735934][ T9639] loop4: p1 p2 p4 [ 1687.740200][ T9639] loop4: p1 start 10 is beyond EOD, truncated 19:18:10 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000b024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:10 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x970000000000, 0x0, 0x0) 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xfb7085a2, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1687.746303][ T9639] loop4: p2 start 7602176 is beyond EOD, truncated [ 1687.752910][ T9639] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1687.796654][ T9665] loop1: detected capacity change from 0 to 512 19:18:10 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180080b000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xfdffffff, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1687.844364][ T9669] loop3: detected capacity change from 0 to 1 [ 1687.846522][ T9639] loop4: detected capacity change from 0 to 1 [ 1687.850800][ T9665] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1687.866529][ T9665] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1687.880720][ T1037] loop4: p1 p2 p4 [ 1687.884564][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1687.890704][ T1037] loop4: p2 start 7602176 is beyond EOD, truncated [ 1687.890949][ T9665] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1687.897254][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1687.906200][ T9692] loop2: detected capacity change from 0 to 1 [ 1687.907600][ T9665] ext4_test_bit(bit=16, block=18) = 0 [ 1687.926220][ T9665] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1687.938960][ T9639] loop4: p1 p2 p4 [ 1687.942929][ T9639] loop4: p1 start 10 is beyond EOD, truncated [ 1687.949049][ T9639] loop4: p2 start 7602176 is beyond EOD, truncated [ 1687.955581][ T9639] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1687.963000][ T9669] loop3: p1 p2 p3 p4 [ 1687.968658][ T9669] loop3: p1 start 10 is beyond EOD, truncated [ 1687.974771][ T9669] loop3: p2 size 1073875712 extends beyond EOD, truncated [ 1687.984077][ T9669] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1687.985925][ T9692] loop2: p1 p2 p3 p4 19:18:10 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000007a000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xfeffffff, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1687.990918][ T9669] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1687.995156][ T9692] loop2: p1 start 10 is beyond EOD, truncated [ 1688.008163][ T9692] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1688.034428][ T9692] loop2: p3 start 2127165541 is beyond EOD, truncated 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xff0f0000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xffff9cb9, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1688.041298][ T9692] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:10 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000c024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:10 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180080c000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:10 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000287000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:10 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xffffff91, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1688.108434][ T9725] loop4: detected capacity change from 0 to 1 [ 1688.153470][ T9733] loop3: detected capacity change from 0 to 1 [ 1688.163460][ T9725] loop4: p1 p2 p4 [ 1688.167907][ T9734] loop2: detected capacity change from 0 to 1 [ 1688.174434][ T9725] loop4: p1 start 10 is beyond EOD, truncated [ 1688.180548][ T9725] loop4: p2 start 7995392 is beyond EOD, truncated [ 1688.187096][ T9725] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1688.226031][ T1037] loop2: p1 p2 p3 p4 [ 1688.229946][ T9733] loop3: p1 p2 p3 p4 [ 1688.230371][ T1037] loop2: p1 start 10 is beyond EOD, truncated [ 1688.234376][ T9733] loop3: p1 start 10 is beyond EOD, [ 1688.240147][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1688.240761][ T1037] loop2: p3 start 2127165541 is beyond EOD, [ 1688.245469][ T9733] truncated [ 1688.245475][ T9733] loop3: p2 size 1073875968 extends beyond EOD, truncated [ 1688.265870][ T9733] loop3: p3 start 2127165541 is beyond EOD, [ 1688.268843][ T1037] truncated [ 1688.268849][ T1037] loop2: p4 size 3657465856 extends beyond EOD, [ 1688.274816][ T9733] truncated [ 1688.274822][ T9733] loop3: p4 size 3657465856 extends beyond EOD, [ 1688.278016][ T1037] truncated [ 1688.297076][ T9733] truncated [ 1688.302452][ T9753] loop1: detected capacity change from 0 to 512 [ 1688.308937][ T9734] loop2: p1 p2 p3 p4 [ 1688.313063][ T9725] loop4: detected capacity change from 0 to 1 [ 1688.313425][ T9734] loop2: p1 start 10 is beyond EOD, truncated 19:18:11 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x10400000000000, 0x0, 0x0) 19:18:11 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xffffffd7, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1688.322056][ T9753] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1688.325302][ T9734] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1688.335550][ T9734] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1688.341534][ T9753] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1688.347816][ T9734] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1688.361524][ T9753] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1688.365764][ T9725] loop4: p1 p2 p4 19:18:11 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000d024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1688.371885][ T9753] ext4_test_bit(bit=16, block=18) = 0 [ 1688.381064][ T9753] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1688.413812][ T9725] loop4: p1 start 10 is beyond EOD, truncated [ 1688.419945][ T9725] loop4: p2 start 7995392 is beyond EOD, truncated 19:18:11 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000292000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1688.427003][ T9725] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1688.442290][ T9781] loop3: detected capacity change from 0 to 1 19:18:11 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000480000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:11 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xfffffff5, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:11 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180080d000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1688.476291][ T9781] loop3: p1 p2 p3 p4 [ 1688.485838][ T9781] loop3: p1 start 10 is beyond EOD, truncated [ 1688.492040][ T9781] loop3: p2 size 1073876224 extends beyond EOD, truncated [ 1688.503174][ T9792] loop1: detected capacity change from 0 to 512 [ 1688.512660][ T9781] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1688.519540][ T9781] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:18:11 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xfffffffd, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1688.527442][ T1037] loop4: p1 p2 p4 [ 1688.531334][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1688.537438][ T1037] loop4: p2 start 7995392 is beyond EOD, truncated [ 1688.544725][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1688.554281][ T9804] loop2: detected capacity change from 0 to 1 [ 1688.567962][ T9792] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1688.594528][ T9792] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1688.616659][ T9792] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1688.627184][ T9792] ext4_test_bit(bit=16, block=18) = 0 [ 1688.635569][ T9804] loop2: p1 p2 p3 p4 19:18:11 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xfffffffe, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:11 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000e024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1688.640422][ T9804] loop2: p1 start 10 is beyond EOD, truncated [ 1688.646766][ T9804] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1688.648330][ T9821] loop4: detected capacity change from 0 to 1 [ 1688.677966][ T9804] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1688.684788][ T9804] loop2: p4 size 3657465856 extends beyond EOD, truncated 19:18:11 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000293000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:11 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x187e9400635, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1688.695874][ T9821] loop4: p1 p2 p4 [ 1688.699832][ T9821] loop4: p1 start 10 is beyond EOD, truncated [ 1688.705996][ T9821] loop4: p2 start 8388608 is beyond EOD, truncated [ 1688.712495][ T9821] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1688.722622][ T9833] loop3: detected capacity change from 0 to 1 [ 1688.776020][ T1037] loop3: p1 p2 p3 p4 [ 1688.780211][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1688.786333][ T1037] loop3: p2 size 1073876480 extends beyond EOD, truncated [ 1688.793613][ T9821] loop4: detected capacity change from 0 to 1 [ 1688.800705][ T9861] loop1: detected capacity change from 0 to 512 [ 1688.802945][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1688.813979][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1688.822607][ T9833] loop3: p1 p2 p3 p4 [ 1688.827165][ T9833] loop3: p1 start 10 is beyond EOD, truncated [ 1688.833265][ T9833] loop3: p2 size 1073876480 extends beyond EOD, truncated [ 1688.840677][ T9861] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1688.848992][ T9821] loop4: p1 p2 p4 [ 1688.853968][ T9821] loop4: p1 start 10 is beyond EOD, truncated [ 1688.860086][ T9821] loop4: p2 start 8388608 is beyond EOD, truncated [ 1688.866609][ T9821] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1688.875479][ T9861] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1688.883641][ T9861] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1688.894042][ T9861] ext4_test_bit(bit=16, block=18) = 0 [ 1688.901045][ T9833] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1688.907869][ T9833] loop3: p4 size 3657465856 extends beyond EOD, truncated 19:18:11 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x7ffffffff000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:11 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180080e000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:11 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008ffffff80000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:11 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x10540000000000, 0x0, 0x0) 19:18:11 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f000094000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:11 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff8180080000000000000f024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:11 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x5000000000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1689.016547][ T9895] loop4: detected capacity change from 0 to 1 [ 1689.023112][ T9896] loop1: detected capacity change from 0 to 512 [ 1689.031555][ T9902] loop2: detected capacity change from 0 to 1 [ 1689.037790][ T9903] loop3: detected capacity change from 0 to 1 [ 1689.047365][ T9896] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1689.057301][ T9896] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1689.067837][ T9903] loop3: p1 p2 p3 p4 [ 1689.072130][ T9895] loop4: p1 p2 p4 [ 1689.072174][ T9903] loop3: p1 start 10 is beyond EOD, truncated [ 1689.076203][ T9895] loop4: p1 start 10 is beyond EOD, [ 1689.081948][ T9903] loop3: p2 size 1073876736 extends beyond EOD, truncated [ 1689.084523][ T9903] loop3: p3 start 2127165541 is beyond EOD, [ 1689.087290][ T9895] truncated [ 1689.094463][ T9903] truncated [ 1689.094469][ T9903] loop3: p4 size 3657465856 extends beyond EOD, 19:18:11 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f003597000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1689.100581][ T9895] loop4: p2 start 8388608 is beyond EOD, truncated [ 1689.100597][ T9895] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1689.102881][ T1037] loop2: p1 p2 p3 p4 [ 1689.103773][ T9903] truncated [ 1689.107844][ T9896] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1689.115297][ T1037] loop2: p1 start 10 is beyond EOD, [ 1689.119882][ T9896] ext4_test_bit(bit=16, block=18) = 0 [ 1689.156216][ T1037] truncated [ 1689.159344][ T1037] loop2: p2 size 1073872896 extends beyond EOD, truncated 19:18:11 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000011024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:11 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xf0ff7f00000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1689.170707][ T1037] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1689.177555][ T1037] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1689.198345][ T9902] loop2: p1 p2 p3 p4 [ 1689.202500][ T9902] loop2: p1 start 10 is beyond EOD, truncated [ 1689.208617][ T9902] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1689.224790][ T9902] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1689.231715][ T9902] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1689.234164][ T9895] loop4: detected capacity change from 0 to 1 [ 1689.253091][ T9946] loop3: detected capacity change from 0 to 1 [ 1689.254105][ T9948] loop1: detected capacity change from 0 to 512 [ 1689.278639][ T9948] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1689.287001][ T9948] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1689.289423][ T9895] loop4: p1 p2 p4 [ 1689.293432][ T9948] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1689.307556][ T9948] ext4_test_bit(bit=16, block=18) = 0 [ 1689.312119][ T9895] loop4: p1 start 10 is beyond EOD, truncated [ 1689.319033][ T9895] loop4: p2 start 8388608 is beyond EOD, truncated 19:18:12 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xf0ffffff7f0000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:12 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff8180080f000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1689.325570][ T9895] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1689.332837][ T9946] loop3: p1 p2 p3 p4 [ 1689.359081][ T9946] loop3: p1 start 10 is beyond EOD, truncated [ 1689.365270][ T9946] loop3: p2 size 1073877248 extends beyond EOD, truncated 19:18:12 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x100000000000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1689.376102][ T1037] loop4: p1 p2 p4 [ 1689.380151][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1689.384957][ T9946] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1689.386272][ T1037] loop4: p2 start 8388608 is beyond EOD, truncated [ 1689.393091][ T9946] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1689.399718][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00029c000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) 19:18:12 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x3a28, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) io_uring_enter(r0, 0x6196, 0x0, 0x20000000000000, 0x0, 0x0) 19:18:12 executing program 4: syz_read_part_table(0x0, 0xa, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff818008ffffff81000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:12 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x200000000000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1689.425485][ T9969] loop2: detected capacity change from 0 to 1 19:18:12 executing program 3: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="0201a9ffffff0a000000ff45ac0480ffffff81800800000000000012024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) [ 1689.465939][ T9969] loop2: p1 p2 p3 p4 [ 1689.470273][ T9969] loop2: p1 start 10 is beyond EOD, truncated [ 1689.476393][ T9969] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1689.505507][ T9983] loop1: detected capacity change from 0 to 512 19:18:12 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x300000000000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1689.514927][ T9969] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1689.521751][ T9969] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1689.551956][ T9983] EXT4-fs (loop1): revision level too high, forcing read-only mode 19:18:12 executing program 2: set_mempolicy(0x2, &(0x7f0000000100)=0x71, 0x2) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="020181ffffff0a000000ff45ac0480ffffff81800810000000000000024000ffffffecd3cac765f8c97e8877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 19:18:12 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x400000000000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) 19:18:12 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xa00000000000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1689.566686][ T9983] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1689.579758][T10004] loop3: detected capacity change from 0 to 1 [ 1689.588563][T10005] loop4: detected capacity change from 0 to 1 [ 1689.597738][ T9983] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1689.608106][ T9983] ext4_test_bit(bit=16, block=18) = 0 19:18:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f00029d000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1689.658595][T10004] loop3: p1 p2 p3 p4 [ 1689.662652][T10005] loop4: p1 p2 p4 [ 1689.663932][T10004] loop3: p1 start 10 is beyond EOD, truncated [ 1689.667128][T10005] loop4: p1 start 10 is beyond EOD, truncated [ 1689.672568][T10004] loop3: p2 size 1073877504 extends beyond EOD, truncated [ 1689.678664][T10005] loop4: p2 start 8454144 is beyond EOD, truncated [ 1689.692254][T10005] loop4: p4 size 3657465856 extends beyond EOD, truncated 19:18:12 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0xc02000000000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1689.711691][T10004] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1689.718514][T10004] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1689.733483][ T1037] loop3: p1 p2 p3 p4 [ 1689.737772][ T1037] loop3: p1 start 10 is beyond EOD, truncated [ 1689.743909][ T1037] loop3: p2 size 1073877504 extends beyond EOD, truncated [ 1689.752045][T10028] loop2: detected capacity change from 0 to 1 19:18:12 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000002c0), 0x4) sendto$inet(r0, 0x0, 0x1800000000000000, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @empty}, 0x10) [ 1689.765685][ T1037] loop3: p3 start 2127165541 is beyond EOD, truncated [ 1689.772469][ T1037] loop3: p4 size 3657465856 extends beyond EOD, truncated [ 1689.778362][T10045] loop1: detected capacity change from 0 to 512 [ 1689.786084][T10005] loop4: detected capacity change from 0 to 1 [ 1689.797014][T10045] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1689.805385][T10045] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1689.812479][T10045] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1689.812528][T10028] loop2: p1 p2 p3 p4 [ 1689.812751][T10028] loop2: p1 start 10 is beyond EOD, [ 1689.822935][T10045] ext4_test_bit(bit=16, block=18) = 0 [ 1689.826940][T10028] truncated [ 1689.826946][T10028] loop2: p2 size 1073872896 extends beyond EOD, truncated [ 1689.852543][ T1037] loop4: p1 p2 p4 19:18:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600400000f0000ab000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f0000000000000000010000dd973584000b00000080", 0x59, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000012e00)="ed41000000080000d0f4655fd2f4655fd2f4655f000000000000040004", 0x1d, 0x11080}], 0x0, &(0x7f00000000c0)) [ 1689.860836][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1689.867062][ T1037] loop4: p2 start 8454144 is beyond EOD, truncated [ 1689.873783][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1689.886336][T10028] loop2: p3 start 2127165541 is beyond EOD, truncated [ 1689.893164][T10028] loop2: p4 size 3657465856 extends beyond EOD, truncated [ 1689.914877][T10005] loop4: p1 p2 p4 [ 1689.924506][T10005] loop4: p1 start 10 is beyond EOD, truncated [ 1689.930639][T10005] loop4: p2 start 8454144 is beyond EOD, truncated [ 1689.937256][T10005] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1689.947809][T10068] loop1: detected capacity change from 0 to 512 [ 1689.962571][T10068] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1689.976180][ T1037] loop4: p1 p2 p4 [ 1689.980412][ T1037] loop4: p1 start 10 is beyond EOD, truncated [ 1689.983074][T10068] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1689.986507][ T1037] loop4: p2 start 8454144 is beyond EOD, truncated [ 1689.994661][T10068] EXT4-fs error (device loop1): ext4_orphan_get:1413: comm syz-executor.1: bad orphan inode 17 [ 1689.999505][ T1037] loop4: p4 size 3657465856 extends beyond EOD, truncated [ 1690.009869][T10068] ext4_test_bit(bit=16, block=18) = 0 19:18:12 executing program 0: r0 = syz_io_uring_setup(0x1a6d, &(0x7f0000000180), &(0x7f00006d7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x3082, 0x0, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xfffff