last executing test programs:

2.767936332s ago: executing program 3 (id=937):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000040000000400000009"], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x2, 0x4, 0x1, 0x0, r1}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r2}, &(0x7f0000000840), &(0x7f0000000880)=r1}, 0x20)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000003c0)=0x2)
readv(r3, &(0x7f0000000600)=[{&(0x7f00000002c0)=""/135, 0x87}], 0x1)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x2)

2.444251826s ago: executing program 3 (id=939):
syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f0000000080)='./file1\x00', 0xc10, &(0x7f0000000000), 0x1, 0x620, &(0x7f0000001680)="$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")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x18, &(0x7f00000001c0)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
pipe2(&(0x7f0000001cc0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x80000)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r6])

2.294997202s ago: executing program 1 (id=942):
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@ip_ttl={{0x14, 0x0, 0x2, 0x7}}], 0x18}}], 0x1, 0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r1, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a0101"], 0x57)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f00000008c0)={0x1, {{0x2, 0x0, @multicast2}}}, 0x88)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x8, 0x94, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

2.177461027s ago: executing program 0 (id=944):
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f0000000380)=0x20620, 0x4)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/5, 0x204000, 0x1000}, 0x20)
socket$phonet(0x23, 0x2, 0x1)
setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(r1, &(0x7f0000000540)={&(0x7f0000000240)=@name={0x1e, 0x2, 0x3, {{}, 0x2}}, 0x10, 0x0}, 0x10)

2.081454512s ago: executing program 2 (id=945):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'})
r1 = socket$inet6(0xa, 0x3, 0x20)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x9}, 0x1c)
r2 = gettid()
process_vm_writev(r2, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
r3 = io_uring_setup(0x17f8, &(0x7f0000000080)={0x0, 0x94ec, 0x0, 0x1, 0x33d})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

1.965242707s ago: executing program 1 (id=946):
gettid()
rt_sigtimedwait(&(0x7f0000000000)={[0xfffffffffffffffb]}, &(0x7f0000000bc0), 0x0, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r0}, 0x10)
r1 = socket$caif_stream(0x25, 0x1, 0x0)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000800)="c7", 0x1}], 0x1)

1.732676026s ago: executing program 2 (id=947):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='cgroup\x00')
lseek(r2, 0xffffff60, 0x1)

1.63570275s ago: executing program 2 (id=948):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000340)='./file0\x00', 0x0, &(0x7f0000000000), 0xff, 0x50d4, &(0x7f00000051c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x1c3)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r1, 0x0)
r2 = open(&(0x7f0000000000)='./file1\x00', 0x143142, 0x80)
ftruncate(r2, 0x2007ffb)
openat(0xffffffffffffff9c, &(0x7f0000004900)='./file1\x00', 0x4042, 0xf9)
fallocate(r0, 0x0, 0x0, 0x8ffff)
ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000280)=ANY=[@ANYBLOB])

1.16541536s ago: executing program 0 (id=949):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r2, 0x0, 0x44, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105eb953f86fbc6b204e076aa7a493e796123bbbd8e3b7e62d8fd097cf21d6d431a069ebc0aefd5fce80cc99fb38c771fa46e2c32a95fe99", 0x0, 0x86, 0x0, 0xffffffffffffff80, 0x0, &(0x7f0000000000)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x15)

1.057344775s ago: executing program 0 (id=950):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
close(r0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x1c, &(0x7f00000002c0)=[@in6={0xa, 0x4e21, 0x383, @dev={0xfe, 0x80, '\x00', 0x3c}, 0x4}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7a, &(0x7f0000000340)={r2, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r0, &(0x7f0000000900)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x30}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000880)=@assoc_value, &(0x7f00000008c0)=0x8)

1.014457186s ago: executing program 1 (id=951):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='kfree\x00', r1, 0x0, 0x4ab}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000050000000000000000000024000a20000000000a1f000000000000000000010000000900010073797a300000000058000000030a0104000000000000000001000000090003803d2175fbe782c2002c00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b400000000014000480100001800b0001006e756d67656e00000900010073797a30000000004c00048048000180080001"], 0x122}}, 0x4008090)

853.354994ms ago: executing program 3 (id=952):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x5, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
r2 = dup(r0)
sendmmsg$inet(r1, &(0x7f0000004b80)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000180)="93", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000004080)=[{&(0x7f0000001380)='R', 0x1}], 0x1}}], 0x2, 0x4)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='bond_slave_1\x00', 0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22, @empty}}, 0x8003, 0xbffc, 0xe652, 0x2, 0x4, 0x8, 0xff}, 0x9c)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000a40)={0x0, @in6={{0xa, 0x4e24, 0x5, @loopback, 0x1}}, 0x4, 0x1, 0xf06, 0x0, 0xac, 0x7d, 0x5}, 0x9c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000140)=@newtaction={0x14, 0x30, 0x1, 0x70bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x2000c800}, 0x2400c800)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e60, 0xfffffff2, @empty, 0x3}}, 0x1000000, 0x31, 0xffff1896, 0x3, 0x6, 0x8, 0x1b}, 0x9c)

852.691024ms ago: executing program 0 (id=953):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x10)
time(0x0)

704.50971ms ago: executing program 3 (id=954):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
write$tun(r1, &(0x7f0000000100)={@val={0x0, 0x10}, @void, @eth={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x29}, @multicast, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x1, 0x6, 0x14, 0x65, 0x0, 0x1, 0x6, 0x0, @dev={0xac, 0x14, 0x14, 0x21}, @empty}}}}}}, 0x26)

696.28721ms ago: executing program 0 (id=955):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f00000003c0)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000540)='\x00', 0x1}], 0x1}}], 0x1, 0x20008050)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000300)={0x0, 0xffff}, 0x8)

632.987703ms ago: executing program 2 (id=956):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x33, &(0x7f0000000640)={0x1, &(0x7f0000000680)=[{0x6, 0x0, 0x0, 0x2}]}, 0x10)

445.533001ms ago: executing program 2 (id=957):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000480)=ANY=[@ANYBLOB="ffffffffffff1704019078ac1e"], 0x0)

445.313131ms ago: executing program 0 (id=958):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x348cf000)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)

352.505585ms ago: executing program 3 (id=959):
r0 = socket$caif_stream(0x25, 0x1, 0x0)
writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000800)="c7", 0x1}], 0x1)

349.947065ms ago: executing program 2 (id=960):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='mm_page_free\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$igmp6(0xa, 0x3, 0x2)
getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)

335.427706ms ago: executing program 1 (id=961):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x1, 0x4, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x0)

163.725692ms ago: executing program 1 (id=962):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000bb", @ANYBLOB="0000000000000000b703000000000000850000020000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ec0)={&(0x7f0000000bc0)='kfree\x00', r0, 0x0, 0xfffffffffffffff4}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x10, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x2982, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket(0x8000000010, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r3}, 0x10)
write(r2, &(0x7f00000002c0)="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", 0xfc)

163.105003ms ago: executing program 3 (id=963):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000200)={[{@stripe={'stripe', 0x3d, 0x8001}}, {@auto_da_alloc}, {@nombcache}, {@nobarrier}, {@init_itable}, {@errors_remount}]}, 0x1, 0x569, &(0x7f00000002c0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)=[{0x0}], 0x1}}], 0x48}, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000840), &(0x7f0000000940)=ANY=[], 0x361, 0x0)
setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f00000013c0)=ANY=[], 0x700, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
lsetxattr$trusted_overlay_upper(&(0x7f0000000280)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000100)=ANY=[@ANYRESHEX=r0, @ANYRESHEX], 0xfe37, 0x0)

0s ago: executing program 1 (id=964):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000340)='./file0\x00', 0x0, &(0x7f0000000000), 0xff, 0x50d4, &(0x7f00000051c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x1c3)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r1, 0x0)
r2 = open(&(0x7f0000000000)='./file1\x00', 0x143142, 0x80)
ftruncate(r2, 0x2007ffb)
openat(0xffffffffffffff9c, &(0x7f0000004900)='./file1\x00', 0x4042, 0xf9)
fallocate(r0, 0x0, 0x0, 0x8ffff)
ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000280)=ANY=[@ANYBLOB="66000000000000000000000000a5"])

kernel console output (not intermixed with test programs):

ilesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  194.743541][ T7510] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  194.752472][ T7512] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.311 (7512)
[  194.904619][ T7512] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  194.931365][ T7515] XFS (loop3): Ending clean mount
[  194.950654][ T7515] XFS (loop3): Quotacheck needed: Please wait.
[  194.974082][ T7512] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  195.004775][ T7512] BTRFS info (device loop2): using free space tree
[  195.110398][ T7515] XFS (loop3): Quotacheck: Done.
[  195.188785][ T7515] XFS (loop3): User initiated shutdown received.
[  195.196663][ T7510] XFS (loop1): Ending clean mount
[  195.220957][ T7512] BTRFS info (device loop2): enabling ssd optimizations
[  195.236866][ T7510] XFS (loop1): Quotacheck needed: Please wait.
[  195.238262][ T7515] XFS (loop3): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:501).  Shutting down filesystem.
[  195.257965][ T7512] BTRFS info (device loop2): auto enabling async discard
[  195.317687][ T7515] XFS (loop3): Please unmount the filesystem and rectify the problem(s)
[  195.341806][ T7510] XFS (loop1): Quotacheck: Done.
[  195.433205][   T28] audit: type=1800 audit(1764735822.811:62): pid=7510 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.310" name="file1" dev="loop1" ino=9286 res=0 errno=0
[  195.458094][ T5788] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  195.537324][ T7517] loop0: detected capacity change from 0 to 32768
[  195.654623][ T5789] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  195.735346][ T7517] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  195.911221][ T5790] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  195.950060][ T7517] XFS (loop0): Ending clean mount
[  196.023132][ T7517] XFS (loop0): Quotacheck needed: Please wait.
[  196.144781][ T5801] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 10 /dev/loop2 scanned by udevd (5801)
[  196.201564][ T7517] XFS (loop0): Quotacheck: Done.
[  196.259341][   T28] audit: type=1800 audit(1764735823.641:63): pid=7517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.313" name="file1" dev="loop0" ino=6150 res=0 errno=0
[  196.363176][   T28] audit: type=1800 audit(1764735823.671:64): pid=7517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.313" name="file1" dev="loop0" ino=6150 res=0 errno=0
[  196.449565][ T5787] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  197.053463][ T7575] loop3: detected capacity change from 0 to 256
[  197.241495][ T7565] loop2: detected capacity change from 0 to 32768
[  197.498178][ T7583] loop1: detected capacity change from 0 to 256
[  197.544800][ T7583] exfat: Deprecated parameter 'utf8'
[  197.566473][ T7583] exfat: Deprecated parameter 'namecase'
[  197.572312][ T7583] exfat: Deprecated parameter 'namecase'
[  197.589133][ T7583] exfat: Deprecated parameter 'utf8'
[  197.706834][ T7583] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  198.439279][ T7581] loop3: detected capacity change from 0 to 32768
[  198.496362][ T7581] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  198.648083][ T7588] loop2: detected capacity change from 0 to 32768
[  198.661582][ T7581] XFS (loop3): Ending clean mount
[  198.697527][ T7581] XFS (loop3): Quotacheck needed: Please wait.
[  198.752438][ T7588] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  198.778910][ T7585] loop0: detected capacity change from 0 to 32768
[  198.787194][ T7589] loop1: detected capacity change from 0 to 32768
[  198.853194][ T7585] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 10
[  198.894805][   T28] audit: type=1800 audit(1764735826.281:65): pid=7589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.327" name="file1" dev="loop1" ino=4 res=0 errno=0
[  198.921660][ T7581] XFS (loop3): Quotacheck: Done.
[  199.140216][ T5788] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  199.231832][ T7588] XFS (loop2): Ending clean mount
[  199.240033][ T7588] XFS (loop2): Quotacheck needed: Please wait.
[  199.521861][ T7588] XFS (loop2): Quotacheck: Done.
[  199.790468][ T5789] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  199.831442][ T7614] loop0: detected capacity change from 0 to 256
[  200.551359][ T7616] loop3: detected capacity change from 0 to 32768
[  200.642342][ T7616] overlayfs: failed to resolve './file1': -2
[  200.775092][ T7620] loop0: detected capacity change from 0 to 32768
[  200.855683][ T7620] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  200.962273][ T7632] loop3: detected capacity change from 0 to 256
[  201.025492][ T7620] XFS (loop0): Ending clean mount
[  201.074908][ T7620] XFS (loop0): Quotacheck needed: Please wait.
[  201.112325][ T7632] FAT-fs (loop3): Directory bread(block 64) failed
[  201.153223][ T7632] FAT-fs (loop3): Directory bread(block 65) failed
[  201.159963][ T7632] FAT-fs (loop3): Directory bread(block 66) failed
[  201.200908][ T7632] FAT-fs (loop3): Directory bread(block 67) failed
[  201.217891][ T7620] XFS (loop0): Quotacheck: Done.
[  201.224141][ T7622] loop1: detected capacity change from 0 to 32768
[  201.232336][ T7632] FAT-fs (loop3): Directory bread(block 68) failed
[  201.247306][ T7632] FAT-fs (loop3): Directory bread(block 69) failed
[  201.266727][ T7632] FAT-fs (loop3): Directory bread(block 70) failed
[  201.276719][ T7632] FAT-fs (loop3): Directory bread(block 71) failed
[  201.296342][ T7632] FAT-fs (loop3): Directory bread(block 72) failed
[  201.317150][ T7632] FAT-fs (loop3): Directory bread(block 73) failed
[  201.319550][ T7622] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  201.475276][ T5787] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  201.491837][ T7622] XFS (loop1): Ending clean mount
[  201.524650][ T7622] XFS (loop1): Quotacheck needed: Please wait.
[  201.628471][ T7622] XFS (loop1): Quotacheck: Done.
[  201.749040][ T7643] netlink: 5 bytes leftover after parsing attributes in process `syz.2.333'.
[  201.808464][ T7643] 0ªî{X¹¦: renamed from gretap0 (while UP)
[  201.814970][ T5802] Bluetooth: hci1: command 0x0406 tx timeout
[  201.821123][ T5802] Bluetooth: hci3: command 0x0406 tx timeout
[  201.827351][ T5105] Bluetooth: hci0: command 0x0406 tx timeout
[  201.827375][ T5795] Bluetooth: hci2: command 0x0406 tx timeout
[  201.874084][ T7643] 0ªî{X¹¦: entered allmulticast mode
[  201.909914][ T7643] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  201.916875][ T5790] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  202.219443][ T7652] loop0: detected capacity change from 0 to 256
[  202.916511][ T7646] loop3: detected capacity change from 0 to 32768
[  202.935632][ T7646] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  203.179727][ T5801] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  203.702383][ T7660] loop1: detected capacity change from 0 to 32768
[  203.792752][ T7660] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  203.991930][ T7663] loop2: detected capacity change from 0 to 32768
[  204.080523][ T7660] XFS (loop1): Ending clean mount
[  204.090675][ T7663] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  204.115735][ T7660] XFS (loop1): Quotacheck needed: Please wait.
[  204.149401][ T7689] loop3: detected capacity change from 0 to 256
[  204.219470][ T7668] loop0: detected capacity change from 0 to 32768
[  204.255401][ T7660] XFS (loop1): Quotacheck: Done.
[  204.300378][ T7663] XFS (loop2): Ending clean mount
[  204.378251][ T7663] XFS (loop2): Quotacheck needed: Please wait.
[  204.415555][ T7668] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  204.567124][ T7663] XFS (loop2): Quotacheck: Done.
[  204.603993][ T7668] XFS (loop0): Ending clean mount
[  204.631120][ T5790] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  204.667332][ T7668] XFS (loop0): Quotacheck needed: Please wait.
[  204.764744][ T5789] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  204.815651][ T7668] XFS (loop0): Quotacheck: Done.
[  205.120413][ T5787] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  205.563700][   T28] audit: type=1326 audit(1764735832.941:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7712 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  205.619396][   T28] audit: type=1326 audit(1764735832.941:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7712 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  205.707957][   T28] audit: type=1326 audit(1764735832.951:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7712 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=8 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  205.785448][   T28] audit: type=1326 audit(1764735832.951:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7712 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  205.914479][   T28] audit: type=1326 audit(1764735832.951:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7712 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  205.987169][   T28] audit: type=1326 audit(1764735832.981:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7712 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  206.072109][   T28] audit: type=1326 audit(1764735832.981:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7712 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  206.146692][   T28] audit: type=1326 audit(1764735832.981:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7712 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  206.209855][   T28] audit: type=1326 audit(1764735832.981:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7712 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  206.303099][   T28] audit: type=1326 audit(1764735832.981:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7712 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  206.541587][ T7707] loop1: detected capacity change from 0 to 32768
[  206.581130][ T7707] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  206.756352][ T5801] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  206.966349][ T7715] loop3: detected capacity change from 0 to 32768
[  207.012617][ T7715] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  207.208384][ T7722] loop0: detected capacity change from 0 to 32768
[  207.216888][ T7715] XFS (loop3): Ending clean mount
[  207.266568][ T7715] XFS (loop3): Quotacheck needed: Please wait.
[  207.293874][ T7722] overlayfs: failed to resolve './file1': -2
[  207.363175][ T7715] XFS (loop3): Quotacheck: Done.
[  207.649649][ T5788] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  208.216978][ T7737] loop1: detected capacity change from 0 to 32768
[  208.297084][ T7737] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  208.373392][ T7734] loop2: detected capacity change from 0 to 32768
[  208.503942][ T7734] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  208.531369][ T7737] XFS (loop1): Ending clean mount
[  208.572457][ T7737] XFS (loop1): Quotacheck needed: Please wait.
[  208.582967][ T7739] loop0: detected capacity change from 0 to 32768
[  208.665818][ T7739] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  208.760442][ T7764] rdma_op ffff8880796fe1f0 conn xmit_rdma 0000000000000000
[  208.760726][ T7737] XFS (loop1): Quotacheck: Done.
[  208.814161][ T7739] XFS (loop0): Ending clean mount
[  208.846284][ T7739] XFS (loop0): Quotacheck needed: Please wait.
[  208.872013][ T7734] XFS (loop2): Ending clean mount
[  208.915690][ T7734] XFS (loop2): Quotacheck needed: Please wait.
[  208.917477][ T7739] XFS (loop0): Quotacheck: Done.
[  209.021502][ T5790] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  209.024595][ T5787] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  209.078301][ T7734] XFS (loop2): Quotacheck: Done.
[  209.158299][ T7772] loop3: detected capacity change from 0 to 256
[  209.169425][ T7772] exfat: Deprecated parameter 'utf8'
[  209.175610][ T7772] exfat: Deprecated parameter 'namecase'
[  209.196907][ T7772] exfat: Deprecated parameter 'namecase'
[  209.202646][ T7772] exfat: Deprecated parameter 'utf8'
[  209.351000][ T7772] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  209.403305][ T5789] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  209.706167][ T7776] loop3: detected capacity change from 0 to 64
[  209.911321][ T7774] loop0: detected capacity change from 0 to 4096
[  210.536884][ T7786] vlan2: entered allmulticast mode
[  211.132454][ T7780] loop1: detected capacity change from 0 to 32768
[  211.814417][ T7790] syz.0.379 (7790) used greatest stack depth: 17480 bytes left
[  211.895546][ T7780] overlay: ./file1 is not a directory
[  212.130531][ T7782] loop2: detected capacity change from 0 to 32768
[  212.422128][ T7785] loop3: detected capacity change from 0 to 32768
[  212.602893][ T7785] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  212.818724][ T7785] XFS (loop3): Ending clean mount
[  212.863021][    C0] sched: RT throttling activated
[  212.867089][ T7785] XFS (loop3): Quotacheck needed: Please wait.
[  212.893819][ T7782] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  212.941597][ T7782] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  212.986179][ T7782] BTRFS info (device loop2): using free space tree
[  213.024630][ T7785] XFS (loop3): Quotacheck: Done.
[  213.207410][ T7782] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  213.233748][ T7782] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  213.417895][ T7782] BTRFS error (device loop2): open_ctree failed: -12
[  213.476364][ T5788] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  214.271669][ T7802] loop1: detected capacity change from 0 to 32768
[  214.309103][ T7802] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  214.445897][ T7802] XFS (loop1): Ending clean mount
[  214.470097][ T7802] XFS (loop1): Quotacheck needed: Please wait.
[  214.597779][ T7802] XFS (loop1): Quotacheck: Done.
[  214.752870][ T5790] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  214.758822][ T7818] loop0: detected capacity change from 0 to 32768
[  214.778249][ T7824] loop3: detected capacity change from 0 to 32768
[  214.794464][ T7824] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.384 (7824)
[  214.849245][ T7818] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  214.868270][ T7824] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  214.938750][ T7824] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  215.034528][ T7824] BTRFS info (device loop3): force clearing of disk cache
[  215.059666][ T7818] XFS (loop0): Ending clean mount
[  215.070781][ T7824] BTRFS info (device loop3): enabling auto defrag
[  215.121336][ T7824] BTRFS info (device loop3): enabling ssd optimizations
[  215.223512][ T7824] BTRFS info (device loop3): max_inline at 0
[  215.229607][ T7824] BTRFS info (device loop3): enabling disk space caching
[  215.279049][ T7824] BTRFS info (device loop3): disk space caching is enabled
[  215.441762][  T788] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  215.489687][  T788] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  215.577278][ T7860] loop2: detected capacity change from 0 to 4096
[  215.578504][ T7824] BTRFS info (device loop3): rebuilding free space tree
[  215.652421][ T7824] BTRFS info (device loop3): disabling free space tree
[  215.680483][ T7824] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  215.705873][ T7824] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  215.796399][ T5787] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  215.811918][ T7861] fido_id[7861]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  215.818906][   T28] kauditd_printk_skb: 3 callbacks suppressed
[  215.818922][   T28] audit: type=1804 audit(1764735843.191:79): pid=7860 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.386" name="/newroot/102/file1/file1" dev="loop2" ino=33 res=1 errno=0
[  216.217680][ T5788] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  217.254335][ T7870] loop1: detected capacity change from 0 to 32768
[  217.484345][ T7870] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  217.577123][ T7877] loop3: detected capacity change from 0 to 32768
[  217.622582][ T7876] loop0: detected capacity change from 0 to 32768
[  217.647147][ T7876] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz.0.387 (7876)
[  217.721772][ T7877] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by syz.3.391 (7877)
[  217.742545][ T7876] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  217.773405][ T7876] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  217.823403][ T7876] BTRFS info (device loop0): using free space tree
[  217.826275][ T7870] XFS (loop1): Ending clean mount
[  217.837721][ T5796] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by udevd (5796)
[  217.852792][ T7870] XFS (loop1): Quotacheck needed: Please wait.
[  217.952878][ T7870] XFS (loop1): Quotacheck: Done.
[  218.048898][   T28] audit: type=1800 audit(1764735845.431:80): pid=7870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.390" name="file1" dev="loop1" ino=9286 res=0 errno=0
[  218.216164][ T5790] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  218.225754][ T7876] BTRFS info (device loop0): enabling ssd optimizations
[  218.232745][ T7876] BTRFS info (device loop0): auto enabling async discard
[  218.645107][ T5787] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  218.757020][ T7905] loop2: detected capacity change from 0 to 512
[  218.886885][ T7905] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.962117][ T7905] ext4 filesystem being mounted at /104/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.078933][ T7905] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #4: comm syz.2.395: corrupted inode contents
[  219.123143][ T7905] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #4: comm syz.2.395: mark_inode_dirty error
[  219.160585][ T7905] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #4: comm syz.2.395: corrupted inode contents
[  219.202960][ T7905] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #4: comm syz.2.395: mark_inode_dirty error
[  219.273630][ T7905] Quota error (device loop2): write_blk: dquota write failed
[  219.303390][ T7905] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  219.333561][ T7905] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.395: Failed to acquire dquot type 1
[  219.408068][ T7895] loop3: detected capacity change from 0 to 32768
[  219.472658][ T7895] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  219.524652][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.687402][ T7910] loop1: detected capacity change from 0 to 32768
[  219.812189][ T7912] loop0: detected capacity change from 0 to 32768
[  219.819494][ T7895] XFS (loop3): Ending clean mount
[  219.826215][ T7910] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  219.861232][ T7895] XFS (loop3): Quotacheck needed: Please wait.
[  219.882252][   T28] audit: type=1800 audit(1764735847.261:81): pid=7912 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.394" name="file1" dev="loop0" ino=4 res=0 errno=0
[  219.937715][ T7910] XFS (loop1): Ending clean mount
[  219.963771][ T7910] XFS (loop1): Quotacheck needed: Please wait.
[  220.068457][ T7895] XFS (loop3): Quotacheck: Done.
[  220.128897][ T7910] XFS (loop1): Quotacheck: Done.
[  220.326841][ T5790] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  220.352095][ T5788] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  220.376348][ T7933] loop2: detected capacity change from 0 to 4096
[  220.613941][   T28] audit: type=1804 audit(1764735847.991:82): pid=7933 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.397" name="/newroot/106/file1/file1" dev="loop2" ino=33 res=1 errno=0
[  221.284342][ T7937] loop0: detected capacity change from 0 to 32768
[  221.378298][ T7937] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  221.721922][ T7939] loop2: detected capacity change from 0 to 40427
[  221.728701][ T7937] XFS (loop0): Ending clean mount
[  221.754349][ T7937] XFS (loop0): Quotacheck needed: Please wait.
[  221.782501][ T7939] F2FS-fs (loop2): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  221.805277][ T7939] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  221.824081][ T7939] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x35f7
[  221.837063][ T7939] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff
[  221.869972][ T7937] XFS (loop0): Quotacheck: Done.
[  221.883309][ T7939] F2FS-fs (loop2): Image doesn't support compression
[  221.957461][ T7939] F2FS-fs (loop2): invalid crc value
[  221.959930][   T28] audit: type=1800 audit(1764735849.331:83): pid=7937 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.401" name="file1" dev="loop0" ino=9286 res=0 errno=0
[  222.006790][ T7939] F2FS-fs (loop2): Found nat_bits in checkpoint
[  222.060513][ T5787] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  222.082207][ T7955] loop3: detected capacity change from 0 to 128
[  222.199807][ T7939] F2FS-fs (loop2): Start checkpoint disabled!
[  222.226982][ T7939] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  222.237595][ T7943] loop1: detected capacity change from 0 to 32768
[  222.242277][ T7939] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  222.307227][ T7943] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  222.473290][ T7943] XFS (loop1): Ending clean mount
[  222.495290][ T7943] XFS (loop1): Quotacheck needed: Please wait.
[  222.531962][ T7955] syz.3.400: attempt to access beyond end of device
[  222.531962][ T7955] loop3: rw=2049, sector=145, nr_sectors = 424 limit=128
[  222.568812][ T7943] XFS (loop1): Quotacheck: Done.
[  222.610939][   T28] audit: type=1800 audit(1764735849.991:84): pid=7943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.403" name="file1" dev="loop1" ino=6150 res=0 errno=0
[  222.639398][ T1093] F2FS-fs (loop2): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x5b4/0x19c0
[  222.652124][ T7955] syz.3.400: attempt to access beyond end of device
[  222.652124][ T7955] loop3: rw=524288, sector=145, nr_sectors = 224 limit=128
[  222.666993][ T1093] F2FS-fs (loop2): invalid blkaddr: 5120, type: 7, run fsck to fix.
[  222.676518][ T1093] kworker/u4:7: attempt to access beyond end of device
[  222.676518][ T1093] loop2: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  222.714950][ T7955] syz.3.400: attempt to access beyond end of device
[  222.714950][ T7955] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  222.719377][ T1093] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  222.736800][ T1093] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  222.742481][ T5790] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  222.749385][ T1093] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  222.760161][ T7955] syz.3.400: attempt to access beyond end of device
[  222.760161][ T7955] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  222.838212][ T7955] syz.3.400: attempt to access beyond end of device
[  222.838212][ T7955] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  222.855166][ T7965] syz.3.400: attempt to access beyond end of device
[  222.855166][ T7965] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  222.930930][ T7955] syz.3.400: attempt to access beyond end of device
[  222.930930][ T7955] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  222.961206][ T7955] syz.3.400: attempt to access beyond end of device
[  222.961206][ T7955] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  223.026417][ T7965] syz.3.400: attempt to access beyond end of device
[  223.026417][ T7965] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  223.656967][ T7974] loop2: detected capacity change from 0 to 256
[  223.702011][ T7974] exfat: Deprecated parameter 'utf8'
[  223.734829][ T7974] exfat: Deprecated parameter 'namecase'
[  223.740674][ T7974] exfat: Deprecated parameter 'namecase'
[  223.788929][ T7974] exfat: Deprecated parameter 'utf8'
[  223.891425][ T7974] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  223.920664][ T7978] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  224.319750][ T7968] loop1: detected capacity change from 0 to 32768
[  224.329609][ T7970] loop3: detected capacity change from 0 to 32768
[  224.343135][ T7980] loop0: detected capacity change from 0 to 4096
[  224.439185][ T7970] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  224.628216][   T28] audit: type=1804 audit(1764735852.011:85): pid=7980 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.410" name="/newroot/92/file1/file1" dev="loop0" ino=33 res=1 errno=0
[  224.689657][ T7970] XFS (loop3): Ending clean mount
[  224.737616][ T7970] XFS (loop3): Quotacheck needed: Please wait.
[  224.914930][ T7970] XFS (loop3): Quotacheck: Done.
[  224.973503][ T7982] loop2: detected capacity change from 0 to 32768
[  224.984774][ T7982] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.411 (7982)
[  225.032298][ T7982] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  225.063221][ T7982] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  225.107749][ T7982] BTRFS info (device loop2): force clearing of disk cache
[  225.137624][ T7982] BTRFS info (device loop2): enabling auto defrag
[  225.154041][ T7982] BTRFS info (device loop2): enabling ssd optimizations
[  225.191679][ T7982] BTRFS info (device loop2): max_inline at 0
[  225.194145][ T5788] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  225.223141][ T7982] BTRFS info (device loop2): enabling disk space caching
[  225.230313][ T7982] BTRFS info (device loop2): disk space caching is enabled
[  225.483685][ T7982] BTRFS info (device loop2): rebuilding free space tree
[  225.561590][ T7982] BTRFS info (device loop2): disabling free space tree
[  225.585022][ T7982] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  225.604393][ T7982] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  225.800462][ T5789] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  225.802829][   T11] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared)
[  226.046806][ T7996] loop0: detected capacity change from 0 to 32768
[  226.154083][ T7996] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  226.156263][ T7994] loop1: detected capacity change from 0 to 32768
[  226.236711][ T7994] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  226.311404][   T28] audit: type=1326 audit(1764735853.691:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  226.397524][   T28] audit: type=1326 audit(1764735853.691:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  226.421634][   T28] audit: type=1326 audit(1764735853.691:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  226.509647][   T28] audit: type=1326 audit(1764735853.691:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  226.559833][ T8030] xfrm1: entered allmulticast mode
[  226.591609][ T7994] XFS (loop1): Ending clean mount
[  226.613247][ T7996] XFS (loop0): Ending clean mount
[  226.616046][ T7994] XFS (loop1): Quotacheck needed: Please wait.
[  226.631355][   T28] audit: type=1326 audit(1764735853.691:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  226.725057][ T7996] XFS (loop0): Quotacheck needed: Please wait.
[  226.740685][   T28] audit: type=1326 audit(1764735853.691:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  226.830545][   T28] audit: type=1326 audit(1764735853.691:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  226.852964][ T7994] XFS (loop1): Quotacheck: Done.
[  226.894239][ T7996] XFS (loop0): Quotacheck: Done.
[  227.073460][ T5790] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  227.136520][ T5787] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  227.717044][ T8042] loop1: detected capacity change from 0 to 256
[  227.758812][ T8042] exfat: Deprecated parameter 'utf8'
[  227.774106][ T8042] exfat: Deprecated parameter 'namecase'
[  227.783295][ T8042] exfat: Deprecated parameter 'namecase'
[  227.793745][ T8042] exfat: Deprecated parameter 'utf8'
[  227.831518][ T8042] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  227.947468][ T8044] loop0: detected capacity change from 0 to 4096
[  227.954693][ T8038] loop3: detected capacity change from 0 to 32768
[  227.988439][ T8038] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.415 (8038)
[  228.029466][ T8038] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  228.056795][ T8038] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  228.098167][ T8038] BTRFS info (device loop3): using free space tree
[  228.193437][ T8040] loop2: detected capacity change from 0 to 32768
[  228.279976][ T8038] BTRFS info (device loop3): enabling ssd optimizations
[  228.312596][ T8040] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  228.332630][   T28] kauditd_printk_skb: 46 callbacks suppressed
[  228.332647][   T28] audit: type=1804 audit(1764735855.711:139): pid=8067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.421" name="/newroot/95/file1/file1" dev="loop0" ino=33 res=1 errno=0
[  228.368150][ T8038] BTRFS info (device loop3): auto enabling async discard
[  228.572637][ T8046] loop1: detected capacity change from 0 to 32768
[  228.576470][ T8040] XFS (loop2): Ending clean mount
[  228.609607][ T8040] XFS (loop2): Quotacheck needed: Please wait.
[  228.719770][ T8040] XFS (loop2): Quotacheck: Done.
[  228.816538][ T5788] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  228.908147][ T5789] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  229.604302][ T8077] syz.2.426[8077] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.604455][ T8077] syz.2.426[8077] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.967151][ T8073] loop0: detected capacity change from 0 to 32768
[  230.083543][ T8073] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  230.325909][ T8073] XFS (loop0): Ending clean mount
[  230.336831][ T8075] loop3: detected capacity change from 0 to 32768
[  230.353960][ T8073] XFS (loop0): Quotacheck needed: Please wait.
[  230.373616][ T8075] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.424 (8075)
[  230.481567][ T8075] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  230.502880][ T8073] XFS (loop0): Quotacheck: Done.
[  230.513172][ T8075] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  230.558001][ T8075] BTRFS info (device loop3): force clearing of disk cache
[  230.583236][ T8075] BTRFS info (device loop3): enabling auto defrag
[  230.589749][ T8075] BTRFS info (device loop3): enabling ssd optimizations
[  230.611389][ T5787] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  230.633207][ T8075] BTRFS info (device loop3): max_inline at 0
[  230.639336][ T8075] BTRFS info (device loop3): enabling disk space caching
[  230.664515][ T8075] BTRFS info (device loop3): disk space caching is enabled
[  230.864937][ T8075] BTRFS info (device loop3): rebuilding free space tree
[  230.931008][ T8075] BTRFS info (device loop3): disabling free space tree
[  230.953177][ T8075] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  230.973624][ T8075] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  231.104104][ T8092] loop2: detected capacity change from 0 to 32768
[  231.180796][ T1132] BTRFS info (device loop3): qgroup scan completed (inconsistency flag cleared)
[  231.243517][ T8092] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  231.302540][ T5788] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  231.350698][ T8079] loop1: detected capacity change from 0 to 40427
[  231.458940][ T8092] XFS (loop2): Ending clean mount
[  231.480592][ T8079] F2FS-fs (loop1): invalid crc value
[  231.512127][ T8092] XFS (loop2): Quotacheck needed: Please wait.
[  231.529329][ T8079] F2FS-fs (loop1): Found nat_bits in checkpoint
[  231.720285][ T8092] XFS (loop2): Quotacheck: Done.
[  231.774200][ T8079] F2FS-fs (loop1): Start checkpoint disabled!
[  231.808586][ T8079] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  231.863876][   T28] audit: type=1800 audit(1764735859.251:140): pid=8092 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.428" name="file1" dev="loop2" ino=9286 res=0 errno=0
[  232.158797][   T60] bio_check_eod: 739 callbacks suppressed
[  232.158820][   T60] kworker/u4:4: attempt to access beyond end of device
[  232.158820][   T60] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  232.181151][ T8125] loop3: detected capacity change from 0 to 4096
[  232.212244][ T5789] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  232.240617][   T60] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  232.268801][   T60] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  232.276724][ T8113] loop0: detected capacity change from 0 to 32768
[  232.373363][ T8113] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  232.519980][   T28] audit: type=1804 audit(1764735859.901:141): pid=8135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.431" name="/newroot/108/file1/file1" dev="loop3" ino=33 res=1 errno=0
[  232.686289][ T8113] XFS (loop0): Ending clean mount
[  232.716931][ T8113] XFS (loop0): Quotacheck needed: Please wait.
[  232.881472][ T8113] XFS (loop0): Quotacheck: Done.
[  233.047841][ T5787] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  233.609488][ T8147] loop0: detected capacity change from 0 to 64
[  233.732617][ T8137] loop2: detected capacity change from 0 to 32768
[  234.210223][ T8149] loop0: detected capacity change from 0 to 256
[  234.230360][ T8149] exfat: Deprecated parameter 'utf8'
[  234.273225][ T8149] exfat: Deprecated parameter 'namecase'
[  234.279060][ T8149] exfat: Deprecated parameter 'namecase'
[  234.323101][ T8149] exfat: Deprecated parameter 'utf8'
[  234.393135][ T8149] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  234.440217][ T8143] loop3: detected capacity change from 0 to 32768
[  234.558285][ T8143] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  234.727963][ T8143] XFS (loop3): Ending clean mount
[  234.771985][ T8143] XFS (loop3): Quotacheck needed: Please wait.
[  234.872063][ T8143] XFS (loop3): Quotacheck: Done.
[  234.929937][ T8164] loop1: detected capacity change from 0 to 4096
[  235.041093][ T5788] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  235.133896][   T28] audit: type=1804 audit(1764735862.511:142): pid=8164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.442" name="/newroot/108/file1/file1" dev="loop1" ino=33 res=1 errno=0
[  235.672417][ T8169] overlayfs: failed to resolve './file1': -2
[  235.723825][ T8171] loop1: detected capacity change from 0 to 128
[  235.749095][ T8161] loop2: detected capacity change from 0 to 32768
[  235.774997][ T8161] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.438 (8161)
[  235.861008][ T8161] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  235.883527][ T8161] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  235.894225][ T8161] BTRFS info (device loop2): force clearing of disk cache
[  235.903839][ T8171] syz.1.445: attempt to access beyond end of device
[  235.903839][ T8171] loop1: rw=2049, sector=145, nr_sectors = 224 limit=128
[  235.929814][ T8161] BTRFS info (device loop2): enabling auto defrag
[  235.948014][ T8161] BTRFS info (device loop2): enabling ssd optimizations
[  235.968935][ T8165] loop0: detected capacity change from 0 to 40427
[  235.978294][ T8161] BTRFS info (device loop2): max_inline at 0
[  235.986516][ T8161] BTRFS info (device loop2): enabling disk space caching
[  235.994912][ T8161] BTRFS info (device loop2): disk space caching is enabled
[  236.004584][ T8165] F2FS-fs (loop0): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  236.015097][ T8165] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  236.063253][ T8165] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x35f7
[  236.071494][ T8165] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x7ffff
[  236.100802][ T8165] F2FS-fs (loop0): Image doesn't support compression
[  236.165576][ T8165] F2FS-fs (loop0): invalid crc value
[  236.178749][ T1132] kworker/u4:9: attempt to access beyond end of device
[  236.178749][ T1132] loop1: rw=1, sector=377, nr_sectors = 248 limit=128
[  236.227296][ T8161] BTRFS info (device loop2): rebuilding free space tree
[  236.244796][ T8165] F2FS-fs (loop0): Found nat_bits in checkpoint
[  236.261433][ T1132] kworker/u4:9: attempt to access beyond end of device
[  236.261433][ T1132] loop1: rw=1, sector=633, nr_sectors = 6 limit=128
[  236.325368][ T8161] BTRFS info (device loop2): disabling free space tree
[  236.332378][ T8161] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  236.374569][ T8161] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  236.485078][ T8165] F2FS-fs (loop0): Start checkpoint disabled!
[  236.528748][ T8165] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  236.565509][ T8165] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  236.565831][   T60] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared)
[  236.645572][ T5789] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  236.892691][ T8174] loop3: detected capacity change from 0 to 32768
[  236.983255][ T1144] F2FS-fs (loop0): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x5b4/0x19c0
[  237.026679][ T1144] F2FS-fs (loop0): invalid blkaddr: 5120, type: 7, run fsck to fix.
[  237.059830][ T1144] kworker/u4:11: attempt to access beyond end of device
[  237.059830][ T1144] loop0: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  237.098509][ T1144] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  237.130170][ T1144] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  237.153242][ T1144] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  237.595366][ T8194] loop1: detected capacity change from 0 to 32768
[  237.628912][ T8194] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop1 scanned by syz.1.447 (8194)
[  237.696973][ T8194] BTRFS info (device loop1): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  237.734713][ T8194] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  237.773456][ T8194] BTRFS info (device loop1): using free space tree
[  238.012593][ T8203] loop3: detected capacity change from 0 to 4096
[  238.028818][ T8194] BTRFS info (device loop1): enabling ssd optimizations
[  238.073329][ T8194] BTRFS info (device loop1): auto enabling async discard
[  238.343717][   T28] audit: type=1804 audit(1764735865.721:143): pid=8203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.452" name="/newroot/115/file1/file1" dev="loop3" ino=33 res=1 errno=0
[  238.561129][ T5790] BTRFS info (device loop1): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  238.637782][ T8201] loop2: detected capacity change from 0 to 32768
[  238.719238][ T8201] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  238.935097][ T8201] XFS (loop2): Ending clean mount
[  238.990567][ T8201] XFS (loop2): Quotacheck needed: Please wait.
[  239.139224][ T8201] XFS (loop2): Quotacheck: Done.
[  239.297065][ T8227] loop3: detected capacity change from 0 to 32768
[  239.333450][ T5789] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  239.421966][ T8227] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  239.543196][   T28] audit: type=1326 audit(1764735866.911:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8246 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  239.606409][ T8227] XFS (loop3): Ending clean mount
[  239.634745][ T8252] sd 0:0:1:0: device reset
[  239.639845][   T28] audit: type=1326 audit(1764735866.911:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8246 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  239.668626][   T28] audit: type=1326 audit(1764735866.911:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8246 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  239.726115][   T28] audit: type=1326 audit(1764735866.921:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8246 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  239.807839][   T28] audit: type=1326 audit(1764735866.921:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8246 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  239.914869][   T28] audit: type=1326 audit(1764735866.921:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8246 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  240.239596][ T5788] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  240.287701][ T8245] loop0: detected capacity change from 0 to 32768
[  240.573900][ T8254] loop1: detected capacity change from 0 to 32768
[  240.584273][ T8254] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop1 scanned by syz.1.460 (8254)
[  240.621456][ T8254] BTRFS info (device loop1): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  240.644008][ T8254] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  240.652786][ T8254] BTRFS info (device loop1): using free space tree
[  240.771589][ T8254] BTRFS info (device loop1): enabling ssd optimizations
[  240.811189][ T8254] BTRFS info (device loop1): auto enabling async discard
[  240.899847][   T28] audit: type=1800 audit(1764735868.281:150): pid=8254 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.460" name="file1" dev="loop1" ino=260 res=0 errno=0
[  240.948787][ T8256] loop2: detected capacity change from 0 to 32768
[  240.953325][   T28] audit: type=1800 audit(1764735868.281:151): pid=8254 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.460" name="file1" dev="loop1" ino=260 res=0 errno=0
[  241.009171][   T28] audit: type=1326 audit(1764735868.381:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8276 comm="syz.0.463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  241.076736][   T28] audit: type=1326 audit(1764735868.381:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8276 comm="syz.0.463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  241.143180][ T8256] overlayfs: upper fs needs to support d_type.
[  241.150596][   T28] audit: type=1326 audit(1764735868.381:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8276 comm="syz.0.463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  241.167247][ T8256] overlayfs: upper fs does not support tmpfile.
[  241.237451][   T28] audit: type=1326 audit(1764735868.381:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8276 comm="syz.0.463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  241.242147][ T8256] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  241.298742][   T28] audit: type=1326 audit(1764735868.381:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8276 comm="syz.0.463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  241.433287][   T28] audit: type=1804 audit(1764735868.671:157): pid=8254 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.460" name="/newroot/113/file0/file1" dev="loop1" ino=260 res=1 errno=0
[  241.545017][ T5789] ERROR: (device loop2): jfs_readdir: JFS:Dtree error: ino = 2, bn=44, index = 6
[  241.545017][ T5789] 
[  241.597893][ T5790] BTRFS info (device loop1): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  241.608860][ T5789] ERROR: (device loop2): remounting filesystem as read-only
[  242.161505][ T8284] loop3: detected capacity change from 0 to 4096
[  242.320872][ T8279] loop0: detected capacity change from 0 to 32768
[  242.331844][ T8279] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz.0.464 (8279)
[  242.378392][ T8279] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  242.378485][ T8279] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  242.378518][ T8279] BTRFS info (device loop0): using free space tree
[  242.473154][   T28] audit: type=1804 audit(1764735869.831:158): pid=8284 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.462" name="/newroot/117/file1/file1" dev="loop3" ino=33 res=1 errno=0
[  242.644638][ T8279] BTRFS info (device loop0): enabling ssd optimizations
[  242.694939][ T8279] BTRFS info (device loop0): auto enabling async discard
[  242.837233][ T5796] udevd[5796]: '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0' [8310] terminated by signal 33 (Unknown signal 33)
[  242.907316][ T5787] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  243.134707][ T5796] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 11 /dev/loop0 scanned by udevd (5796)
[  243.920273][ T8312] loop1: detected capacity change from 0 to 32768
[  244.008590][ T8312] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  244.060819][ T8314] loop3: detected capacity change from 0 to 32768
[  244.086238][ T8325] loop2: detected capacity change from 0 to 4096
[  244.160579][ T8314] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  244.203769][ T8312] XFS (loop1): Ending clean mount
[  244.224610][ T8312] XFS (loop1): Quotacheck needed: Please wait.
[  244.332932][ T8312] XFS (loop1): Quotacheck: Done.
[  244.387102][ T8314] XFS (loop3): Ending clean mount
[  244.474262][   T28] audit: type=1804 audit(1764735871.861:159): pid=8325 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.475" name="/newroot/129/file1/file1" dev="loop2" ino=33 res=1 errno=0
[  244.571647][ T8318] loop0: detected capacity change from 0 to 32768
[  244.591269][ T5790] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  244.632548][ T8318] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  244.693294][ T8318] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  244.762600][ T8318] BTRFS info (device loop0): using free space tree
[  244.787526][ T8343] Zero length message leads to an empty skb
[  244.814913][ T8343] loop2: detected capacity change from 0 to 1024
[  244.822429][ T8343] EXT4-fs: Ignoring removed orlov option
[  244.884040][ T8343] EXT4-fs (loop2): can't mount with data_err=abort, fs mounted w/o journal
[  245.191152][ T8363] netlink: 'syz.1.479': attribute type 21 has an invalid length.
[  245.223268][ T8318] BTRFS info (device loop0): enabling ssd optimizations
[  245.230297][ T8318] BTRFS info (device loop0): auto enabling async discard
[  245.309280][ T5788] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  246.018924][ T5787] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  246.537824][ T8366] loop2: detected capacity change from 0 to 32768
[  246.574398][ T8366] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.480 (8366)
[  246.628969][ T8366] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  246.671267][ T8366] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  246.710934][ T8366] BTRFS info (device loop2): using free space tree
[  246.913683][ T8366] BTRFS info (device loop2): enabling ssd optimizations
[  246.937128][ T8366] BTRFS info (device loop2): auto enabling async discard
[  247.124323][   T28] kauditd_printk_skb: 14 callbacks suppressed
[  247.124341][   T28] audit: type=1326 audit(1764735874.511:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8406 comm="syz.0.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  247.184989][ T8408] loop0: detected capacity change from 0 to 512
[  247.210178][   T28] audit: type=1326 audit(1764735874.551:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8406 comm="syz.0.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  247.272326][   T28] audit: type=1326 audit(1764735874.551:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8406 comm="syz.0.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  247.304908][ T8408] EXT4-fs (loop0): orphan cleanup on readonly fs
[  247.311793][ T5789] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  247.325968][   T28] audit: type=1326 audit(1764735874.551:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8406 comm="syz.0.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  247.357446][   T28] audit: type=1326 audit(1764735874.551:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8406 comm="syz.0.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  247.374346][ T8408] EXT4-fs error (device loop0): ext4_orphan_get:1425: comm syz.0.490: bad orphan inode 13
[  247.394761][   T28] audit: type=1326 audit(1764735874.551:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8406 comm="syz.0.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  247.417784][   T28] audit: type=1326 audit(1764735874.551:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8406 comm="syz.0.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  247.457875][   T28] audit: type=1326 audit(1764735874.551:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8406 comm="syz.0.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  247.503199][ T8408] ext4_test_bit(bit=12, block=18) = 1
[  247.509666][ T8408] is_bad_inode(inode)=0
[  247.514685][ T8408] NEXT_ORPHAN(inode)=2130706432
[  247.519578][ T8408] max_ino=32
[  247.522816][ T8408] i_nlink=1
[  247.528949][ T8408] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  247.563455][   T28] audit: type=1326 audit(1764735874.551:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8406 comm="syz.0.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  247.713534][   T28] audit: type=1326 audit(1764735874.551:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8406 comm="syz.0.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  247.935338][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  248.157927][ T8383] loop1: detected capacity change from 0 to 32768
[  248.330983][ T8383] overlayfs: upper fs needs to support d_type.
[  248.360977][ T8383] overlayfs: upper fs does not support tmpfile.
[  248.379322][ T8383] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  248.612562][ T5790] ERROR: (device loop1): jfs_readdir: JFS:Dtree error: ino = 2, bn=44, index = 6
[  248.612562][ T5790] 
[  248.643690][ T5790] ERROR: (device loop1): remounting filesystem as read-only
[  248.830933][ T8413] loop3: detected capacity change from 0 to 32768
[  248.881930][ T8413] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.491 (8413)
[  248.907038][ T8413] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  248.957710][ T8413] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  248.966703][ T8434] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  248.970594][ T8413] BTRFS info (device loop3): using free space tree
[  249.133135][ T8413] BTRFS info (device loop3): enabling ssd optimizations
[  249.140264][ T8413] BTRFS info (device loop3): auto enabling async discard
[  249.317723][ T8434] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.616998][ T8434] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.822805][ T5788] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  249.846340][ T8434] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.021719][ T8467] loop1: detected capacity change from 0 to 64
[  250.248970][ T8441] loop0: detected capacity change from 0 to 32768
[  250.278829][ T8434] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  250.388064][ T8434] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  250.398038][ T8441] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  250.452313][ T8434] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  250.479972][ T8434] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  250.661908][ T8441] XFS (loop0): Ending clean mount
[  250.699457][ T8441] XFS (loop0): Quotacheck needed: Please wait.
[  250.897246][ T8441] XFS (loop0): Quotacheck: Done.
[  251.050958][ T5787] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  251.121044][ T8485] overlayfs: failed to resolve './file0': -2
[  251.364633][ T8490] syz.1.505[8490] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  251.364780][ T8490] syz.1.505[8490] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  251.417934][ T8493] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  251.584028][ T8471] loop3: detected capacity change from 0 to 32768
[  251.650725][ T8494] loop2: detected capacity change from 0 to 512
[  251.687406][ T8494] EXT4-fs: Ignoring removed oldalloc option
[  251.818990][ T8494] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.893827][ T8494] ext4 filesystem being mounted at /bus supports timestamps until 2038-01-19 (0x7fffffff)
[  251.935031][ T8494] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.323185][ T5803] Bluetooth: hci4: command 0x1003 tx timeout
[  253.323271][   T51] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  253.482642][ T8502] loop0: detected capacity change from 0 to 32768
[  253.519948][ T8502] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz.0.507 (8502)
[  253.558375][ T8502] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  253.576414][ T8502] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  253.604836][ T8502] BTRFS info (device loop0): using free space tree
[  253.706956][ T8502] BTRFS info (device loop0): enabling ssd optimizations
[  253.728373][ T8502] BTRFS info (device loop0): auto enabling async discard
[  253.798961][   T28] kauditd_printk_skb: 49 callbacks suppressed
[  253.798978][   T28] audit: type=1800 audit(1764735881.181:233): pid=8502 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.507" name="file1" dev="loop0" ino=260 res=0 errno=0
[  253.858907][   T28] audit: type=1800 audit(1764735881.221:234): pid=8502 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.507" name="file1" dev="loop0" ino=260 res=0 errno=0
[  254.357586][ T5787] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  254.517833][ T8535] loop2: detected capacity change from 0 to 4096
[  254.552310][ T5801] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 10 /dev/loop0 scanned by udevd (5801)
[  255.280754][ T8537] loop1: detected capacity change from 0 to 1024
[  255.310221][ T8549] syz.2.519[8549] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  255.310374][ T8549] syz.2.519[8549] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  255.338491][ T8537] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  255.363374][ T8547] loop0: detected capacity change from 0 to 512
[  255.395540][ T8549] loop2: detected capacity change from 0 to 512
[  255.435937][ T8532] loop3: detected capacity change from 0 to 32768
[  255.447051][ T8537] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000004 r/w without journal. Quota mode: none.
[  255.466226][ T8532] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  255.488422][ T8547] Quota error (device loop0): v2_read_file_info: Free block number 1 out of range (1, 6).
[  255.500030][ T8549] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  255.511300][ T8547] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  255.534928][ T8547] EXT4-fs (loop0): mount failed
[  255.666894][ T8549] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.519: bg 0: block 248: padding at end of block bitmap is not set
[  255.780014][ T8549] Quota error (device loop2): write_blk: dquota write failed
[  255.808873][ T8559] No such timeout policy "syz0"
[  255.817413][ T8549] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  255.834164][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000004.
[  255.883207][ T8549] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.519: Failed to acquire dquot type 1
[  255.908255][ T5804] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  255.985568][ T8549] EXT4-fs (loop2): 1 truncate cleaned up
[  255.992773][ T8549] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  256.047488][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  256.054375][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  256.086114][ T8549] ext4 filesystem being mounted at /142/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  256.312519][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.317380][ T8567] loop0: detected capacity change from 0 to 1024
[  256.353286][   T28] audit: type=1326 audit(1764735883.731:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8568 comm="syz.3.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  256.377624][ T8571] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  256.413361][   T28] audit: type=1326 audit(1764735883.731:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8568 comm="syz.3.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  256.447752][ T8567] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  256.504712][   T28] audit: type=1326 audit(1764735883.731:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8568 comm="syz.3.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  256.523265][ T8575] loop2: detected capacity change from 0 to 256
[  256.527380][ T8567] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  256.565500][ T8575] exfat: Deprecated parameter 'utf8'
[  256.570920][ T8575] exfat: Deprecated parameter 'namecase'
[  256.624769][ T8575] exfat: Deprecated parameter 'namecase'
[  256.630504][ T8575] exfat: Deprecated parameter 'utf8'
[  256.686201][ T8575] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  256.747858][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  256.952412][ T8582] netlink: 28 bytes leftover after parsing attributes in process `syz.0.530'.
[  257.057043][ T8585] loop2: detected capacity change from 0 to 4096
[  257.240643][   T28] audit: type=1804 audit(1764735884.621:238): pid=8585 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.532" name="/newroot/144/file1/file1" dev="loop2" ino=33 res=1 errno=0
[  257.591080][ T8594] loop1: detected capacity change from 0 to 512
[  257.739727][ T8594] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  257.776430][ T8577] loop3: detected capacity change from 0 to 32768
[  257.805316][ T8577] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  257.829510][ T8594] EXT4-fs (loop1): 1 truncate cleaned up
[  257.865519][ T8594] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.951157][ T8594] EXT4-fs warning (device loop1): ext4_group_extend:1897: can't read last block, resize aborted
[  258.077294][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.088489][ T8607] netlink: 7 bytes leftover after parsing attributes in process `syz.2.542'.
[  258.090390][ T8605] loop0: detected capacity change from 0 to 256
[  258.140193][ T8605] exfat: Deprecated parameter 'utf8'
[  258.154036][ T8605] exfat: Deprecated parameter 'namecase'
[  258.167082][ T5796] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  258.179089][ T8605] exfat: Deprecated parameter 'namecase'
[  258.185374][ T8605] exfat: Deprecated parameter 'utf8'
[  258.218231][ T8605] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  258.566993][ T8612] loop2: detected capacity change from 0 to 4096
[  258.747476][ T8618] loop0: detected capacity change from 0 to 1024
[  258.833827][   T28] audit: type=1804 audit(1764735886.211:239): pid=8612 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.544" name="/newroot/149/file1/file1" dev="loop2" ino=33 res=1 errno=0
[  258.918845][ T8618] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  258.926920][ T8624] loop1: detected capacity change from 0 to 128
[  258.975885][ T8620] loop3: detected capacity change from 0 to 4096
[  259.186672][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.284505][ T1132] kworker/u4:9: attempt to access beyond end of device
[  259.284505][ T1132] loop1: rw=1, sector=145, nr_sectors = 312 limit=128
[  259.520645][ T8632] loop0: detected capacity change from 0 to 512
[  259.584950][ T8632] EXT4-fs: Ignoring removed i_version option
[  259.591026][ T8632] EXT4-fs: Ignoring removed bh option
[  259.641983][ T8638] loop2: detected capacity change from 0 to 256
[  259.675362][ T8638] exfat: Deprecated parameter 'utf8'
[  259.696777][ T8638] exfat: Deprecated parameter 'namecase'
[  259.702611][ T8638] exfat: Deprecated parameter 'namecase'
[  259.715704][ T8632] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.787441][ T8638] exfat: Deprecated parameter 'utf8'
[  259.807785][ T8632] ext4 filesystem being mounted at /126/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  259.878761][ T8638] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  259.992316][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.364665][ T8646] loop2: detected capacity change from 0 to 4096
[  260.414794][ T8642] loop3: detected capacity change from 0 to 32768
[  260.430600][ T8642] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  260.553911][   T28] audit: type=1804 audit(1764735887.941:240): pid=8646 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.558" name="/newroot/153/file1/file1" dev="loop2" ino=33 res=1 errno=0
[  260.731402][ T5801] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  260.755830][ T8656] loop0: detected capacity change from 0 to 64
[  260.879974][ T8658] syz.2.561[8658] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  260.880123][ T8658] syz.2.561[8658] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  261.217241][   T28] audit: type=1326 audit(1764735888.601:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.3.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  261.277931][   T28] audit: type=1326 audit(1764735888.631:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.3.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  261.353512][   T28] audit: type=1326 audit(1764735888.691:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.3.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  261.401900][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[  261.494604][   T28] audit: type=1326 audit(1764735888.691:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.3.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  261.600869][   T28] audit: type=1326 audit(1764735888.701:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.3.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  261.689325][ T8650] loop1: detected capacity change from 0 to 32768
[  261.703506][   T28] audit: type=1326 audit(1764735888.701:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.3.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  261.751638][   T28] audit: type=1326 audit(1764735888.701:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.3.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  261.803324][ T8650] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  261.858366][   T28] audit: type=1326 audit(1764735888.701:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.3.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  261.894862][ T8686] loop0: detected capacity change from 0 to 512
[  261.917112][ T8686] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  261.969008][ T8686] EXT4-fs error (device loop0): ext4_validate_block_bitmap:430: comm syz.0.571: bg 0: block 104: invalid block bitmap
[  262.017621][ T8650] XFS (loop1): Ending clean mount
[  262.048735][ T8650] XFS (loop1): Quotacheck needed: Please wait.
[  262.094728][ T8686] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  262.096933][ T8692] loop2: detected capacity change from 0 to 512
[  262.128404][ T8686] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.571: invalid indirect mapped block 1 (level 1)
[  262.133227][ T8692] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  262.196156][ T8650] XFS (loop1): Quotacheck: Done.
[  262.201915][ T8692] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  262.225488][ T8686] EXT4-fs (loop0): 1 truncate cleaned up
[  262.240082][ T8686] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  262.302623][ T8692] EXT4-fs (loop2): 1 truncate cleaned up
[  262.328838][ T8692] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  262.335453][ T5790] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  262.414983][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.441471][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.619577][ T8697] loop0: detected capacity change from 0 to 64
[  263.403258][   T51] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  263.859893][ T8713] Cannot find add_set index 0 as target
[  264.340325][ T8725] loop2: detected capacity change from 0 to 1024
[  264.347992][ T8727] netlink: 4 bytes leftover after parsing attributes in process `syz.1.590'.
[  264.357312][ T8729] netlink: 68 bytes leftover after parsing attributes in process `syz.3.588'.
[  264.370781][ T8725] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  264.429532][ T8727] team1: entered promiscuous mode
[  264.443399][ T8727] team1: entered allmulticast mode
[  264.454465][ T8727] 8021q: adding VLAN 0 to HW filter on device team1
[  264.474817][ T8725] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  264.505494][ T8725] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  264.659429][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.097611][   T28] kauditd_printk_skb: 26 callbacks suppressed
[  265.097628][   T28] audit: type=1326 audit(1764735892.481:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8738 comm="syz.1.594" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x0
[  265.133146][ T8746] mmap: syz.3.595 (8746) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  265.574318][ T8768] loop2: detected capacity change from 0 to 128
[  266.725062][ T8773] loop1: detected capacity change from 0 to 32768
[  266.783516][ T8773] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  267.014804][ T5801] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  268.293194][ T8785] loop3: detected capacity change from 0 to 32768
[  268.316891][ T8791] loop0: detected capacity change from 0 to 32768
[  268.455601][ T8791] overlayfs: failed to resolve './file1': -2
[  268.485796][ T8785] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  268.610952][ T8785] XFS (loop3): Ending clean mount
[  268.631136][ T8785] XFS (loop3): Quotacheck needed: Please wait.
[  268.748985][ T8785] XFS (loop3): Quotacheck: Done.
[  268.783107][   T28] audit: type=1800 audit(1764735896.161:276): pid=8785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.609" name="file1" dev="loop3" ino=6150 res=0 errno=0
[  268.828751][   T28] audit: type=1800 audit(1764735896.161:277): pid=8785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.609" name="file1" dev="loop3" ino=6150 res=0 errno=0
[  268.893259][ T5788] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  269.226784][ T8820] netlink: 'syz.2.621': attribute type 6 has an invalid length.
[  269.891665][   T28] audit: type=1326 audit(1764735897.251:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  269.956417][   T28] audit: type=1326 audit(1764735897.251:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  269.989414][   T28] audit: type=1326 audit(1764735897.271:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  270.048991][   T28] audit: type=1326 audit(1764735897.271:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  270.133138][   T28] audit: type=1326 audit(1764735897.271:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  270.183068][   T28] audit: type=1326 audit(1764735897.321:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  270.245992][   T28] audit: type=1326 audit(1764735897.321:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  270.307460][   T28] audit: type=1326 audit(1764735897.331:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  270.367187][   T28] audit: type=1326 audit(1764735897.331:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  270.403801][ T8829] loop3: detected capacity change from 0 to 32768
[  270.411434][   T28] audit: type=1326 audit(1764735897.331:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  270.443851][ T8829] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  270.483094][   T28] audit: type=1326 audit(1764735897.331:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  270.541445][   T28] audit: type=1326 audit(1764735897.331:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8832 comm="syz.0.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  270.583675][   T28] audit: type=1326 audit(1764735897.631:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8838 comm="syz.0.627" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x0
[  270.651236][ T5801] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  270.866824][ T8835] loop2: detected capacity change from 0 to 32768
[  270.981194][ T8835] overlayfs: failed to resolve './file1': -2
[  271.229538][ T8855] syz.0.635[8855] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  271.229680][ T8855] syz.0.635[8855] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  272.181369][ T8862] loop1: detected capacity change from 0 to 32768
[  272.205123][ T8862] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  272.402816][ T5801] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  272.491470][ T8878] ªªªªªª: renamed from vlan0 (while UP)
[  272.620517][   T28] audit: type=1326 audit(1764735900.001:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8881 comm="syz.0.646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  273.068462][ T8892] veth2: entered promiscuous mode
[  273.074968][ T8892] veth2: entered allmulticast mode
[  274.149800][ T8917] loop1: detected capacity change from 0 to 256
[  274.318632][ T8917] netlink: 'syz.1.658': attribute type 4 has an invalid length.
[  274.358540][ T8917] netlink: 152 bytes leftover after parsing attributes in process `syz.1.658'.
[  274.439774][ T8917] .`: renamed from bond0 (while UP)
[  275.027065][ T8918] loop2: detected capacity change from 0 to 32768
[  275.063127][ T8934] Cannot find add_set index 0 as target
[  275.070938][ T8918] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  275.428124][   T28] kauditd_printk_skb: 12 callbacks suppressed
[  275.428145][   T28] audit: type=1326 audit(1764735902.801:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.2.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  275.447370][ T5801] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  275.557604][   T28] audit: type=1326 audit(1764735902.801:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.2.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  275.659576][   T28] audit: type=1326 audit(1764735902.811:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.2.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  275.753103][   T28] audit: type=1326 audit(1764735902.811:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.2.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  275.817663][   T28] audit: type=1326 audit(1764735902.811:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.2.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  275.910329][   T28] audit: type=1326 audit(1764735902.821:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.2.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  275.983169][   T28] audit: type=1326 audit(1764735902.821:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.2.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  276.051065][   T28] audit: type=1326 audit(1764735902.821:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.2.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  276.080072][ T8929] loop1: detected capacity change from 0 to 32768
[  276.123652][   T28] audit: type=1326 audit(1764735902.821:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.2.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  276.226945][   T28] audit: type=1326 audit(1764735902.821:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.2.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f938f749 code=0x7ffc0000
[  276.616123][ T8942] loop2: detected capacity change from 0 to 32768
[  276.633343][ T8942] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  276.795841][ T5801] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  276.854678][ T8957] netlink: 'syz.2.676': attribute type 10 has an invalid length.
[  276.873673][ T8957] netlink: 40 bytes leftover after parsing attributes in process `syz.2.676'.
[  276.986503][ T8957] team0: Port device geneve0 added
[  277.346177][ T8968] loop2: detected capacity change from 0 to 64
[  277.434478][ T8953] loop0: detected capacity change from 0 to 32768
[  277.477296][ T8953] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  277.511023][ T8953] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  277.524912][ T8953] BTRFS info (device loop0): using free space tree
[  277.651440][ T8953] BTRFS info (device loop0): enabling ssd optimizations
[  277.679545][ T8953] BTRFS info (device loop0): auto enabling async discard
[  277.989161][ T5787] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  278.070995][ T8996] syz.1.687[8996] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  278.071143][ T8996] syz.1.687[8996] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  278.666650][ T8992] loop3: detected capacity change from 0 to 32768
[  278.715620][ T8992] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.684 (8992)
[  278.752489][ T8992] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  278.771366][ T8992] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  278.781613][ T8992] BTRFS info (device loop3): using free space tree
[  278.918732][ T8992] BTRFS info (device loop3): enabling ssd optimizations
[  278.957755][ T8992] BTRFS info (device loop3): auto enabling async discard
[  278.971086][ T8995] loop2: detected capacity change from 0 to 32768
[  279.029753][ T8995] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  279.188821][ T8995] XFS (loop2): Ending clean mount
[  279.382052][ T5788] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  279.487127][ T9037] netlink: 'syz.0.692': attribute type 21 has an invalid length.
[  279.709667][ T5789] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  280.241243][ T9049] syz.3.696[9049] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  280.241390][ T9049] syz.3.696[9049] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  280.560799][ T9055] loop1: detected capacity change from 0 to 512
[  280.580305][ T9055] EXT4-fs: Ignoring removed bh option
[  280.598473][ T9055] EXT4-fs: Ignoring removed nobh option
[  280.646301][ T9055] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #3: comm syz.1.697: corrupted inode contents
[  280.670514][ T9055] EXT4-fs error (device loop1): ext4_dirty_inode:6120: inode #3: comm syz.1.697: mark_inode_dirty error
[  280.730591][ T9055] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #3: comm syz.1.697: corrupted inode contents
[  280.796858][ T9055] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #3: comm syz.1.697: mark_inode_dirty error
[  280.822118][ T9055] __quota_error: 31 callbacks suppressed
[  280.822136][ T9055] Quota error (device loop1): write_blk: dquota write failed
[  280.845794][ T9055] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  280.860689][ T9068] loop2: detected capacity change from 0 to 128
[  280.867490][ T9055] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.697: Failed to acquire dquot type 0
[  280.898469][ T9055] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #16: comm syz.1.697: corrupted inode contents
[  280.916790][ T9055] EXT4-fs error (device loop1): ext4_dirty_inode:6120: inode #16: comm syz.1.697: mark_inode_dirty error
[  280.973200][ T9055] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #16: comm syz.1.697: corrupted inode contents
[  280.995723][ T9055] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.697: mark_inode_dirty error
[  281.033114][ T9055] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #16: comm syz.1.697: corrupted inode contents
[  281.076419][ T9055] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem
[  281.095596][ T9055] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #16: comm syz.1.697: corrupted inode contents
[  281.113918][ T9072] syz.3.702[9072] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  281.114068][ T9072] syz.3.702[9072] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  281.136870][ T9055] EXT4-fs error (device loop1): ext4_truncate:4294: inode #16: comm syz.1.697: mark_inode_dirty error
[  281.177279][   T28] audit: type=1326 audit(1764735908.561:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.3.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  281.235479][ T9055] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem
[  281.293506][   T28] audit: type=1326 audit(1764735908.601:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.3.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  281.326322][ T9055] EXT4-fs (loop1): 1 truncate cleaned up
[  281.337315][ T9055] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.352319][   T28] audit: type=1326 audit(1764735908.601:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.3.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  281.394501][ T9055] ext4 filesystem being mounted at /166/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.448384][   T28] audit: type=1326 audit(1764735908.601:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.3.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  281.475903][ T9078] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  281.531299][   T28] audit: type=1326 audit(1764735908.601:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.3.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  281.593088][   T28] audit: type=1326 audit(1764735908.601:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.3.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  281.674689][   T28] audit: type=1326 audit(1764735908.601:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.3.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  281.734336][ T9066] loop0: detected capacity change from 0 to 32768
[  281.748569][ T9083] Driver unsupported XDP return value 0 on prog  (id 141) dev N/A, expect packet loss!
[  281.760397][ T9066] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz.0.701 (9066)
[  281.804338][ T9066] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  281.817830][ T9066] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  281.838303][ T9066] BTRFS info (device loop0): using free space tree
[  281.849954][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.158854][ T9066] BTRFS info (device loop0): enabling ssd optimizations
[  282.186200][ T9066] BTRFS info (device loop0): auto enabling async discard
[  282.369037][ T9111] syz.3.710[9111] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  282.369184][ T9111] syz.3.710[9111] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  282.468520][ T5787] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  283.272304][ T9113] loop2: detected capacity change from 0 to 32768
[  283.312101][ T9113] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.711 (9113)
[  283.343288][ T9113] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  283.368794][ T9113] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  283.394366][ T9113] BTRFS info (device loop2): using free space tree
[  283.524347][ T9113] BTRFS info (device loop2): enabling ssd optimizations
[  283.531387][ T9113] BTRFS info (device loop2): auto enabling async discard
[  283.873414][ T9119] loop1: detected capacity change from 0 to 32768
[  283.917726][ T9119] BTRFS warning: duplicate device /dev/loop1 devid 1 generation 8 scanned by syz.1.715 (9119)
[  284.180701][ T5789] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  284.188022][ T6344] BTRFS warning: duplicate device /dev/loop1 devid 1 generation 8 scanned by udevd (6344)
[  284.455306][ T9144] loop0: detected capacity change from 0 to 32768
[  284.895455][ T9157] syz.1.725[9157] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  284.895609][ T9157] syz.1.725[9157] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  285.014830][ T9159] veth0: entered promiscuous mode
[  285.049931][ T9159] netlink: 4 bytes leftover after parsing attributes in process `syz.2.722'.
[  285.090288][ T9149] loop3: detected capacity change from 0 to 32768
[  285.115189][ T9149] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.721 (9149)
[  285.189040][ T9149] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  285.215912][ T9149] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  285.246950][ T9149] BTRFS info (device loop3): using free space tree
[  285.443819][ T9149] BTRFS info (device loop3): enabling ssd optimizations
[  285.451052][ T9149] BTRFS info (device loop3): auto enabling async discard
[  285.657565][ T9182] loop2: detected capacity change from 0 to 1024
[  285.684200][ T9182] EXT4-fs: Ignoring removed orlov option
[  285.839146][ T9182] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.877982][ T5788] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  285.960784][ T9189] loop0: detected capacity change from 0 to 512
[  286.071046][ T9189] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  286.217373][ T9189] ext4 filesystem being mounted at /171/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  286.310161][ T9186] loop1: detected capacity change from 0 to 32768
[  286.356146][ T9186] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop1 scanned by syz.1.730 (9186)
[  286.435373][   T28] audit: type=1800 audit(1764735913.821:352): pid=9189 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.726" name="file2" dev="loop0" ino=16 res=0 errno=0
[  286.476643][ T9186] BTRFS info (device loop1): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  286.526802][ T9186] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  286.564232][ T9186] BTRFS info (device loop1): using free space tree
[  286.674148][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.698349][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.878944][ T9186] BTRFS info (device loop1): enabling ssd optimizations
[  286.912202][ T9186] BTRFS info (device loop1): auto enabling async discard
[  287.347811][ T9194] loop3: detected capacity change from 0 to 32768
[  287.395523][ T9194] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by syz.3.731 (9194)
[  287.525140][ T9220] syz.0.735[9220] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  287.525288][ T9220] syz.0.735[9220] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  287.592020][ T5790] BTRFS info (device loop1): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  287.708558][ T5801] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by udevd (5801)
[  287.752787][   T28] audit: type=1326 audit(1764735915.131:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9226 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  287.790340][   T28] audit: type=1326 audit(1764735915.171:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9226 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  287.837921][   T28] audit: type=1326 audit(1764735915.171:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9226 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  287.877334][   T28] audit: type=1326 audit(1764735915.171:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9226 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  287.909055][   T28] audit: type=1326 audit(1764735915.171:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9226 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  287.978129][   T28] audit: type=1326 audit(1764735915.171:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9226 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  288.039868][   T28] audit: type=1326 audit(1764735915.171:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9226 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  288.099521][   T28] audit: type=1326 audit(1764735915.171:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9226 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  288.159596][   T28] audit: type=1326 audit(1764735915.171:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9226 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  288.478069][ T9237] loop0: detected capacity change from 0 to 1024
[  288.501159][ T9237] EXT4-fs: Ignoring removed orlov option
[  288.579088][ T9237] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.688615][ T9229] loop2: detected capacity change from 0 to 32768
[  288.708650][ T9229] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.739 (9229)
[  288.795299][ T9229] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  288.815999][ T9229] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  288.843249][ T9229] BTRFS info (device loop2): using free space tree
[  288.994054][ T9229] BTRFS info (device loop2): enabling ssd optimizations
[  289.011828][ T9229] BTRFS info (device loop2): auto enabling async discard
[  289.320791][ T5789] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  289.793657][ T9266] loop2: detected capacity change from 0 to 512
[  289.809435][ T9243] loop1: detected capacity change from 0 to 32768
[  289.821925][ T9266] EXT4-fs: Ignoring removed bh option
[  289.831235][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.851412][ T9243] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop1 scanned by syz.1.744 (9243)
[  289.878164][ T9266] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities
[  289.955185][ T9243] BTRFS info (device loop1): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  289.970648][ T9243] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  290.002692][ T9243] BTRFS info (device loop1): using free space tree
[  290.049661][ T9268] netlink: 48 bytes leftover after parsing attributes in process `syz.3.747'.
[  290.256068][ T9243] BTRFS info (device loop1): enabling ssd optimizations
[  290.297847][ T9243] BTRFS info (device loop1): auto enabling async discard
[  290.449167][ T9292] syz.2.749[9292] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  290.449319][ T9292] syz.2.749[9292] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  290.930269][ T5790] BTRFS info (device loop1): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  291.315777][ T9282] loop0: detected capacity change from 0 to 32768
[  291.347653][ T9282] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz.0.746 (9282)
[  291.413417][ T9282] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  291.442926][ T9282] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  291.443185][   T28] kauditd_printk_skb: 43 callbacks suppressed
[  291.443197][   T28] audit: type=1326 audit(1764735918.821:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9302 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe5429c2005 code=0x7ffc0000
[  291.483672][ T9282] BTRFS info (device loop0): using free space tree
[  291.553763][   T28] audit: type=1326 audit(1764735918.831:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9302 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe5429c2005 code=0x7ffc0000
[  291.635692][   T28] audit: type=1326 audit(1764735918.831:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9302 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe5429c2005 code=0x7ffc0000
[  291.678300][   T28] audit: type=1326 audit(1764735918.831:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9302 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe5429c2005 code=0x7ffc0000
[  291.721326][ T9282] BTRFS info (device loop0): enabling ssd optimizations
[  291.728668][ T9282] BTRFS info (device loop0): auto enabling async discard
[  291.743519][   T28] audit: type=1326 audit(1764735918.831:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9302 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe5429c2005 code=0x7ffc0000
[  291.767018][   T28] audit: type=1326 audit(1764735918.831:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9302 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe5429c2005 code=0x7ffc0000
[  291.790826][   T28] audit: type=1326 audit(1764735918.831:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9302 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe5429c2005 code=0x7ffc0000
[  291.814566][   T28] audit: type=1326 audit(1764735918.831:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9302 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe5429c2005 code=0x7ffc0000
[  291.842819][   T28] audit: type=1326 audit(1764735918.831:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9302 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe5429c2005 code=0x7ffc0000
[  291.936327][   T28] audit: type=1326 audit(1764735918.831:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9302 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe5429c2005 code=0x7ffc0000
[  292.081052][ T9303] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  292.099455][ T9303] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  292.129734][ T5787] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  292.141314][ T9301] loop2: detected capacity change from 0 to 32768
[  292.173506][ T9301] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by syz.2.753 (9301)
[  292.250315][ T9303] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  292.256730][ T9303] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  292.308359][ T9303] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  292.325519][ T9303] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  292.410716][ T9303] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  292.448469][ T9303] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  292.535364][ T5796] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 10 /dev/loop0 scanned by udevd (5796)
[  292.584886][ T5801] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  293.146411][ T9353] ªªªªªª: renamed from vlan0 (while UP)
[  293.403232][ T5803] Bluetooth: hci1: command 0x0406 tx timeout
[  293.834917][ T9343] loop3: detected capacity change from 0 to 32768
[  293.842074][ T9371] loop2: detected capacity change from 0 to 128
[  294.290885][ T5803] Bluetooth: hci2: command 0x0406 tx timeout
[  294.363243][ T5803] Bluetooth: hci3: command 0x0406 tx timeout
[  294.443154][ T5803] Bluetooth: hci0: command 0x0406 tx timeout
[  294.492023][ T9382] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  294.523497][ T9384] netlink: 'syz.1.779': attribute type 12 has an invalid length.
[  294.679853][ T9382] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  294.856487][ T9382] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.094677][ T9382] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.220100][ T9402] ªªªªªª: renamed from vlan0 (while UP)
[  295.345979][ T9382] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  295.371314][ T9382] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  295.411942][ T9382] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  295.446434][ T9382] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  295.487804][ T5803] Bluetooth: hci1: command 0x0406 tx timeout
[  295.753468][ T9413] 9pnet: Could not find request transport: r
[  296.195678][ T9426] process 'syz.1.794' launched '/dev/fd/6' with NULL argv: empty string added
[  296.234550][ T9428] ªªªªªª: renamed from vlan0 (while UP)
[  296.262496][ T9407] loop3: detected capacity change from 0 to 32768
[  296.363330][ T5803] Bluetooth: hci2: command 0x0406 tx timeout
[  296.443933][ T5803] Bluetooth: hci3: command 0x0406 tx timeout
[  296.523248][ T5803] Bluetooth: hci0: command 0x0406 tx timeout
[  296.947044][ T9442] tmpfs: Bad value for 'usrquota_inode_hardlimit'
[  297.098756][ T9424] loop2: detected capacity change from 0 to 32768
[  297.212245][ T9424] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  297.353187][ T9424] XFS (loop2): Ending clean mount
[  297.661978][ T9465] netlink: 'syz.1.805': attribute type 12 has an invalid length.
[  297.701513][ T5789] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  298.327220][ T9477] loop0: detected capacity change from 0 to 1024
[  298.425300][ T9477] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  298.526997][ T9477] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000004 r/w without journal. Quota mode: none.
[  300.345768][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000004.
[  300.604619][   T28] kauditd_printk_skb: 104 callbacks suppressed
[  300.604636][   T28] audit: type=1326 audit(1764735927.991:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="syz.1.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  300.708047][   T28] audit: type=1326 audit(1764735928.021:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="syz.1.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  300.727473][ T9509] netlink: 'syz.3.820': attribute type 12 has an invalid length.
[  300.778903][   T28] audit: type=1326 audit(1764735928.041:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="syz.1.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  300.830875][   T28] audit: type=1326 audit(1764735928.091:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="syz.1.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  300.909565][   T28] audit: type=1326 audit(1764735928.121:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9510 comm="syz.1.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f47575c2005 code=0x7ffc0000
[  300.954560][   T28] audit: type=1326 audit(1764735928.161:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="syz.1.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  301.063650][   T28] audit: type=1326 audit(1764735928.161:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="syz.1.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  301.119706][   T28] audit: type=1326 audit(1764735928.161:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="syz.1.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  301.169683][   T28] audit: type=1326 audit(1764735928.161:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="syz.1.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  301.253053][   T28] audit: type=1326 audit(1764735928.161:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="syz.1.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  301.593450][ T9523] tunl0: entered allmulticast mode
[  301.684145][ T9529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.826'.
[  301.728730][ T9529] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  301.753915][ T9529] batman_adv: batadv0: Removing interface: batadv_slave_0
[  301.808532][ T9529] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  301.855079][ T9529] batman_adv: batadv0: Removing interface: batadv_slave_1
[  302.380772][ T9544] syz.2.833[9544] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  302.380923][ T9544] syz.2.833[9544] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  303.368801][ T9562] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  303.383384][ T9558] netlink: 'syz.2.841': attribute type 12 has an invalid length.
[  304.097176][ T9577] loop3: detected capacity change from 0 to 8192
[  304.185685][ T9577] syz.3.849: attempt to access beyond end of device
[  304.185685][ T9577] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  304.565705][ T9588] loop3: detected capacity change from 0 to 1024
[  304.651317][ T9588] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  304.699095][ T9588] ext4 filesystem being mounted at /208/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  304.750283][ T9588] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: block 3: comm syz.3.854: lblock 3 mapped to illegal pblock 3 (length 3)
[  304.798646][ T9588] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  304.820110][ T9588] EXT4-fs (loop3): This should not happen!! Data will be lost
[  304.820110][ T9588] 
[  304.994177][ T1107] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: block 8: comm kworker/u4:8: lblock 8 mapped to illegal pblock 8 (length 8)
[  305.036720][ T1107] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  305.087067][ T1107] EXT4-fs (loop3): This should not happen!! Data will be lost
[  305.087067][ T1107] 
[  305.135182][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  305.941065][ T9569] overlayfs: missing 'lowerdir'
[  306.004158][ T9619] netlink: 'syz.3.866': attribute type 12 has an invalid length.
[  306.101519][ T9602] loop0: detected capacity change from 0 to 32768
[  306.199816][ T9602] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  306.406298][ T9602] XFS (loop0): Ending clean mount
[  306.605186][ T5787] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  307.030990][   T28] kauditd_printk_skb: 110 callbacks suppressed
[  307.031009][   T28] audit: type=1326 audit(1764735934.411:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9655 comm="syz.3.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  307.080634][   T28] audit: type=1326 audit(1764735934.431:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9655 comm="syz.3.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  307.131096][   T28] audit: type=1326 audit(1764735934.451:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9655 comm="syz.3.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  307.175153][   T28] audit: type=1326 audit(1764735934.451:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9655 comm="syz.3.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  307.209641][   T28] audit: type=1326 audit(1764735934.451:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9655 comm="syz.3.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  307.247411][   T28] audit: type=1326 audit(1764735934.451:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9655 comm="syz.3.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  307.274531][ T9660] loop3: detected capacity change from 0 to 1024
[  307.333492][   T28] audit: type=1326 audit(1764735934.451:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9655 comm="syz.3.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  307.389453][ T9660] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  307.457589][   T28] audit: type=1326 audit(1764735934.451:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9655 comm="syz.3.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  307.563636][   T28] audit: type=1326 audit(1764735934.451:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9655 comm="syz.3.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  307.602763][   T28] audit: type=1326 audit(1764735934.481:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9657 comm="syz.1.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f475758f749 code=0x7ffc0000
[  307.840261][ T9662] loop2: detected capacity change from 0 to 32768
[  307.907886][ T9662] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  308.134313][ T9662] XFS (loop2): Ending clean mount
[  308.147101][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  308.400104][ T5789] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  308.697557][ T9693] overlayfs: failed to resolve './file0': -2
[  309.097450][ T9705] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.166316][ T9709] ip6t_rpfilter: unknown options
[  309.203177][ T9705] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.301264][ T9705] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.414739][ T9705] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.561606][ T9704] xt_hashlimit: size too large, truncated to 1048576
[  309.614947][ T9705] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  309.676080][ T9705] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  309.744578][ T9705] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  309.782829][ T9705] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  309.853669][ T9708] loop2: detected capacity change from 0 to 32768
[  309.933388][ T9708] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  310.049657][ T9708] XFS (loop2): Ending clean mount
[  310.181854][ T5789] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  310.336422][ T9727] loop0: detected capacity change from 0 to 128
[  310.427120][ T9727] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  310.468738][ T9727] ext4 filesystem being mounted at /209/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  310.718998][ T5787] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  310.825332][ T9714] overlayfs: missing 'lowerdir'
[  310.962729][ T1132] Bluetooth: hci4: Frame reassembly failed (-84)
[  310.982542][ T1144] Bluetooth: hci4: Frame reassembly failed (-84)
[  311.641972][ T9754] syz.1.908[9754] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  311.642155][ T9754] syz.1.908[9754] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  311.814682][ T9758] syz.1.909[9758] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  311.814837][ T9758] syz.1.909[9758] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  312.631253][ T9771] netlink: 12 bytes leftover after parsing attributes in process `syz.3.915'.
[  312.673225][ T9771] 8021q: adding VLAN 0 to HW filter on device bond1
[  313.003287][ T5803] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  313.479780][ T9784] bridge0: entered promiscuous mode
[  313.553211][ T9784] macsec1: entered promiscuous mode
[  313.578045][ T9784] bridge0: port 3(macsec1) entered blocking state
[  313.599281][ T9784] bridge0: port 3(macsec1) entered disabled state
[  313.622294][ T9784] macsec1: entered allmulticast mode
[  313.659955][ T9784] bridge0: entered allmulticast mode
[  313.678797][ T9778] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  313.741614][ T9784] macsec1: left allmulticast mode
[  313.756141][ T9778] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  313.780093][ T9778] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  313.799539][ T9778] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  313.803115][ T9784] bridge0: left allmulticast mode
[  313.822911][ T9778] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  313.845845][ T9784] bridge0: left promiscuous mode
[  313.847436][ T9778] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  313.886584][ T9778] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  313.906924][ T9778] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  313.927802][ T9778] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  313.943340][ T9778] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  314.447902][   T28] kauditd_printk_skb: 43 callbacks suppressed
[  314.447919][   T28] audit: type=1326 audit(1764735941.831:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9809 comm="syz.3.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  314.544333][   T28] audit: type=1326 audit(1764735941.871:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9809 comm="syz.3.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  314.609295][   T28] audit: type=1326 audit(1764735941.871:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9809 comm="syz.3.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54298f749 code=0x7ffc0000
[  314.679524][ T9814] overlayfs: failed to resolve './file1': -2
[  315.135889][ T9806] loop0: detected capacity change from 0 to 32768
[  315.210695][ T9806] overlayfs: missing 'lowerdir'
[  315.374331][ T9817] loop2: detected capacity change from 0 to 32768
[  315.393641][ T9817] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  315.544370][ T9822] syz.3.937[9822] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  315.544528][ T9822] syz.3.937[9822] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  315.661518][ T9822] serio: Serial port ttyS3
[  315.929333][ T9829] loop3: detected capacity change from 0 to 1024
[  315.941933][ T9829] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  316.023758][ T9835] netlink: 'syz.1.942': attribute type 4 has an invalid length.
[  316.085565][ T9837] netlink: 'syz.2.943': attribute type 12 has an invalid length.
[  316.108462][ T9838] netlink: 'syz.1.942': attribute type 4 has an invalid length.
[  316.387400][ T9847] syz.1.946[9847] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  316.387551][ T9847] syz.1.946[9847] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  317.132721][ T9852] loop2: detected capacity change from 0 to 32768
[  317.154894][ T9852] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  317.366819][ T9858] netlink: 60 bytes leftover after parsing attributes in process `syz.1.951'.
[  317.436792][   T28] audit: type=1326 audit(1764735944.821:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9860 comm="syz.0.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  317.488315][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  317.522165][   T28] audit: type=1326 audit(1764735944.821:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9860 comm="syz.0.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  317.562177][ T9858] netlink: 60 bytes leftover after parsing attributes in process `syz.1.951'.
[  317.578643][   T28] audit: type=1326 audit(1764735944.851:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9860 comm="syz.0.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  317.634199][   T28] audit: type=1326 audit(1764735944.851:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9860 comm="syz.0.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  317.696721][   T28] audit: type=1326 audit(1764735944.851:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9860 comm="syz.0.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  317.742588][   T28] audit: type=1326 audit(1764735944.851:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9860 comm="syz.0.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  317.797586][   T28] audit: type=1326 audit(1764735944.851:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9860 comm="syz.0.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5e7b8f749 code=0x7ffc0000
[  317.845855][ T9858] netlink: 60 bytes leftover after parsing attributes in process `syz.1.951'.
[  318.204953][ T9884] netlink: 'syz.1.962': attribute type 12 has an invalid length.
[  318.258656][ T9886] loop3: detected capacity change from 0 to 1024
[  318.298860][ T9886] EXT4-fs (loop3): stripe (32769) is not aligned with cluster size (16), stripe is disabled
[  318.359905][ T9886] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  318.469889][ T9886] ==================================================================
[  318.478106][ T9886] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x94b/0x1e90
[  318.485880][ T9886] Read of size 18446744073709551588 at addr ffff88801c6c6840 by task syz.3.963/9886
[  318.495379][ T9886] 
[  318.497734][ T9886] CPU: 0 PID: 9886 Comm: syz.3.963 Not tainted syzkaller #0
[  318.505052][ T9886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  318.515236][ T9886] Call Trace:
[  318.518634][ T9886]  <TASK>
[  318.521688][ T9886]  dump_stack_lvl+0x16c/0x230
[  318.526423][ T9886]  ? read_lock_is_recursive+0x20/0x20
[  318.531839][ T9886]  ? show_regs_print_info+0x20/0x20
[  318.537082][ T9886]  ? load_image+0x3b0/0x3b0
[  318.541626][ T9886]  ? _raw_spin_lock_irqsave+0xb4/0xf0
[  318.547045][ T9886]  ? __virt_addr_valid+0x18c/0x540
[  318.552205][ T9886]  ? __virt_addr_valid+0x469/0x540
[  318.557357][ T9886]  print_report+0xac/0x220
[  318.561852][ T9886]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  318.567354][ T9886]  kasan_report+0x117/0x150
[  318.572069][ T9886]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  318.577745][ T9886]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  318.583335][ T9886]  kasan_check_range+0x288/0x290
[  318.588316][ T9886]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  318.593900][ T9886]  __asan_memmove+0x29/0x70
[  318.598444][ T9886]  ext4_xattr_set_entry+0x94b/0x1e90
[  318.603783][ T9886]  ext4_xattr_block_set+0xae3/0x32a0
[  318.609209][ T9886]  ? ext4_destroy_inode+0x200/0x200
[  318.614457][ T9886]  ? proc_nr_inodes+0x230/0x230
[  318.619352][ T9886]  ? do_raw_spin_unlock+0x121/0x230
[  318.624590][ T9886]  ? _raw_spin_unlock+0x28/0x40
[  318.629496][ T9886]  ? ext4_xattr_block_find+0x350/0x350
[  318.635018][ T9886]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  318.640449][ T9886]  ext4_xattr_set_handle+0xbff/0x1290
[  318.645881][ T9886]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  318.652006][ T9886]  ? __ext4_journal_start_sb+0x259/0x570
[  318.657692][ T9886]  ext4_xattr_set+0x22d/0x320
[  318.662431][ T9886]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  318.668554][ T9886]  ? evm_protected_xattr_common+0x170/0x190
[  318.674597][ T9886]  ? evm_protect_xattr+0x534/0x7a0
[  318.679750][ T9886]  ? ext4_xattr_security_get+0x40/0x40
[  318.685314][ T9886]  __vfs_setxattr+0x431/0x470
[  318.690043][ T9886]  __vfs_setxattr_noperm+0x12d/0x5e0
[  318.695397][ T9886]  vfs_setxattr+0x16c/0x2f0
[  318.699943][ T9886]  ? xattr_permission+0x470/0x470
[  318.705006][ T9886]  ? __mnt_want_write+0x223/0x2a0
[  318.710076][ T9886]  ? path_setxattr+0x314/0x550
[  318.714942][ T9886]  path_setxattr+0x362/0x550
[  318.719748][ T9886]  ? simple_xattrs_free+0x150/0x150
[  318.725002][ T9886]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  318.731015][ T9886]  ? lock_chain_count+0x20/0x20
[  318.735908][ T9886]  __x64_sys_setxattr+0xbb/0xd0
[  318.740801][ T9886]  do_syscall_64+0x55/0xb0
[  318.745279][ T9886]  ? clear_bhb_loop+0x40/0x90
[  318.749997][ T9886]  ? clear_bhb_loop+0x40/0x90
[  318.754720][ T9886]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  318.760763][ T9886] RIP: 0033:0x7fe54298f749
[  318.765829][ T9886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.785831][ T9886] RSP: 002b:00007fe5437bb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  318.795490][ T9886] RAX: ffffffffffffffda RBX: 00007fe542be5fa0 RCX: 00007fe54298f749
[  318.803705][ T9886] RDX: 00002000000013c0 RSI: 0000200000000140 RDI: 0000200000000100
[  318.811807][ T9886] RBP: 00007fe542a13f91 R08: 0000000000000000 R09: 0000000000000000
[  318.819827][ T9886] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000000
[  318.827846][ T9886] R13: 00007fe542be6038 R14: 00007fe542be5fa0 R15: 00007fffb5e6d848
[  318.835876][ T9886]  </TASK>
[  318.839014][ T9886] 
[  318.841360][ T9886] Allocated by task 9886:
[  318.845862][ T9886]  kasan_set_track+0x4e/0x70
[  318.850487][ T9886]  __kasan_kmalloc+0x8f/0xa0
[  318.855119][ T9886]  __kmalloc_node_track_caller+0xb2/0x230
[  318.860891][ T9886]  kmemdup+0x2b/0x70
[  318.864859][ T9886]  ext4_xattr_block_set+0x9e5/0x32a0
[  318.870189][ T9886]  ext4_xattr_set_handle+0xbff/0x1290
[  318.875613][ T9886]  ext4_xattr_set+0x22d/0x320
[  318.880350][ T9886]  __vfs_setxattr+0x431/0x470
[  318.885072][ T9886]  __vfs_setxattr_noperm+0x12d/0x5e0
[  318.890381][ T9886]  vfs_setxattr+0x16c/0x2f0
[  318.894993][ T9886]  path_setxattr+0x362/0x550
[  318.899717][ T9886]  __x64_sys_setxattr+0xbb/0xd0
[  318.904585][ T9886]  do_syscall_64+0x55/0xb0
[  318.909025][ T9886]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  318.915022][ T9886] 
[  318.917355][ T9886] The buggy address belongs to the object at ffff88801c6c6800
[  318.917355][ T9886]  which belongs to the cache kmalloc-1k of size 1024
[  318.931422][ T9886] The buggy address is located 64 bytes inside of
[  318.931422][ T9886]  1024-byte region [ffff88801c6c6800, ffff88801c6c6c00)
[  318.944714][ T9886] 
[  318.947050][ T9886] The buggy address belongs to the physical page:
[  318.953471][ T9886] page:ffffea000071b000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1c6c0
[  318.963725][ T9886] head:ffffea000071b000 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  318.972793][ T9886] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  318.981073][ T9886] page_type: 0xffffffff()
[  318.985419][ T9886] raw: 00fff00000000840 ffff888017841dc0 dead000000000122 0000000000000000
[  318.994015][ T9886] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  319.002611][ T9886] page dumped because: kasan: bad access detected
[  319.009030][ T9886] page_owner tracks the page as allocated
[  319.014750][ T9886] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x152820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 49, tgid 49 (kworker/u4:3), ts 318441415032, free_ts 317992526672
[  319.035344][ T9886]  post_alloc_hook+0x1cd/0x210
[  319.040129][ T9886]  get_page_from_freelist+0x195c/0x19f0
[  319.045710][ T9886]  __alloc_pages+0x1e3/0x460
[  319.050315][ T9886]  alloc_slab_page+0x5d/0x170
[  319.055010][ T9886]  new_slab+0x87/0x2e0
[  319.059095][ T9886]  ___slab_alloc+0xc6d/0x1300
[  319.063788][ T9886]  __kmem_cache_alloc_node+0x1a2/0x260
[  319.069259][ T9886]  __kmalloc+0xa4/0x240
[  319.073424][ T9886]  ieee802_11_parse_elems_full+0xb9/0x2080
[  319.079353][ T9886]  ieee80211_inform_bss+0x107/0x1060
[  319.084648][ T9886]  rdev_inform_bss+0x106/0x410
[  319.089425][ T9886]  cfg80211_inform_bss_frame_data+0xb33/0x12b0
[  319.095592][ T9886]  ieee80211_bss_info_update+0x70b/0x930
[  319.101238][ T9886]  ieee80211_ibss_rx_queued_mgmt+0x17c9/0x2ac0
[  319.107409][ T9886]  ieee80211_iface_work+0x717/0xc70
[  319.112621][ T9886]  cfg80211_wiphy_work+0x225/0x260
[  319.117789][ T9886] page last free stack trace:
[  319.122479][ T9886]  free_unref_page_prepare+0x7ce/0x8e0
[  319.127989][ T9886]  free_unref_page+0x32/0x2e0
[  319.132680][ T9886]  __unfreeze_partials+0x1cf/0x210
[  319.137823][ T9886]  put_cpu_partial+0x17c/0x250
[  319.142611][ T9886]  __slab_free+0x31d/0x410
[  319.147136][ T9886]  qlist_free_all+0x75/0xe0
[  319.151653][ T9886]  kasan_quarantine_reduce+0x143/0x160
[  319.157129][ T9886]  __kasan_slab_alloc+0x22/0x80
[  319.162081][ T9886]  slab_post_alloc_hook+0x6e/0x4d0
[  319.167746][ T9886]  __kmem_cache_alloc_node+0x13e/0x260
[  319.173253][ T9886]  __kmalloc+0xa4/0x240
[  319.177537][ T9886]  tomoyo_encode+0x28b/0x540
[  319.182159][ T9886]  tomoyo_path_perm+0x2b1/0x4b0
[  319.187019][ T9886]  tomoyo_path_symlink+0xa4/0xe0
[  319.191969][ T9886]  security_path_symlink+0xe0/0x130
[  319.197181][ T9886]  do_symlinkat+0x108/0x3f0
[  319.201695][ T9886] 
[  319.204108][ T9886] Memory state around the buggy address:
[  319.209746][ T9886]  ffff88801c6c6700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  319.217826][ T9886]  ffff88801c6c6780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  319.225986][ T9886] >ffff88801c6c6800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  319.234274][ T9886]                                            ^
[  319.240438][ T9886]  ffff88801c6c6880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  319.248612][ T9886]  ffff88801c6c6900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  319.256681][ T9886] ==================================================================
[  319.269119][ T9877] xt_hashlimit: size too large, truncated to 1048576
[  319.315610][ T9894] netlink: 'syz.1.965': attribute type 29 has an invalid length.
[  319.333033][ T9886] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  319.340554][ T9886] CPU: 0 PID: 9886 Comm: syz.3.963 Not tainted syzkaller #0
[  319.347888][ T9886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  319.358068][ T9886] Call Trace:
[  319.362301][ T9886]  <TASK>
[  319.365297][ T9886]  dump_stack_lvl+0x16c/0x230
[  319.370254][ T9886]  ? show_regs_print_info+0x20/0x20
[  319.375950][ T9886]  ? load_image+0x3b0/0x3b0
[  319.380677][ T9886]  panic+0x2c0/0x710
[  319.384626][ T9886]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  319.391001][ T9886]  ? bpf_jit_dump+0xd0/0xd0
[  319.395636][ T9886]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[  319.401574][ T9886]  ? _raw_spin_unlock+0x40/0x40
[  319.406470][ T9886]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  319.412075][ T9886]  check_panic_on_warn+0x84/0xa0
[  319.417051][ T9886]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  319.422665][ T9886]  end_report+0x6f/0x140
[  319.426949][ T9886]  kasan_report+0x128/0x150
[  319.431500][ T9886]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  319.437017][ T9886]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  319.442525][ T9886]  kasan_check_range+0x288/0x290
[  319.447542][ T9886]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  319.453055][ T9886]  __asan_memmove+0x29/0x70
[  319.457705][ T9886]  ext4_xattr_set_entry+0x94b/0x1e90
[  319.463170][ T9886]  ext4_xattr_block_set+0xae3/0x32a0
[  319.468597][ T9886]  ? ext4_destroy_inode+0x200/0x200
[  319.473853][ T9886]  ? proc_nr_inodes+0x230/0x230
[  319.478747][ T9886]  ? do_raw_spin_unlock+0x121/0x230
[  319.484076][ T9886]  ? _raw_spin_unlock+0x28/0x40
[  319.488967][ T9886]  ? ext4_xattr_block_find+0x350/0x350
[  319.494479][ T9886]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  319.500003][ T9886]  ext4_xattr_set_handle+0xbff/0x1290
[  319.505438][ T9886]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  319.511548][ T9886]  ? __ext4_journal_start_sb+0x259/0x570
[  319.517398][ T9886]  ext4_xattr_set+0x22d/0x320
[  319.522306][ T9886]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  319.527896][ T9886]  ? evm_protected_xattr_common+0x170/0x190
[  319.533848][ T9886]  ? evm_protect_xattr+0x534/0x7a0
[  319.539080][ T9886]  ? ext4_xattr_security_get+0x40/0x40
[  319.544586][ T9886]  __vfs_setxattr+0x431/0x470
[  319.549415][ T9886]  __vfs_setxattr_noperm+0x12d/0x5e0
[  319.554753][ T9886]  vfs_setxattr+0x16c/0x2f0
[  319.559318][ T9886]  ? xattr_permission+0x470/0x470
[  319.564384][ T9886]  ? __mnt_want_write+0x223/0x2a0
[  319.569457][ T9886]  ? path_setxattr+0x314/0x550
[  319.574355][ T9886]  path_setxattr+0x362/0x550
[  319.579089][ T9886]  ? simple_xattrs_free+0x150/0x150
[  319.584335][ T9886]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  319.590354][ T9886]  ? lock_chain_count+0x20/0x20
[  319.595428][ T9886]  __x64_sys_setxattr+0xbb/0xd0
[  319.600402][ T9886]  do_syscall_64+0x55/0xb0
[  319.604866][ T9886]  ? clear_bhb_loop+0x40/0x90
[  319.609590][ T9886]  ? clear_bhb_loop+0x40/0x90
[  319.614312][ T9886]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  319.620433][ T9886] RIP: 0033:0x7fe54298f749
[  319.624875][ T9886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.644694][ T9886] RSP: 002b:00007fe5437bb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  319.653331][ T9886] RAX: ffffffffffffffda RBX: 00007fe542be5fa0 RCX: 00007fe54298f749
[  319.661337][ T9886] RDX: 00002000000013c0 RSI: 0000200000000140 RDI: 0000200000000100
[  319.669449][ T9886] RBP: 00007fe542a13f91 R08: 0000000000000000 R09: 0000000000000000
[  319.677452][ T9886] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000000
[  319.685538][ T9886] R13: 00007fe542be6038 R14: 00007fe542be5fa0 R15: 00007fffb5e6d848
[  319.693743][ T9886]  </TASK>
[  319.697074][ T9886] Kernel Offset: disabled
[  319.701413][ T9886] Rebooting in 86400 seconds..