last executing test programs:

5.508803711s ago: executing program 1 (id=1288):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdde, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYBLOB="1c0000003e000701fcfffffffedbdf25017c00000600048036"], 0x1c}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)

5.282956536s ago: executing program 3 (id=1289):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f0000000080)={[{@discard}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$eJzs3d9rHNUeAPDvbJLmR3tvcuFy7+1b4EJvoHRzU2Or4EPFBxEsFPTZNmy2oWaTLdlNaULAFhF8EVR8EPSlz/6ob776A3zS/8IHaamaFis+SGR2Z5M02c2vJtloPh+YzDkzsznnO+fMzNmdYTeAQ2sw/ZOLOB4RbycR/dnyJCK6aqnOiHP17R4uLvRERCGJpaWXfkpq2zxYXCjEqtekjmaZ/0TEV29EnMytL7cyNz85VioVZ7L8cHXq6nBlbv7UlamxieJEcfrMyOjo6bNPnj2ze7H+8t38sbvvPP+/T8/99vq/b7/1dRLn4li2bnUcu2UwBrN90pXuwkc8t9uFtVnS7gqwI+mh2VE/yuN49EdHLdVC737WDADYK69FxBIAcMgkrv8AcMg0Pgd4sLhQaEzt/URif917NiJ66vE/zKb6ms7snl1P7T5o34PkkTsjSUQM7EL5gxHx4eevnOjI8mk93EsD9sONmxFxaWBw/fk/WffMwnb9f6OVS9212eCaxYft+gPt9EU6/nmq2fgvtzz+iSbjn+76sfuvxy1/8+M/d+dxy9hIOv57pv5s25rx3/JDawMdWe5vtTFfV3L5SqmYntv+HhFD0dWd5kdqmzYfuQ3d//1+q/Kz8d/H6fTzu69+lJafzle2yN3p7H70NeNj1c5vHjfwzL2b0Zcl18SfLLd/0mL8e2GLZbzw9JsftFqXxp/G25jWx7+3lm5FnGja/ittmWz4fOJwrTsMNzpFE599/35fq/JXt386peWn892PtLl7N6PWAZJkZR/U1yzHP5Csfl6zsv0yvr3V/2WrdZvH37T/jx1JXq6lj2TLro9VqzMjEUeSF9cvP73y2ka+sX0a/9B/mx//9WKb9//0PeGlLcbfeffHT3Ye/95K4x/fuP+vaf+ebPHKks0Stx9OdrQqf2vtP1pLDWVL0vbfLK6t1GtnvRkAAAAAAAAAAAAAAAAAAAAAAAAAti8XEcciyeWX07lcPl//De9/Rl+uVK5UT14uz06PR+23sgeiK9f4qsv+Vd+HOpJ9H34jf3pN/omI+EdEvNfdW8vnC+XSeLuDBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDM0Ra//5/6obvdtQMA9kxPuysAAOw7138AOHy2d/3v3bN6AAD7x/t/ADh8tnz9v7S39QAA9o/3/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOyxC+fPp9PSr4sLhTQ/fm1udrJ87dR4sTKZn5ot5Avlmav5iXJ5olTMF8pTLf/RjfqsVC5fHY3p2evD1WKlOlyZm784VZ6drl68MjU2UbxY7Nq3yAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg6ypz85NjpVJx5i+RuLES2C7/5962xtV3MHbvqkRnHIhqHOhEdxyIauwwsfos0duGMxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAn8MfAQAA//94WBdi")
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x9000)
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000001c0)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000001000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001", @ANYRES32=r2, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
bind$bt_hci(r4, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r4, &(0x7f0000000140)="24000000010006", 0x7)
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r7 = syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/net\x00')
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000480)={@cgroup=<r8=>r7, 0x11, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000640)={@cgroup=r8, 0x24, 0x0, 0xffff, &(0x7f0000000000)=[0x0, 0x0, 0x0], 0x3, 0x0, 0x0, 0x0, 0x0}, 0x40)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0xffffffffffffff00, 0x9, 0x0, 0x2, 0x40000017, 0x5, "90214ac0efa64418c7aa4a41c28a760980c6f75fd7b78b4a086eef53d9b4af3edbb51a05dd714e44a1429d21fb92bdedde706b7ac59311d1c1a462b3a0a702d5", "eafd7c2b5efd77db35b426c2d0dd254d485cb67ce83a69bce74c87e81de30371f317ec01b4dc6a39b9f673dda071ec5287d868f15b10ebb671a576e32aa20731", "51986e714fbab99e92024a0b497a05000000000000c4d0372b39ab150304831a", [0x1]})
r9 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
pwritev2(r9, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)

4.986809837s ago: executing program 1 (id=1292):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

4.883817979s ago: executing program 2 (id=1293):
socket$inet6(0xa, 0x1, 0x0)
openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000200)='./file1\x00', 0x4010, &(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES8], 0x1, 0x11ee, &(0x7f0000002480)="$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")
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)

4.523026413s ago: executing program 1 (id=1295):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000000c0)={0xfffc, 0x0, 0x14, 0xfffe}, 0x8)
sendto$inet6(r0, &(0x7f00000004c0)='W', 0x1, 0x4, &(0x7f0000000100)={0xa, 0x0, 0x3, @loopback, 0x8}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, 0x0, 0x0)

3.995521758s ago: executing program 3 (id=1298):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r0, &(0x7f00000000c0)="3f031c00dce0140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b788061", 0x24, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

3.883678602s ago: executing program 4 (id=1299):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000b40)=@filter={'filter\x00', 0x4, 0x4, 0x370, 0xffffffff, 0x260, 0x260, 0xe8, 0xfeffffff, 0xffffffff, 0x3e8, 0x3e8, 0x3e8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x29}, @private2, [0xffffffff, 0xff000000, 0xff, 0xffffff00], [0xffffff00, 0xffffffff, 0xffffffff, 0xffffffff], 'hsr0\x00', 'sit0\x00', {}, {}, 0x87, 0x3, 0x4, 0x5}, 0x2f2, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x7}}}}, {{@ipv6={@private2, @empty, [], [0x0, 0x0, 0xff000000], 'sit0\x00', 'batadv_slave_1\x00'}, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x2000010}}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000280)={'\x00', 0x7e, 0x1000, 0x5c8, 0x80000003, 0x6})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
socket$packet(0x11, 0x2, 0x300)
open(&(0x7f0000000180)='./file0\x00', 0x40c5, 0x24)
dup(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x18)
setsockopt(0xffffffffffffffff, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000800)=@raw={'raw\x00', 0x3c1, 0x3, 0x3a0, 0x0, 0x12, 0x60d, 0x1d8, 0x202, 0x2d0, 0x2e8, 0x2e8, 0x2d0, 0x2c0, 0x4, 0x0, {[{{@ipv6={@local, @mcast1, [0x0, 0x0, 0xc0], [0x0, 0xff000000], 'veth1_to_batadv\x00', 'macsec0\x00'}, 0x0, 0x190, 0x1d8, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "000000165a8c2e0617ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f672225d6147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac05a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcf07000000eca0a7b66c60c527bac2b5", 0x2, 0x2}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@mh={{0x28}, {'Yv'}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0x0, 0x0, 0x1}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x400)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x58)
execve(0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x2, &(0x7f0000000b80)=@ccm_128={{0x303}, "9087e297ca9e4ffe", "a2da602ccac7a163f457e492ae868026", "e6cd5778", "97eb2431692ebbae"}, 0x28)

3.806648508s ago: executing program 2 (id=1300):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000380)=ANY=[], 0xffe)

3.619378091s ago: executing program 0 (id=1301):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0xc8cf, 0x0, 0x0}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x2d)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000700)='kmem_cache_free\x00', r2}, 0x18)
fchmodat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x20)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x120}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYRES64=r3], 0x94}, 0x1, 0x0, 0x0, 0x4048005}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)

3.05098847s ago: executing program 0 (id=1302):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000380)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x0, 0x41, &(0x7f0000000980)='$', 0x4b9ab3bf308af5f7, 0x0, 0xfffffffe, 0xffffffff, 0x5, 0x71a8, 0x0})

2.936925346s ago: executing program 3 (id=1303):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000540)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f00000001c0)=0x7f, 0x4)
close(r1)

2.911152006s ago: executing program 1 (id=1304):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, 0x0, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=@newqdisc={0x50, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x7}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_pie={{0x8}, {0x24, 0x2, [@TCA_PIE_LIMIT={0x8, 0x2, 0x2}, @TCA_PIE_TUPDATE={0x8, 0x3, 0x8}, @TCA_PIE_BYTEMODE={0x8, 0x7, 0x1}, @TCA_PIE_BYTEMODE={0x8, 0x7, 0x1}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x55}, 0x4000)

2.907891057s ago: executing program 0 (id=1305):
r0 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_script(r0, &(0x7f0000000000)={'#! ', './file0'}, 0xb)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
r4 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x80, 0x0, 0x8000021e}, &(0x7f00000001c0)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r4, 0x47fa, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r2, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x1})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r7}, 0x10)
r8 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r8, &(0x7f0000000000)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300030000000903000038000000fcffffff0e000000000020000100050000010000000000000300000008000000f30000007f00000004"], 0x58)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{0xffffffffffffffff, <r9=>0xffffffffffffffff}, &(0x7f0000000140), &(0x7f0000000180)=r1}, 0x20)
r10 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000480)={0x0, r0}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@bloom_filter={0x1e, 0x6, 0x10001, 0xdc3b, 0xea0be24bd7bbae7, r9, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x3, 0x5, @value, @void, @value=r10}, 0x50)

2.687943046s ago: executing program 4 (id=1306):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000240)=0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x0, 0x1002, 0x0, 0x0, 0x40f00, 0x0, '\x00', r0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
creat(&(0x7f0000000300)='./file0\x00', 0x20)

2.603004216s ago: executing program 2 (id=1307):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x38, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0xfe8e, 0x12)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r5, 0x0, 0x100000000}, 0x18)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000100)={0x0, 0x2800, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r6, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a54000000060a0b040000000000000000020000400900020073797a32000000000900010073797a30520000002800048024000180090001006d657461000000001400028008000240000000130800034000000017140000001100010000000000001300000000000a"], 0x7c}}, 0x0)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000100000c02000000000000000000000d0000000000005f"], 0x0, 0x34}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000f80)=ANY=[@ANYBLOB="050000000000000073113500000000591029197fa138008500000002090000000000000000000095000000000000009500a5050000020023256522c69c2f2bd9c47e3b0a864f4f5e5942be8b2d23cdcb8acd2b7da37bf605ea32dee6287a72c9f2f00ca6a03e4c664382716f3aba07b893ca91d490a3d451847be879466b73d6a51349678145045fe8218a72be935fe5b7d38a5bc6d9c831"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="db2928e8e6af0af160bb69a4d062ad8d828cb500000000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r7, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x8}, 0x94)
r8 = socket$qrtr(0x2a, 0x2, 0x0)
r9 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r9, &(0x7f00000000c0)={&(0x7f0000000000)={0x24, @short={0x2, 0xffff, 0xffff}}, 0x14, &(0x7f0000000080)={0x0}}, 0x0)
setsockopt$WPAN_WANTLQI(r9, 0x0, 0x3, &(0x7f0000001780)=0x1, 0x4)
recvmmsg(r9, &(0x7f0000002b40)=[{{0x0, 0x0, 0x0}, 0x800027}], 0x1, 0x40010041, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x2, &(0x7f00000001c0)=[{0x5c, 0xfc, 0x7f}, {0x6}]})
connect$qrtr(r8, &(0x7f0000000e00)={0x2a, 0x0, 0xfffffffe}, 0xc)

2.551815815s ago: executing program 3 (id=1308):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f0000000080)={[{@discard}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$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")
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x9000)
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000001c0)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000001000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001", @ANYRES32=r2, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
bind$bt_hci(r4, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r4, &(0x7f0000000140)="24000000010006", 0x7)
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r7 = syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/net\x00')
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000480)={@cgroup=<r8=>r7, 0x11, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000640)={@cgroup=r8, 0x24, 0x0, 0xffff, &(0x7f0000000000)=[0x0, 0x0, 0x0], 0x3, 0x0, 0x0, 0x0, 0x0}, 0x40)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0xffffffffffffff00, 0x9, 0x0, 0x2, 0x40000017, 0x5, "90214ac0efa64418c7aa4a41c28a760980c6f75fd7b78b4a086eef53d9b4af3edbb51a05dd714e44a1429d21fb92bdedde706b7ac59311d1c1a462b3a0a702d5", "eafd7c2b5efd77db35b426c2d0dd254d485cb67ce83a69bce74c87e81de30371f317ec01b4dc6a39b9f673dda071ec5287d868f15b10ebb671a576e32aa20731", "51986e714fbab99e92024a0b497a05000000000000c4d0372b39ab150304831a", [0x1]})
r9 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
pwritev2(r9, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)

2.197750277s ago: executing program 4 (id=1309):
r0 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
pwrite64(r0, &(0x7f0000000ac0)="e62eb166972ce298f4681ef5c755f60473b17b7887d68440dd9005bc69f6c3c5238bebfbce42365029d64c565a5fc2251eda45a465e64d", 0x37, 0x1a)

1.925996209s ago: executing program 1 (id=1310):
socket$inet6(0xa, 0x1, 0x0)
openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000200)='./file1\x00', 0x4010, &(0x7f0000000d80)=ANY=[@ANYBLOB="00e789da34e04a1ffbc2f05cefeb4ee6d5ae1071124b2c2fb684f5c7ac05000000c7880f67e775c748f6381a3e01e7f93330b30b90bbb4d2b697899a16f2df4fa2a8f06ac2c5352ddcae2b83672ef3d9f532e55f4e798924ac6332751e737383f6890d2dcfcbdbd41940a64c7b4374674e7bb6dd0d1b8d3d62f6d77b0282e166e2ce4c353d2d4d315a81146bf46a1508ef0d2ddc7d0b447fe17b85b292d13cea2256a16cab12d75a852bc680da7ea837480feb2e1e0000000000003bc18c52d0351cd285197b0641569048b5b416ba1c570000000000100083794afff0a9eed63b1226b18c4b455ab222d7ae1be52a22e8ec8bf2c0c7d99770415863f50aa18bcb66061a29bc55105f3482ed752f882d224a386b51836c1b437036b677156e22e174ff516dbab0b2cdf52bee43c4ffffffffffffffffd9487b8663a339b98df63b4bf3e97f02d6f1e7e65f968dd90841506355d9ac40f1b434c8a9b5bd91a70c53a5aadbebd9ed9d0a55bd47a967163e0c02753f8895bfbf1b41b5490667c241068d59983ae1d0f03e650f5357425284b76d793e25a2558fa437e38b8200000000630000000000000000000000000000000000000000000000e911000000000066e073c14bb74617079e0b6ecfc830db14244567fd8f4e4e5903eaf983786e28295783f130b95dc37f59a658000e88047db7783ce8a9cba6c255902cfb83946ea3f5f7a8cee911b2b37ae4b01e65ea86d5ea7ae17b2a9bc250c9b8fc9fbc04617939bdd13457954172d18701768f8a461bee740f2d82ae566d2e30a93ad2b201a6d16a93c75a950cc437e7f25d3aadddb8edd028d84490b6bafd636aa4fb482a8a4b3987dafe58e742448c4b36b03790090198145dee533257bb9050554f8cace210a5bc5c768f83e99019f7c00ff9ca679768dbba3f7d21c545c99c2f7688f7030fe37121d625d1f81018feb74c9d48eebdf1702550b097271ab9bd38c62f4b31fd9482c05ba064dfa60bd7fafb3c22dc057e6f9e2a5eb144290afe5369110a71d4b7fc5937a32e213c443f3b9e506b25cf9e2520999b330fc9e86bde8c8ec78f67c0c7f24db0000000", @ANYRES8], 0x1, 0x11ee, &(0x7f0000002480)="$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")
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)

1.626720875s ago: executing program 4 (id=1311):
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000400)="08001efbb07d5a6e", 0x8}], 0x1}, 0x48d0)

1.415669946s ago: executing program 4 (id=1312):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0xc8cf, 0x0, 0x0}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x2d)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x18)
fchmodat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x20)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000025000a5c000000080a220300000000000000000a0000010c00064000000000000000020900020073797a31000000000800094000000002140005800800014000000021080001400000000814000580080002400000000108000100000000173c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000003600000000c0a01020000000000000000010000000900020073797a32000000003400038030000080080006400000000024000b8020000180070001006374000014000280080001400000000008000240000000000900010073797a3000000000140000001000010000000000000000000000000a"], 0x120}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYRES64=r2], 0x94}, 0x1, 0x0, 0x0, 0x4048005}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)

1.322582044s ago: executing program 0 (id=1313):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r0, &(0x7f00000000c0)="3f031c00dce0140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b788061", 0x24, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

1.159924268s ago: executing program 2 (id=1314):
socket$packet(0x11, 0x3, 0x300)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})

823.717128ms ago: executing program 4 (id=1315):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000000c0)={0xfffc, 0x0, 0x14, 0xfffe}, 0x8)
sendto$inet6(r0, &(0x7f00000004c0)='W', 0x1, 0x4, &(0x7f0000000100)={0xa, 0x0, 0x3, @loopback, 0x8}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, 0x0, 0x0)

693.541707ms ago: executing program 0 (id=1316):
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xc, {"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", 0x3b3cc1e9e7df1ab7}}, 0x9b)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
getdents(r3, &(0x7f0000001fc0)=""/184, 0xb8)

693.238066ms ago: executing program 3 (id=1317):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000380)=ANY=[], 0xffe)

644.863024ms ago: executing program 2 (id=1318):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000e00)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x1001}, 0x18)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})

472.748764ms ago: executing program 1 (id=1319):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYRES64=0x0, @ANYRES16=r0, @ANYRES8=r2, @ANYRESOCT], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r4, 0x0, 0x2}, 0x18)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r6)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=@newtfilter={0x44, 0x28, 0xd27, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, r7}, [@filter_kind_options=@f_flow={{0x9}, {0xc, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0xdd96}]}}, @TCA_RATE={0x6, 0x5, {0xb8, 0x1}}]}, 0x44}}, 0x0)

199.776217ms ago: executing program 2 (id=1320):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x2, &(0x7f0000000100), 0x1, 0x57e, &(0x7f00000005c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

22.624975ms ago: executing program 3 (id=1321):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x6, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x7}, 0x50)
r1 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21045e, &(0x7f0000001400), 0x1, 0x4fa, &(0x7f00000005c0)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x174)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000140))
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r3}, 0x10)
ioctl$EXT4_IOC_MIGRATE(r2, 0x6609)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000d00)=ANY=[@ANYRESHEX=r3, @ANYBLOB="7411f973f9264e46022b8caf5456b923744388d1f6ec3ee8fcc7b2324fde298055a5d25dad0db74ccf97726927919916dfed448ce552870bee68fe387fed99d56d53da760384070481b2a74d5c7a3f4f7553e7f1b7cfc3bef5493465ccebe2d93ff81f37d12773cac7c066e6b47ce9166a29ccfcadc36ab7b492e909ff32781cc39ffa469dd19e72e5bfc7de9858927900cfb2af47", @ANYRES16=0x0, @ANYRESDEC=r4, @ANYRES64=r3, @ANYRESHEX=r1, @ANYRESHEX=r3], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5, 0x0, 0xffffffffffffffff}, 0x18)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000281eb9e018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback=0x14, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r8, 0x0, 0x2}, 0x18)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r9], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r9}, &(0x7f0000000000), &(0x7f00000005c0)=r10}, 0x20)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r11}, 0x10)
r12 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r12, 0x0, 0x3800, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
ioctl$KDSKBENT(r6, 0x4b47, &(0x7f0000000400)={0x0, 0x7f, 0x700})
bpf$MAP_CREATE(0x0, &(0x7f0000000cc0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x7, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r13}, 0x10)
request_key(&(0x7f0000000340)='keyring\x00', &(0x7f0000000380)={'syz', 0x3}, 0x0, 0x0)

0s ago: executing program 0 (id=1322):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8000009, 0x5, 0x1}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
unshare(0x6020400)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x0, &(0x7f0000000040)})
flistxattr(r0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

yz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  368.923732][ T7772] loop0: detected capacity change from 0 to 2048
[  368.944620][   T30] audit: type=1326 audit(1751578940.213:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7774 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  368.974071][   T30] audit: type=1326 audit(1751578940.213:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7774 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  368.996900][   T30] audit: type=1326 audit(1751578940.213:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7774 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  369.000616][ T7775] loop2: detected capacity change from 0 to 512
[  369.019921][   T30] audit: type=1326 audit(1751578940.233:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7774 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  369.048751][   T30] audit: type=1326 audit(1751578940.233:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7774 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  369.084308][ T7772] EXT4-fs: Ignoring removed bh option
[  369.174994][ T7775] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  369.187937][ T7778] loop1: detected capacity change from 0 to 764
[  369.188189][ T7775] ext4 filesystem being mounted at /126/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  369.255404][ T7772] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  369.370815][ T7786] loop3: detected capacity change from 0 to 1024
[  369.435912][ T7786] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  369.451439][ T7786] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  369.667115][ T7772] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  369.702413][ T7772] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 475 with error 28
[  369.715619][ T7772] EXT4-fs (loop0): This should not happen!! Data will be lost
[  369.715619][ T7772] 
[  369.725758][ T7772] EXT4-fs (loop0): Total free blocks count 0
[  369.732157][ T7772] EXT4-fs (loop0): Free/Dirty block details
[  369.738276][ T7772] EXT4-fs (loop0): free_blocks=2415919104
[  369.744460][ T7772] EXT4-fs (loop0): dirty_blocks=496
[  369.749875][ T7772] EXT4-fs (loop0): Block reservation details
[  369.755903][ T7787] bridge0: port 2(bridge_slave_1) entered disabled state
[  369.758294][ T7787] bridge0: port 1(bridge_slave_0) entered disabled state
[  369.763864][ T7772] EXT4-fs (loop0): i_reserved_data_blocks=31
[  369.833739][ T7787] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[  369.889467][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  370.074036][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.159569][ T7795] loop1: detected capacity change from 0 to 512
[  370.196104][ T4606] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  370.270768][ T7795] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.284059][ T7795] ext4 filesystem being mounted at /121/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  370.714310][ T7807] netlink: 4 bytes leftover after parsing attributes in process `syz.3.604'.
[  370.717478][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.774995][ T7809] loop0: detected capacity change from 0 to 512
[  370.828220][ T7809] ext4: Unknown parameter 'seclabel'
[  370.846255][ T7810] netlink: 4 bytes leftover after parsing attributes in process `syz.3.604'.
[  371.015162][ T7809] loop0: detected capacity change from 0 to 1024
[  371.078308][ T7809] EXT4-fs: Ignoring removed orlov option
[  371.433505][ T7809] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  371.629978][ T7818] loop1: detected capacity change from 0 to 764
[  371.768263][ T7821] loop2: detected capacity change from 0 to 1024
[  371.847393][ T7821] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  371.860762][ T7821] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  372.277458][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  372.296280][ T7830] loop4: detected capacity change from 0 to 2048
[  372.319288][ T7830] EXT4-fs: Ignoring removed bh option
[  372.373802][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.443067][ T7830] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  372.669128][   T30] kauditd_printk_skb: 69 callbacks suppressed
[  372.669202][   T30] audit: type=1800 audit(1751578944.063:346): pid=7830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.612" name="file1" dev="loop4" ino=15 res=0 errno=0
[  372.736391][ T7844] loop0: detected capacity change from 0 to 512
[  372.871749][ T7830] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  372.888702][ T7830] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 640 with error 28
[  372.901959][ T7830] EXT4-fs (loop4): This should not happen!! Data will be lost
[  372.901959][ T7830] 
[  372.912104][ T7830] EXT4-fs (loop4): Total free blocks count 0
[  372.918319][ T7830] EXT4-fs (loop4): Free/Dirty block details
[  372.930864][ T7830] EXT4-fs (loop4): free_blocks=2415919104
[  372.936884][ T7830] EXT4-fs (loop4): dirty_blocks=656
[  372.942474][ T7830] EXT4-fs (loop4): Block reservation details
[  372.948737][ T7830] EXT4-fs (loop4): i_reserved_data_blocks=41
[  373.079733][ T7844] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  373.093096][ T7844] ext4 filesystem being mounted at /111/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  373.145410][ T3702] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  373.177748][ T7848] netlink: 4 bytes leftover after parsing attributes in process `syz.2.618'.
[  373.242367][ T7851] netlink: 4 bytes leftover after parsing attributes in process `syz.2.618'.
[  373.673849][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.096239][ T7863] loop3: detected capacity change from 0 to 1024
[  374.221903][ T7863] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  374.234855][ T7863] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  374.336690][ T7866] loop1: detected capacity change from 0 to 1024
[  374.346571][ T7866] EXT4-fs: Ignoring removed orlov option
[  374.447104][ T7866] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  374.705675][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  375.325391][ T7884] loop0: detected capacity change from 0 to 2048
[  375.345986][ T7884] EXT4-fs: Ignoring removed bh option
[  375.405348][ T7884] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  375.576408][   T30] audit: type=1800 audit(1751578946.953:347): pid=7884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.629" name="file1" dev="loop0" ino=15 res=0 errno=0
[  375.623696][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.741908][ T7894] netlink: 4 bytes leftover after parsing attributes in process `syz.2.632'.
[  375.768173][ T7893] loop3: detected capacity change from 0 to 512
[  375.823627][ T7895] netlink: 4 bytes leftover after parsing attributes in process `syz.2.632'.
[  375.860206][ T7884] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  375.882539][ T7884] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 640 with error 28
[  375.895707][ T7884] EXT4-fs (loop0): This should not happen!! Data will be lost
[  375.895707][ T7884] 
[  375.905813][ T7884] EXT4-fs (loop0): Total free blocks count 0
[  375.912215][ T7884] EXT4-fs (loop0): Free/Dirty block details
[  375.918352][ T7884] EXT4-fs (loop0): free_blocks=2415919104
[  375.924523][ T7884] EXT4-fs (loop0): dirty_blocks=656
[  375.929977][ T7884] EXT4-fs (loop0): Block reservation details
[  375.936429][ T7884] EXT4-fs (loop0): i_reserved_data_blocks=41
[  376.018735][ T7893] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  376.032117][ T7893] ext4 filesystem being mounted at /123/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  376.291658][ T3768] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  376.702217][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.824530][ T7907] netlink: 224 bytes leftover after parsing attributes in process `syz.2.637'.
[  376.834722][ T7907] ksmbd: Unknown IPC event: 4, ignore.
[  377.626384][ T7923] loop0: detected capacity change from 0 to 164
[  377.650003][ T7923] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  377.719790][ T7923] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  377.747252][ T7923] Symlink component flag not implemented
[  377.753543][ T7923] Symlink component flag not implemented
[  377.768453][ T7923] Symlink component flag not implemented (7)
[  377.774877][ T7923] Symlink component flag not implemented (116)
[  378.620786][ T7936] netlink: 4 bytes leftover after parsing attributes in process `syz.2.647'.
[  378.692730][ T7943] netlink: 4 bytes leftover after parsing attributes in process `syz.2.647'.
[  378.727934][ T7941] loop0: detected capacity change from 0 to 512
[  378.845050][ T7941] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  378.859223][ T7941] ext4 filesystem being mounted at /117/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  379.183994][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.188875][ T7965] loop4: detected capacity change from 0 to 164
[  380.205118][ T7965] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  380.327153][ T7966] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  380.353570][ T7966] Symlink component flag not implemented
[  380.359574][ T7966] Symlink component flag not implemented
[  380.366083][ T7966] Symlink component flag not implemented (7)
[  380.372666][ T7966] Symlink component flag not implemented (116)
[  381.146712][ T7981] x_tables: ip6_tables: mh match: only valid for protocol 135
[  381.644334][ T7985] netlink: 4 bytes leftover after parsing attributes in process `syz.2.663'.
[  381.736110][ T7984] loop4: detected capacity change from 0 to 512
[  381.788464][ T7985] netlink: 4 bytes leftover after parsing attributes in process `syz.2.663'.
[  381.909341][ T7984] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  381.925385][ T7984] ext4 filesystem being mounted at /139/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  382.584764][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.016769][ T8011] loop4: detected capacity change from 0 to 164
[  383.073726][ T8011] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  383.168324][ T8011] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  383.212693][ T8011] Symlink component flag not implemented
[  383.218738][ T8011] Symlink component flag not implemented
[  383.225202][ T8011] Symlink component flag not implemented (7)
[  383.231954][ T8011] Symlink component flag not implemented (116)
[  384.472348][ T8019] x_tables: ip6_tables: mh match: only valid for protocol 135
[  384.815742][ T8028] netlink: 4 bytes leftover after parsing attributes in process `syz.2.678'.
[  384.939742][ T8028] netlink: 4 bytes leftover after parsing attributes in process `syz.2.678'.
[  385.652321][ T8037] loop2: detected capacity change from 0 to 512
[  385.831247][ T8037] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  385.844524][ T8037] ext4 filesystem being mounted at /149/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  386.130739][ T8045] loop4: detected capacity change from 0 to 1024
[  386.224340][ T8045] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  386.237225][ T8045] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  386.293418][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.394086][ T8051] loop1: detected capacity change from 0 to 164
[  386.452336][ T8051] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  386.505114][ T8051] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  386.531687][ T8051] Symlink component flag not implemented
[  386.537674][ T8051] Symlink component flag not implemented
[  386.543890][ T8051] Symlink component flag not implemented (7)
[  386.550081][ T8051] Symlink component flag not implemented (116)
[  386.661164][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  387.454757][ T8064] netlink: 4 bytes leftover after parsing attributes in process `syz.4.690'.
[  387.564208][ T8064] netlink: 4 bytes leftover after parsing attributes in process `syz.4.690'.
[  387.796040][ T8072] x_tables: ip6_tables: mh match: only valid for protocol 135
[  388.676521][ T8078] loop4: detected capacity change from 0 to 512
[  388.771685][ T8078] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  388.784978][ T8078] ext4 filesystem being mounted at /148/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  389.563097][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.840918][ T8097] loop2: detected capacity change from 0 to 2048
[  389.872753][ T8097] EXT4-fs: Ignoring removed bh option
[  389.971643][ T8097] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  390.090910][   T30] audit: type=1326 audit(1751578961.473:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.1.703" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x0
[  390.113232][   T30] audit: type=1800 audit(1751578961.483:349): pid=8097 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.701" name="file1" dev="loop2" ino=15 res=0 errno=0
[  390.330176][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.058340][ T8115] x_tables: ip6_tables: mh match: only valid for protocol 135
[  392.088848][ T8128] loop4: detected capacity change from 0 to 512
[  392.230786][ T8128] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  392.244647][ T8128] ext4 filesystem being mounted at /152/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  392.646062][ T8138] loop2: detected capacity change from 0 to 2048
[  392.764689][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.775421][ T8140] loop0: detected capacity change from 0 to 2048
[  392.800957][ T8140] EXT4-fs: Ignoring removed bh option
[  393.009461][ T8138] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.085061][ T8140] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.100004][   T30] audit: type=1326 audit(1751578964.503:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.4.718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  393.169658][   T30] audit: type=1326 audit(1751578964.563:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.4.718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  393.192801][   T30] audit: type=1326 audit(1751578964.563:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.4.718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  393.215991][   T30] audit: type=1326 audit(1751578964.563:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.4.718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  393.238724][   T30] audit: type=1326 audit(1751578964.563:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.4.718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  393.261598][   T30] audit: type=1326 audit(1751578964.593:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.4.718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  393.284214][   T30] audit: type=1326 audit(1751578964.593:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.4.718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  393.306896][   T30] audit: type=1326 audit(1751578964.593:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.4.718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  393.444346][ T8154] netlink: 52 bytes leftover after parsing attributes in process `'.
[  393.673253][ T8153] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  393.747372][ T8153] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 253 with error 28
[  393.760701][ T8153] EXT4-fs (loop0): This should not happen!! Data will be lost
[  393.760701][ T8153] 
[  393.770725][ T8153] EXT4-fs (loop0): Total free blocks count 0
[  393.776939][ T8153] EXT4-fs (loop0): Free/Dirty block details
[  393.783209][ T8153] EXT4-fs (loop0): free_blocks=2415919104
[  393.789166][ T8153] EXT4-fs (loop0): dirty_blocks=272
[  393.794797][ T8153] EXT4-fs (loop0): Block reservation details
[  393.801151][ T8153] EXT4-fs (loop0): i_reserved_data_blocks=17
[  394.148957][ T1090] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  394.494105][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  395.587696][ T8170] x_tables: ip6_tables: mh match: only valid for protocol 135
[  396.411239][ T8180] loop0: detected capacity change from 0 to 512
[  396.470965][ T8180] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  396.486991][ T8180] ext4 filesystem being mounted at /128/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  396.912239][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.561398][ T8191] syzkaller0: entered promiscuous mode
[  397.567147][ T8191] syzkaller0: entered allmulticast mode
[  398.843108][ T8208] blktrace: Concurrent blktraces are not allowed on loop4
[  399.297806][ T8213] x_tables: ip6_tables: mh match: only valid for protocol 135
[  399.989475][ T8220] loop0: detected capacity change from 0 to 512
[  400.094533][ T8220] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  400.107964][ T8220] ext4 filesystem being mounted at /132/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  400.917490][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.020631][ T8228] loop2: detected capacity change from 0 to 2048
[  401.063062][ T8228] EXT4-fs: Ignoring removed bh option
[  401.176868][ T8228] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  401.468982][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  401.469056][   T30] audit: type=1800 audit(1751578972.863:365): pid=8228 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.743" name="file1" dev="loop2" ino=15 res=0 errno=0
[  401.643903][ T8228] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  401.660061][ T8228] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 640 with error 28
[  401.673009][ T8228] EXT4-fs (loop2): This should not happen!! Data will be lost
[  401.673009][ T8228] 
[  401.683592][ T8228] EXT4-fs (loop2): Total free blocks count 0
[  401.689811][ T8228] EXT4-fs (loop2): Free/Dirty block details
[  401.696065][ T8228] EXT4-fs (loop2): free_blocks=2415919104
[  401.702144][ T8228] EXT4-fs (loop2): dirty_blocks=656
[  401.707569][ T8228] EXT4-fs (loop2): Block reservation details
[  401.714277][ T8228] EXT4-fs (loop2): i_reserved_data_blocks=41
[  401.886346][ T1090] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  402.478998][ T8254] Invalid ELF header magic: != ELF
[  402.658530][ T8259] loop0: detected capacity change from 0 to 164
[  402.662110][ T8260] x_tables: ip6_tables: mh match: only valid for protocol 135
[  402.674647][ T8259] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  402.694482][ T8258] loop1: detected capacity change from 0 to 512
[  402.706163][ T8259] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  402.757946][ T8259] Symlink component flag not implemented
[  402.764031][ T8259] Symlink component flag not implemented
[  402.770221][ T8259] Symlink component flag not implemented (7)
[  402.777087][ T8259] Symlink component flag not implemented (116)
[  402.934311][ T8258] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  402.948014][ T8258] ext4 filesystem being mounted at /152/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  403.396220][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.530743][ T8271] syz.4.760 uses obsolete (PF_INET,SOCK_PACKET)
[  403.703639][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  403.710398][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  403.830758][ T8273] loop1: detected capacity change from 0 to 2048
[  403.849541][ T8273] EXT4-fs: Ignoring removed bh option
[  403.907078][ T8273] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  404.113607][   T30] audit: type=1800 audit(1751578975.513:366): pid=8273 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.761" name="file1" dev="loop1" ino=15 res=0 errno=0
[  404.544582][ T8273] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  404.610939][ T8273] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 533 with error 28
[  404.624116][ T8273] EXT4-fs (loop1): This should not happen!! Data will be lost
[  404.624116][ T8273] 
[  404.634203][ T8273] EXT4-fs (loop1): Total free blocks count 0
[  404.640595][ T8273] EXT4-fs (loop1): Free/Dirty block details
[  404.646899][ T8273] EXT4-fs (loop1): free_blocks=2415919104
[  404.653363][ T8273] EXT4-fs (loop1): dirty_blocks=560
[  404.658799][ T8273] EXT4-fs (loop1): Block reservation details
[  404.665165][ T8273] EXT4-fs (loop1): i_reserved_data_blocks=35
[  404.830566][ T1090] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  404.888508][ T8288] loop3: detected capacity change from 0 to 2048
[  404.977889][ T8288] Alternate GPT is invalid, using primary GPT.
[  404.985333][ T8288]  loop3: p1 p2 p3
[  405.445088][ T8290] x_tables: ip6_tables: mh match: only valid for protocol 135
[  405.553341][ T8294] loop1: detected capacity change from 0 to 164
[  405.609386][ T8294] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  405.639564][ T8295] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0
[  405.705480][ T8294] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  405.730121][ T8294] Symlink component flag not implemented
[  405.736784][ T8294] Symlink component flag not implemented
[  405.743044][ T8294] Symlink component flag not implemented (7)
[  405.749239][ T8294] Symlink component flag not implemented (116)
[  406.261893][ T8299] loop1: detected capacity change from 0 to 512
[  406.352432][ T8299] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  406.366251][ T8299] ext4 filesystem being mounted at /155/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  406.835741][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.220917][   T30] audit: type=1326 audit(1751578978.613:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  407.279683][ T8318] loop4: detected capacity change from 0 to 2048
[  407.320705][   T30] audit: type=1326 audit(1751578978.673:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  407.332734][ T8322] loop2: detected capacity change from 0 to 164
[  407.344015][   T30] audit: type=1326 audit(1751578978.703:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  407.373409][   T30] audit: type=1326 audit(1751578978.703:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  407.395402][ T8318] Alternate GPT is invalid, using primary GPT.
[  407.395972][   T30] audit: type=1326 audit(1751578978.713:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  407.402932][ T8318]  loop4: p1 p2 p3
[  407.424626][   T30] audit: type=1326 audit(1751578978.713:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  407.451266][   T30] audit: type=1326 audit(1751578978.713:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  407.474484][   T30] audit: type=1326 audit(1751578978.713:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  407.497217][   T30] audit: type=1326 audit(1751578978.713:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  407.506415][ T8322] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  407.519974][   T30] audit: type=1326 audit(1751578978.713:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  407.556258][ T8322] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  407.657613][ T8322] Symlink component flag not implemented
[  407.663828][ T8322] Symlink component flag not implemented
[  407.669897][ T8322] Symlink component flag not implemented (7)
[  407.676185][ T8322] Symlink component flag not implemented (116)
[  407.969017][ T8326] x_tables: ip6_tables: mh match: only valid for protocol 135
[  408.341187][ T8331] loop2: detected capacity change from 0 to 512
[  408.409098][ T8331] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  408.422345][ T8331] ext4 filesystem being mounted at /170/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  408.874075][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.082160][ T8342] loop1: detected capacity change from 0 to 512
[  409.159893][ T8342] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.173365][ T8342] ext4 filesystem being mounted at /159/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  409.572082][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.906045][ T8358] xt_hashlimit: max too large, truncated to 1048576
[  409.927576][ T8356] loop3: detected capacity change from 0 to 512
[  410.057073][ T8356] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  410.070268][ T8356] ext4 filesystem being mounted at /152/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  410.299137][ T8363] loop2: detected capacity change from 0 to 2048
[  410.369822][ T8356] bridge0: port 2(bridge_slave_1) entered disabled state
[  410.379683][ T8356] bridge0: port 1(bridge_slave_0) entered disabled state
[  410.405808][ T8356] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[  410.479365][ T8363] Alternate GPT is invalid, using primary GPT.
[  410.486706][ T8363]  loop2: p1 p2 p3
[  410.751641][ T8370] netlink: 16 bytes leftover after parsing attributes in process `syz.1.796'.
[  410.778382][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.308746][ T8372] x_tables: ip6_tables: mh match: only valid for protocol 135
[  411.324045][ T8377] loop1: detected capacity change from 0 to 512
[  411.554088][ T8377] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  411.567364][ T8377] ext4 filesystem being mounted at /163/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  411.827902][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.055120][ T8386] loop4: detected capacity change from 0 to 512
[  412.190596][ T8386] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  412.203870][ T8386] ext4 filesystem being mounted at /169/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  412.384373][ T8396] loop1: detected capacity change from 0 to 2048
[  412.457207][ T8396] Alternate GPT is invalid, using primary GPT.
[  412.465945][ T8396]  loop1: p1 p2 p3
[  412.641024][   T30] kauditd_printk_skb: 66 callbacks suppressed
[  412.641100][   T30] audit: type=1326 audit(1751578984.013:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8402 comm="syz.3.809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dc618e929 code=0x7ffc0000
[  412.670456][   T30] audit: type=1326 audit(1751578984.033:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8402 comm="syz.3.809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dc618e929 code=0x7ffc0000
[  412.693175][   T30] audit: type=1326 audit(1751578984.033:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8402 comm="syz.3.809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f5dc618e929 code=0x7ffc0000
[  412.720948][   T30] audit: type=1326 audit(1751578984.033:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8402 comm="syz.3.809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dc618e929 code=0x7ffc0000
[  412.744911][   T30] audit: type=1326 audit(1751578984.033:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8402 comm="syz.3.809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dc618e929 code=0x7ffc0000
[  412.824732][ T8399] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  412.888427][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.898313][ T8397] tipc: Resetting bearer <eth:syzkaller0>
[  413.026913][ T8397] tipc: Disabling bearer <eth:syzkaller0>
[  413.332355][ T8411] loop3: detected capacity change from 0 to 512
[  413.442494][ T8411] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  413.455965][ T8411] ext4 filesystem being mounted at /157/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  414.119306][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.215452][ T8421] x_tables: ip6_tables: mh match: only valid for protocol 135
[  414.842144][ T8428] netlink: 4 bytes leftover after parsing attributes in process `syz.0.818'.
[  415.019392][ T8428] netlink: 4 bytes leftover after parsing attributes in process `syz.0.818'.
[  415.684808][ T8433] loop3: detected capacity change from 0 to 1024
[  415.965216][ T8440] loop2: detected capacity change from 0 to 2048
[  415.998560][ T8441] loop0: detected capacity change from 0 to 512
[  416.016706][ T8433] EXT4-fs (loop3): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.052183][ T8440] Alternate GPT is invalid, using primary GPT.
[  416.059427][ T8440]  loop2: p1 p2 p3
[  416.133932][ T8441] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  416.147237][ T8441] ext4 filesystem being mounted at /143/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  416.461920][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.652086][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  416.795059][   T11] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  416.806318][   T11] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  416.814584][   T11] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  416.848420][   T11] hid-generic 0003:0004:0000.0001: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  417.020134][ T8456] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  417.109350][ T8446] tipc: Resetting bearer <eth:syzkaller0>
[  417.274521][ T8446] tipc: Disabling bearer <eth:syzkaller0>
[  417.489144][ T8461] loop2: detected capacity change from 0 to 512
[  417.581387][ T8461] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  417.594643][ T8461] ext4 filesystem being mounted at /182/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  417.930518][   T30] audit: type=1326 audit(1751578989.323:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  417.953554][   T30] audit: type=1326 audit(1751578989.323:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  417.977067][   T30] audit: type=1326 audit(1751578989.333:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  418.000631][   T30] audit: type=1326 audit(1751578989.333:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2eda38e963 code=0x7ffc0000
[  418.019019][ T8471] loop0: detected capacity change from 0 to 1024
[  418.023109][   T30] audit: type=1326 audit(1751578989.333:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f2eda38d3df code=0x7ffc0000
[  418.052012][   T30] audit: type=1326 audit(1751578989.403:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f2eda38e9b7 code=0x7ffc0000
[  418.074601][   T30] audit: type=1326 audit(1751578989.403:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2eda38d290 code=0x7ffc0000
[  418.097493][   T30] audit: type=1326 audit(1751578989.403:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2eda38e52b code=0x7ffc0000
[  418.127399][   T30] audit: type=1326 audit(1751578989.423:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f2eda38d58a code=0x7ffc0000
[  418.149991][   T30] audit: type=1326 audit(1751578989.423:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f2eda38d58a code=0x7ffc0000
[  418.154967][ T8471] loop0: detected capacity change from 0 to 512
[  418.229359][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.244258][ T8474] loop1: detected capacity change from 0 to 512
[  418.263254][ T8475] loop3: detected capacity change from 0 to 164
[  418.281557][ T8471] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  418.295648][ T8471] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  418.317285][ T8475] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  418.349502][ T8474] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  418.352322][ T8471] EXT4-fs (loop0): orphan cleanup on readonly fs
[  418.362643][ T8474] ext4 filesystem being mounted at /169/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  418.368840][ T8471] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.831: bad orphan inode 458763
[  418.483883][ T8475] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  418.493143][ T8471] EXT4-fs (loop0): Remounting filesystem read-only
[  418.502395][ T8471] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  418.517094][ T8475] Symlink component flag not implemented
[  418.523553][ T8475] Symlink component flag not implemented
[  418.529800][ T8475] Symlink component flag not implemented (7)
[  418.536166][ T8475] Symlink component flag not implemented (116)
[  418.855885][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.115542][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.181365][ T8483] loop3: detected capacity change from 0 to 2048
[  419.321323][ T8483] Alternate GPT is invalid, using primary GPT.
[  419.328505][ T8483]  loop3: p1 p2 p3
[  419.714932][ T8489] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  419.769791][ T8489] netlink: 4 bytes leftover after parsing attributes in process `syz.1.838'.
[  420.008142][ T8493] netlink: 4 bytes leftover after parsing attributes in process `syz.3.839'.
[  420.432852][ T8496] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  420.456994][ T8494] tipc: Resetting bearer <eth:syzkaller0>
[  420.605527][ T8494] tipc: Disabling bearer <eth:syzkaller0>
[  421.074130][ T8506] loop1: detected capacity change from 0 to 164
[  421.108823][ T8505] loop0: detected capacity change from 0 to 512
[  421.133220][ T8506] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  421.180913][ T8506] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  421.211257][ T8506] Symlink component flag not implemented
[  421.217347][ T8506] Symlink component flag not implemented
[  421.223563][ T8506] Symlink component flag not implemented (7)
[  421.229764][ T8506] Symlink component flag not implemented (116)
[  421.274803][ T8508] loop3: detected capacity change from 0 to 512
[  421.317244][ T8505] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  421.330679][ T8505] ext4 filesystem being mounted at /149/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  421.478457][ T8508] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  421.492316][ T8508] ext4 filesystem being mounted at /166/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  421.793827][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.009423][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.068598][ T8518] loop0: detected capacity change from 0 to 512
[  422.104529][ T8518] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  422.113064][ T8518] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002]
[  422.141098][ T8518] EXT4-fs (loop0): orphan cleanup on readonly fs
[  422.151924][ T8518] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #13: comm syz.0.848: iget: bad i_size value: 12154761577498
[  422.224412][ T8518] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.848: couldn't read orphan inode 13 (err -117)
[  422.274537][ T8518] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  422.414029][ T8518] EXT4-fs warning (device loop0): dx_probe:861: inode #2: comm syz.0.848: dx entry: limit 65535 != root limit 120
[  422.426760][ T8518] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.848: Corrupt directory, running e2fsck is recommended
[  422.562579][ T8525] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[  422.592390][ T8521] loop3: detected capacity change from 0 to 2048
[  422.629402][ T8524] loop4: detected capacity change from 0 to 1024
[  422.658473][ T8521] Alternate GPT is invalid, using primary GPT.
[  422.667501][ T8521]  loop3: p1 p2 p3
[  422.712427][ T8524] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  422.744025][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.866673][ T8530] loop2: detected capacity change from 0 to 2048
[  422.943405][   T30] kauditd_printk_skb: 111 callbacks suppressed
[  422.943481][   T30] audit: type=1326 audit(1751578994.333:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.2.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7ff99078d13a code=0x7ffc0000
[  423.037592][   T30] audit: type=1326 audit(1751578994.383:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.2.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7ff99078d13a code=0x7ffc0000
[  423.060800][   T30] audit: type=1326 audit(1751578994.383:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.2.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7ff99078d13a code=0x7ffc0000
[  423.085961][   T30] audit: type=1326 audit(1751578994.383:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.2.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff99078d58a code=0x7ffc0000
[  423.111374][   T30] audit: type=1326 audit(1751578994.383:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.2.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  423.135289][   T30] audit: type=1326 audit(1751578994.403:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.2.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  423.158045][   T30] audit: type=1326 audit(1751578994.403:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.2.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  423.181925][   T30] audit: type=1326 audit(1751578994.403:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.2.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  423.204681][   T30] audit: type=1326 audit(1751578994.403:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.2.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  423.227377][   T30] audit: type=1326 audit(1751578994.413:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.2.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  423.286329][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.713185][ T8542] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  423.801680][ T8536] tipc: Resetting bearer <eth:syzkaller0>
[  423.916399][ T8544] loop2: detected capacity change from 0 to 512
[  423.962638][ T8536] tipc: Disabling bearer <eth:syzkaller0>
[  424.022923][ T8544] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  424.036209][ T8544] ext4 filesystem being mounted at /185/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  424.096554][ T8539] loop0: detected capacity change from 0 to 8192
[  424.122613][ T8549] loop1: detected capacity change from 0 to 512
[  424.183851][ T8549] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  424.197339][ T8549] ext4 filesystem being mounted at /177/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  424.496723][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  424.875097][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.148887][ T8566] binfmt_misc: register: failed to install interpreter file ./file2
[  425.695518][ T8576] netlink: 20 bytes leftover after parsing attributes in process `syz.1.868'.
[  425.705786][ T8576] netlink: 8 bytes leftover after parsing attributes in process `syz.1.868'.
[  426.331238][ T8585] netlink: 12 bytes leftover after parsing attributes in process `syz.1.873'.
[  426.356788][ T8585] netlink: 'syz.1.873': attribute type 4 has an invalid length.
[  426.387143][ T8588] loop4: detected capacity change from 0 to 512
[  426.495854][ T8588] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  426.509207][ T8588] ext4 filesystem being mounted at /176/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  426.922942][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  428.973332][ T8624] loop3: detected capacity change from 0 to 512
[  429.291896][ T8624] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  429.305382][ T8624] ext4 filesystem being mounted at /177/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  429.489387][ T8634] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  429.728914][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.398268][ T8658] loop3: detected capacity change from 0 to 256
[  431.717007][ T8662] loop0: detected capacity change from 0 to 1024
[  431.740230][ T8658] FAT-fs (loop3): Directory bread(block 64) failed
[  431.743978][ T8662] EXT4-fs: Ignoring removed nobh option
[  431.750805][ T8658] FAT-fs (loop3): Directory bread(block 65) failed
[  431.751076][ T8658] FAT-fs (loop3): Directory bread(block 66) failed
[  431.770934][ T8658] FAT-fs (loop3): Directory bread(block 67) failed
[  431.777839][ T8658] FAT-fs (loop3): Directory bread(block 68) failed
[  431.784823][ T8658] FAT-fs (loop3): Directory bread(block 69) failed
[  431.791890][ T8658] FAT-fs (loop3): Directory bread(block 70) failed
[  431.798669][ T8658] FAT-fs (loop3): Directory bread(block 71) failed
[  431.805773][ T8658] FAT-fs (loop3): Directory bread(block 72) failed
[  431.812813][ T8658] FAT-fs (loop3): Directory bread(block 73) failed
[  431.923699][ T8662] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  431.942030][ T8658] process 'syz.3.897' launched './file0' with NULL argv: empty string added
[  431.952329][ T8658] syz.3.897: attempt to access beyond end of device
[  431.952329][ T8658] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  431.966594][ T8658] syz.3.897: attempt to access beyond end of device
[  431.966594][ T8658] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256
[  432.027952][ T8662] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.899: Allocating blocks 385-513 which overlap fs metadata
[  432.561596][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  432.561668][   T30] audit: type=1800 audit(1751579003.953:588): pid=8662 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.899" name="bus" dev="loop0" ino=18 res=0 errno=0
[  432.591449][ T8662] EXT4-fs (loop0): pa ffff8881251fd380: logic 16, phys. 129, len 24
[  432.599880][ T8662] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  432.685597][ T8672] loop3: detected capacity change from 0 to 512
[  432.765105][ T8672] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  432.778304][ T8672] ext4 filesystem being mounted at /181/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  433.066878][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.290872][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.593146][ T8681] netlink: 8 bytes leftover after parsing attributes in process `syz.4.907'.
[  433.683315][ T8684] loop3: detected capacity change from 0 to 1024
[  434.113315][ T8684] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  434.189335][ T8697] loop1: detected capacity change from 0 to 512
[  434.351568][ T8684] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 1 with error 28
[  434.364523][ T8684] EXT4-fs (loop3): This should not happen!! Data will be lost
[  434.364523][ T8684] 
[  434.375007][ T8684] EXT4-fs (loop3): Total free blocks count 0
[  434.381379][ T8684] EXT4-fs (loop3): Free/Dirty block details
[  434.387612][ T8684] EXT4-fs (loop3): free_blocks=0
[  434.392922][ T8684] EXT4-fs (loop3): dirty_blocks=0
[  434.398178][ T8684] EXT4-fs (loop3): Block reservation details
[  434.405487][ T8684] EXT4-fs (loop3): i_reserved_data_blocks=0
[  434.526356][ T8697] EXT4-fs (loop1): 1 orphan inode deleted
[  434.536354][ T8697] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  434.560650][ T1090] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  434.571061][ T1090] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[  434.605689][ T8697] ext4 filesystem being mounted at /185/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  434.844970][ T8697] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  434.862993][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.185784][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.297531][ T8710] loop2: detected capacity change from 0 to 512
[  435.430599][ T8715] xt_CT: You must specify a L4 protocol and not use inversions on it
[  435.807747][ T8710] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.821016][ T8710] ext4 filesystem being mounted at /191/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  436.043499][ T8718] loop4: detected capacity change from 0 to 1024
[  436.112095][ T8723] syz.0.920 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  436.188871][ T8718] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  436.202169][ T8718] ext4 filesystem being mounted at /190/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.278053][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.389689][ T8718] EXT4-fs error (device loop4): ext4_map_blocks:816: inode #15: block 3: comm syz.4.919: lblock 3 mapped to illegal pblock 3 (length 13)
[  436.444993][ T8718] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 13 with error 117
[  436.458559][ T8718] EXT4-fs (loop4): This should not happen!! Data will be lost
[  436.458559][ T8718] 
[  436.889516][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.575174][ T8741] netlink: 12 bytes leftover after parsing attributes in process `syz.3.928'.
[  438.586362][ T8759] loop4: detected capacity change from 0 to 512
[  438.692747][ T8759] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  438.706110][ T8759] ext4 filesystem being mounted at /192/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  439.180222][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.092176][ T8781] netlink: 36 bytes leftover after parsing attributes in process `syz.3.940'.
[  440.611018][ T8787] loop3: detected capacity change from 0 to 512
[  440.843752][ T8787] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.857033][ T8787] ext4 filesystem being mounted at /187/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  441.917172][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.535317][ T8816] loop3: detected capacity change from 0 to 512
[  442.549050][ T8816] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  442.628050][ T8816] EXT4-fs (loop3): 1 truncate cleaned up
[  442.636295][ T8816] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.667928][ T8822] loop4: detected capacity change from 0 to 2048
[  442.760762][ T8822] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.776369][ T8816] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.114079][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.412231][ T8838] pim6reg: entered allmulticast mode
[  443.485126][ T8838] pim6reg: left allmulticast mode
[  443.631883][ T8843] loop4: detected capacity change from 0 to 512
[  443.738901][ T8838] netlink: 'syz.3.961': attribute type 27 has an invalid length.
[  443.900960][ T8843] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.914182][ T8843] ext4 filesystem being mounted at /198/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  444.072563][ T8855] 9pnet_fd: Insufficient options for proto=fd
[  444.145867][   T30] audit: type=1326 audit(1751579015.543:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  444.255987][   T30] audit: type=1326 audit(1751579015.603:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  444.279211][   T30] audit: type=1326 audit(1751579015.603:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  444.301547][   T30] audit: type=1326 audit(1751579015.603:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  444.326131][   T30] audit: type=1326 audit(1751579015.613:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  444.348609][   T30] audit: type=1326 audit(1751579015.623:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  444.371533][   T30] audit: type=1326 audit(1751579015.633:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  444.371757][   T30] audit: type=1326 audit(1751579015.653:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  444.371987][   T30] audit: type=1326 audit(1751579015.703:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  444.372208][   T30] audit: type=1326 audit(1751579015.703:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7f3264b8e929 code=0x7ffc0000
[  444.608548][ T8838] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  444.624657][ T8838] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  444.917160][ T8838] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  444.926863][ T8838] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  444.936234][ T8838] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  444.945703][ T8838] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  445.229420][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.536862][ T8866] loop2: detected capacity change from 0 to 2048
[  445.642757][ T8866] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  446.045426][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.218941][ T8883] 9pnet_fd: Insufficient options for proto=fd
[  446.431759][ T8887] loop3: detected capacity change from 0 to 512
[  446.530249][ T8887] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  446.544136][ T8887] ext4 filesystem being mounted at /191/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  447.087512][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  447.371400][ T8911] 9pnet_fd: Insufficient options for proto=fd
[  448.019212][ T8922] syzkaller0: entered allmulticast mode
[  448.057978][ T8922] syzkaller0 (unregistering): left allmulticast mode
[  448.215676][ T8928] loop0: detected capacity change from 0 to 512
[  448.276324][ T8928] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  448.289831][ T8928] ext4 filesystem being mounted at /185/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  448.562516][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  448.675053][ T8939] 9pnet_fd: Insufficient options for proto=fd
[  448.861977][ T8943] loop0: detected capacity change from 0 to 1024
[  448.927453][ T8943] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  448.940447][ T8943] ext4 filesystem being mounted at /186/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  449.393082][ T3938] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  449.459626][ T3938] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  449.472462][ T3938] EXT4-fs (loop0): This should not happen!! Data will be lost
[  449.472462][ T3938] 
[  449.482483][ T3938] EXT4-fs (loop0): Total free blocks count 0
[  449.488687][ T3938] EXT4-fs (loop0): Free/Dirty block details
[  449.495023][ T3938] EXT4-fs (loop0): free_blocks=4293918720
[  449.501117][ T3938] EXT4-fs (loop0): dirty_blocks=16
[  449.506477][ T3938] EXT4-fs (loop0): Block reservation details
[  449.513064][ T3938] EXT4-fs (loop0): i_reserved_data_blocks=1
[  449.539418][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  449.552746][ T8961] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  449.552746][ T8961]    program syz.1.1011 not setting count and/or reply_len properly
[  449.907576][ T8965] loop0: detected capacity change from 0 to 512
[  449.992973][ T8965] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  450.006427][ T8965] ext4 filesystem being mounted at /187/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  450.046427][ T8972] 9pnet_fd: Insufficient options for proto=fd
[  450.380017][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.229498][ T9002] 9pnet_fd: Insufficient options for proto=fd
[  452.326692][ T9027] loop2: detected capacity change from 0 to 2048
[  452.432526][ T9027]  loop2: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  452.483236][ T9027] loop2: p2 size 131072 extends beyond EOD, truncated
[  452.625980][ T9027] loop2: p5 size 131072 extends beyond EOD, truncated
[  452.645074][ T9027] loop2: p6 size 131072 extends beyond EOD, truncated
[  452.675315][ T9027] loop2: p7 size 131072 extends beyond EOD, truncated
[  452.706821][ T9027] loop2: p8 size 131072 extends beyond EOD, truncated
[  452.743302][ T9027] loop2: p9 size 131072 extends beyond EOD, truncated
[  452.778404][ T9027] loop2: p10 size 131072 extends beyond EOD, truncated
[  452.793026][ T9027] loop2: p11 size 131072 extends beyond EOD, truncated
[  452.807935][ T9027] loop2: p12 size 131072 extends beyond EOD, truncated
[  452.823151][ T9027] loop2: p13 size 131072 extends beyond EOD, truncated
[  452.837263][ T9027] loop2: p14 size 131072 extends beyond EOD, truncated
[  452.856766][ T9027] loop2: p15 size 131072 extends beyond EOD, truncated
[  452.879921][ T9027] loop2: p16 size 131072 extends beyond EOD, truncated
[  452.900848][ T9038] loop3: detected capacity change from 0 to 512
[  452.908252][ T9027] loop2: p17 size 131072 extends beyond EOD, truncated
[  452.932626][ T9038] EXT4-fs: Ignoring removed bh option
[  452.939060][ T9027] loop2: p18 size 131072 extends beyond EOD, truncated
[  452.976393][ T9038] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  453.002191][ T9027] loop2: p19 size 131072 extends beyond EOD, truncated
[  453.034324][ T9027] loop2: p20 size 131072 extends beyond EOD, truncated
[  453.037168][ T9038] EXT4-fs (loop3): 1 truncate cleaned up
[  453.049631][ T9038] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  453.113195][ T9027] loop2: p21 size 131072 extends beyond EOD, truncated
[  453.134036][ T9027] loop2: p22 size 131072 extends beyond EOD, truncated
[  453.210019][ T9027] loop2: p23 size 131072 extends beyond EOD, truncated
[  453.221228][ T9045] 9pnet_fd: Insufficient options for proto=fd
[  453.236997][ T9027] loop2: p24 size 131072 extends beyond EOD, truncated
[  453.257214][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  453.260959][ T9027] loop2: p25 size 131072 extends beyond EOD, truncated
[  453.288007][ T9027] loop2: p26 size 131072 extends beyond EOD, truncated
[  453.339887][ T9027] loop2: p27 size 131072 extends beyond EOD, truncated
[  453.371591][ T9027] loop2: p28 size 131072 extends beyond EOD, truncated
[  453.401145][ T9027] loop2: p29 size 131072 extends beyond EOD, truncated
[  453.430085][ T9027] loop2: p30 size 131072 extends beyond EOD, truncated
[  453.470076][ T9027] loop2: p31 size 131072 extends beyond EOD, truncated
[  453.486328][ T9027] loop2: p32 size 131072 extends beyond EOD, truncated
[  453.496242][ T9027] loop2: p33 size 131072 extends beyond EOD, truncated
[  453.509517][ T9027] loop2: p34 size 131072 extends beyond EOD, truncated
[  453.520031][ T9027] loop2: p35 size 131072 extends beyond EOD, truncated
[  453.553378][ T9027] loop2: p36 size 131072 extends beyond EOD, truncated
[  453.604570][ T9027] loop2: p37 size 131072 extends beyond EOD, truncated
[  453.625355][ T9027] loop2: p38 size 131072 extends beyond EOD, truncated
[  453.652791][ T9027] loop2: p39 size 131072 extends beyond EOD, truncated
[  453.669188][ T9027] loop2: p40 size 131072 extends beyond EOD, truncated
[  453.685089][ T9027] loop2: p41 size 131072 extends beyond EOD, truncated
[  453.700016][ T9027] loop2: p42 size 131072 extends beyond EOD, truncated
[  453.721909][ T9027] loop2: p43 size 131072 extends beyond EOD, truncated
[  453.741238][ T9027] loop2: p44 size 131072 extends beyond EOD, truncated
[  453.783315][ T9027] loop2: p45 size 131072 extends beyond EOD, truncated
[  453.802358][ T9027] loop2: p46 size 131072 extends beyond EOD, truncated
[  453.837605][ T9027] loop2: p47 size 131072 extends beyond EOD, truncated
[  453.882615][ T9027] loop2: p48 size 131072 extends beyond EOD, truncated
[  453.913327][ T9027] loop2: p49 size 131072 extends beyond EOD, truncated
[  453.959141][ T9027] loop2: p50 size 131072 extends beyond EOD, truncated
[  454.015178][ T9027] loop2: p51 size 131072 extends beyond EOD, truncated
[  454.063864][ T9027] loop2: p52 size 131072 extends beyond EOD, truncated
[  454.116089][ T9027] loop2: p53 size 131072 extends beyond EOD, truncated
[  454.147454][ T9027] loop2: p54 size 131072 extends beyond EOD, truncated
[  454.183777][ T9027] loop2: p55 size 131072 extends beyond EOD, truncated
[  454.215533][ T9027] loop2: p56 size 131072 extends beyond EOD, truncated
[  454.269245][ T9027] loop2: p57 size 131072 extends beyond EOD, truncated
[  454.323218][ T9027] loop2: p58 size 131072 extends beyond EOD, truncated
[  454.376148][ T9027] loop2: p59 size 131072 extends beyond EOD, truncated
[  454.426620][ T9027] loop2: p60 size 131072 extends beyond EOD, truncated
[  454.474278][ T9027] loop2: p61 size 131072 extends beyond EOD, truncated
[  454.505021][ T9027] loop2: p62 size 131072 extends beyond EOD, truncated
[  454.551485][ T9027] loop2: p63 size 131072 extends beyond EOD, truncated
[  454.582617][ T9027] loop2: p64 size 131072 extends beyond EOD, truncated
[  454.611239][ T9027] loop2: p65 size 131072 extends beyond EOD, truncated
[  454.641480][ T9027] loop2: p66 size 131072 extends beyond EOD, truncated
[  454.673247][ T9027] loop2: p67 size 131072 extends beyond EOD, truncated
[  454.701168][ T9027] loop2: p68 size 131072 extends beyond EOD, truncated
[  454.734148][ T9027] loop2: p69 size 131072 extends beyond EOD, truncated
[  454.795622][ T9027] loop2: p70 size 131072 extends beyond EOD, truncated
[  454.851720][ T9027] loop2: p71 size 131072 extends beyond EOD, truncated
[  454.924798][ T9027] loop2: p72 size 131072 extends beyond EOD, truncated
[  454.957745][ T9027] loop2: p73 size 131072 extends beyond EOD, truncated
[  455.001096][ T9027] loop2: p74 size 131072 extends beyond EOD, truncated
[  455.033948][ T9027] loop2: p75 size 131072 extends beyond EOD, truncated
[  455.061701][ T9027] loop2: p76 size 131072 extends beyond EOD, truncated
[  455.079637][ T9078] loop1: detected capacity change from 0 to 128
[  455.087864][ T9027] loop2: p77 size 131072 extends beyond EOD, truncated
[  455.118937][ T9027] loop2: p78 size 131072 extends beyond EOD, truncated
[  455.164123][ T9027] loop2: p79 size 131072 extends beyond EOD, truncated
[  455.184216][ T9027] loop2: p80 size 131072 extends beyond EOD, truncated
[  455.205764][ T9027] loop2: p81 size 131072 extends beyond EOD, truncated
[  455.231223][ T9027] loop2: p82 size 131072 extends beyond EOD, truncated
[  455.257163][ T9027] loop2: p83 size 131072 extends beyond EOD, truncated
[  455.291640][ T9027] loop2: p84 size 131072 extends beyond EOD, truncated
[  455.312642][ T9027] loop2: p85 size 131072 extends beyond EOD, truncated
[  455.333472][ T9027] loop2: p86 size 131072 extends beyond EOD, truncated
[  455.350759][ T9027] loop2: p87 size 131072 extends beyond EOD, truncated
[  455.380051][ T9027] loop2: p88 size 131072 extends beyond EOD, truncated
[  455.408198][ T9027] loop2: p89 size 131072 extends beyond EOD, truncated
[  455.425852][ T9027] loop2: p90 size 131072 extends beyond EOD, truncated
[  455.443251][ T9027] loop2: p91 size 131072 extends beyond EOD, truncated
[  455.453084][ T9027] loop2: p92 size 131072 extends beyond EOD, truncated
[  455.463005][ T9027] loop2: p93 size 131072 extends beyond EOD, truncated
[  455.472695][ T9027] loop2: p94 size 131072 extends beyond EOD, truncated
[  455.482507][ T9027] loop2: p95 size 131072 extends beyond EOD, truncated
[  455.494081][ T9027] loop2: p96 size 131072 extends beyond EOD, truncated
[  455.510955][ T9027] loop2: p97 size 131072 extends beyond EOD, truncated
[  455.531648][ T9027] loop2: p98 size 131072 extends beyond EOD, truncated
[  455.580228][ T9027] loop2: p99 size 131072 extends beyond EOD, truncated
[  455.594759][ T9027] loop2: p100 size 131072 extends beyond EOD, truncated
[  455.643670][ T9027] loop2: p101 size 131072 extends beyond EOD, truncated
[  455.693762][ T9027] loop2: p102 size 131072 extends beyond EOD, truncated
[  455.734371][ T9077] loop3: detected capacity change from 0 to 8192
[  455.751703][ T9027] loop2: p103 size 131072 extends beyond EOD, truncated
[  455.799135][ T9027] loop2: p104 size 131072 extends beyond EOD, truncated
[  455.848044][ T9027] loop2: p105 size 131072 extends beyond EOD, truncated
[  455.889193][ T9027] loop2: p106 size 131072 extends beyond EOD, truncated
[  455.951817][ T9027] loop2: p107 size 131072 extends beyond EOD, truncated
[  455.986118][ T9027] loop2: p108 size 131072 extends beyond EOD, truncated
[  456.021090][ T9027] loop2: p109 size 131072 extends beyond EOD, truncated
[  456.051942][ T9027] loop2: p110 size 131072 extends beyond EOD, truncated
[  456.083318][ T9027] loop2: p111 size 131072 extends beyond EOD, truncated
[  456.141036][ T9027] loop2: p112 size 131072 extends beyond EOD, truncated
[  456.192512][ T9027] loop2: p113 size 131072 extends beyond EOD, truncated
[  456.221196][ T9027] loop2: p114 size 131072 extends beyond EOD, truncated
[  456.252135][ T9027] loop2: p115 size 131072 extends beyond EOD, truncated
[  456.276215][ T9027] loop2: p116 size 131072 extends beyond EOD, truncated
[  456.307086][ T9027] loop2: p117 size 131072 extends beyond EOD, truncated
[  456.338480][ T9027] loop2: p118 size 131072 extends beyond EOD, truncated
[  456.373272][ T9027] loop2: p119 size 131072 extends beyond EOD, truncated
[  456.405617][ T9027] loop2: p120 size 131072 extends beyond EOD, truncated
[  456.450803][ T9027] loop2: p121 size 131072 extends beyond EOD, truncated
[  456.475780][ T9027] loop2: p122 size 131072 extends beyond EOD, truncated
[  456.503919][ T9027] loop2: p123 size 131072 extends beyond EOD, truncated
[  456.539306][ T9027] loop2: p124 size 131072 extends beyond EOD, truncated
[  456.578116][ T9027] loop2: p125 size 131072 extends beyond EOD, truncated
[  456.634392][ T9027] loop2: p126 size 131072 extends beyond EOD, truncated
[  456.663173][ T9027] loop2: p127 size 131072 extends beyond EOD, truncated
[  456.682649][ T9027] loop2: p128 size 131072 extends beyond EOD, truncated
[  456.728525][ T9027] loop2: p129 size 131072 extends beyond EOD, truncated
[  456.761524][ T9027] loop2: p130 size 131072 extends beyond EOD, truncated
[  456.808770][ T9027] loop2: p131 size 131072 extends beyond EOD, truncated
[  456.858601][ T9027] loop2: p132 size 131072 extends beyond EOD, truncated
[  456.897813][ T9027] loop2: p133 size 131072 extends beyond EOD, truncated
[  456.901277][ T9110] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1065'.
[  456.934546][ T9027] loop2: p134 size 131072 extends beyond EOD, truncated
[  456.969676][ T9027] loop2: p135 size 131072 extends beyond EOD, truncated
[  456.989231][ T9027] loop2: p136 size 131072 extends beyond EOD, truncated
[  456.999932][ T9027] loop2: p137 size 131072 extends beyond EOD, truncated
[  457.061250][ T9027] loop2: p138 size 131072 extends beyond EOD, truncated
[  457.099364][ T9027] loop2: p139 size 131072 extends beyond EOD, truncated
[  457.146803][ T9027] loop2: p140 size 131072 extends beyond EOD, truncated
[  457.174114][ T9027] loop2: p141 size 131072 extends beyond EOD, truncated
[  457.201508][ T9027] loop2: p142 size 131072 extends beyond EOD, truncated
[  457.227146][ T9027] loop2: p143 size 131072 extends beyond EOD, truncated
[  457.248801][ T9027] loop2: p144 size 131072 extends beyond EOD, truncated
[  457.270136][ T9027] loop2: p145 size 131072 extends beyond EOD, truncated
[  457.282101][ T9027] loop2: p146 size 131072 extends beyond EOD, truncated
[  457.300817][ T9119] loop0: detected capacity change from 0 to 164
[  457.309106][ T9027] loop2: p147 size 131072 extends beyond EOD, truncated
[  457.325181][ T9027] loop2: p148 size 131072 extends beyond EOD, truncated
[  457.341056][ T9027] loop2: p149 size 131072 extends beyond EOD, truncated
[  457.353168][ T9027] loop2: p150 size 131072 extends beyond EOD, truncated
[  457.371057][ T9119] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  457.383037][ T9027] loop2: p151 size 131072 extends beyond EOD, truncated
[  457.393656][ T9027] loop2: p152 size 131072 extends beyond EOD, truncated
[  457.404054][ T9027] loop2: p153 size 131072 extends beyond EOD, truncated
[  457.414762][ T9027] loop2: p154 size 131072 extends beyond EOD, truncated
[  457.425392][ T9027] loop2: p155 size 131072 extends beyond EOD, truncated
[  457.460781][ T9027] loop2: p156 size 131072 extends beyond EOD, truncated
[  457.473618][ T9119] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  457.480936][ T9027] loop2: p157 size 131072 extends beyond EOD, truncated
[  457.489659][ T9119] Symlink component flag not implemented
[  457.495743][ T9119] Symlink component flag not implemented
[  457.502111][ T9119] Symlink component flag not implemented (7)
[  457.502447][ T9027] loop2: p158 size 131072 extends beyond EOD, 
[  457.508206][ T9119] Symlink component flag not implemented (116)
[  457.521615][ T9027] truncated
[  457.534035][ T9027]  loop2: p158 could not be added: -ENOMEM
[  457.540444][ T9027] loop2: p159 size 131072 extends beyond EOD, truncated
[  457.573734][ T9027] loop2: p160 size 131072 extends beyond EOD, truncated
[  457.580652][ T9121] syzkaller0: entered promiscuous mode
[  457.586601][ T9121] syzkaller0: entered allmulticast mode
[  457.635222][ T9027] loop2: p161 size 131072 extends beyond EOD, truncated
[  457.667100][ T9027] loop2: p162 size 131072 extends beyond EOD, truncated
[  457.698244][ T9027] loop2: p163 size 131072 extends beyond EOD, truncated
[  457.718302][ T9027] loop2: p164 size 131072 extends beyond EOD, truncated
[  457.749525][ T9027] loop2: p165 size 131072 extends beyond EOD, truncated
[  457.761720][ T9027] loop2: p166 size 131072 extends beyond EOD, truncated
[  457.775602][ T9027] loop2: p167 size 131072 extends beyond EOD, truncated
[  457.798817][ T9027] loop2: p168 size 131072 extends beyond EOD, truncated
[  457.826651][ T9027] loop2: p169 size 131072 extends beyond EOD, truncated
[  457.858385][ T9027] loop2: p170 size 131072 extends beyond EOD, truncated
[  457.913544][ T9027] loop2: p171 size 131072 extends beyond EOD, truncated
[  457.953491][ T9027] loop2: p172 size 131072 extends beyond EOD, truncated
[  457.971347][ T9027] loop2: p173 size 131072 extends beyond EOD, truncated
[  458.004751][ T9027] loop2: p174 size 131072 extends beyond EOD, truncated
[  458.036973][ T9027] loop2: p175 size 131072 extends beyond EOD, truncated
[  458.063896][ T9027] loop2: p176 size 131072 extends beyond EOD, truncated
[  458.111059][ T9027] loop2: p177 size 131072 extends beyond EOD, truncated
[  458.123605][ T9027] loop2: p178 size 131072 extends beyond EOD, truncated
[  458.149691][ T9027] loop2: p179 size 131072 extends beyond EOD, truncated
[  458.173207][ T9027] loop2: p180 size 131072 extends beyond EOD, truncated
[  458.201940][ T9027] loop2: p181 size 131072 extends beyond EOD, truncated
[  458.221250][ T9027] loop2: p182 size 131072 extends beyond EOD, truncated
[  458.250999][ T9027] loop2: p183 size 131072 extends beyond EOD, truncated
[  458.254534][ T9129] Cannot find add_set index 0 as target
[  458.301258][ T9027] loop2: p184 size 131072 extends beyond EOD, truncated
[  458.311873][ T9027] loop2: p185 size 131072 extends beyond EOD, truncated
[  458.358705][ T9027] loop2: p186 size 131072 extends beyond EOD, truncated
[  458.395969][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  458.396042][   T30] audit: type=1326 audit(1751579029.793:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.3.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5dc61858e7 code=0x7ffc0000
[  458.425261][   T30] audit: type=1326 audit(1751579029.793:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.3.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5dc612ab19 code=0x7ffc0000
[  458.448076][   T30] audit: type=1326 audit(1751579029.793:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.3.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5dc61858e7 code=0x7ffc0000
[  458.470879][   T30] audit: type=1326 audit(1751579029.793:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.3.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5dc612ab19 code=0x7ffc0000
[  458.493769][   T30] audit: type=1326 audit(1751579029.793:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.3.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5dc61858e7 code=0x7ffc0000
[  458.493976][   T30] audit: type=1326 audit(1751579029.793:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.3.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5dc612ab19 code=0x7ffc0000
[  458.494190][   T30] audit: type=1326 audit(1751579029.793:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.3.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5dc61858e7 code=0x7ffc0000
[  458.494415][   T30] audit: type=1326 audit(1751579029.803:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.3.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5dc612ab19 code=0x7ffc0000
[  458.494636][   T30] audit: type=1326 audit(1751579029.823:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.3.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dc618e929 code=0x7ffc0000
[  458.494843][   T30] audit: type=1326 audit(1751579029.823:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.3.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5dc61858e7 code=0x7ffc0000
[  458.497279][ T9027] loop2: p187 size 131072 extends beyond EOD, truncated
[  458.792308][ T9027] loop2: p188 size 131072 extends beyond EOD, truncated
[  458.811583][ T9027] loop2: p189 size 131072 extends beyond EOD, truncated
[  458.832787][ T9027] loop2: p190 size 131072 extends beyond EOD, truncated
[  458.859368][ T9027] loop2: p191 size 131072 extends beyond EOD, truncated
[  458.871964][ T9132] loop0: detected capacity change from 0 to 512
[  458.883633][ T9027] loop2: p192 size 131072 extends beyond EOD, truncated
[  458.901128][ T9027] loop2: p193 size 131072 extends beyond EOD, truncated
[  458.919790][ T9027] loop2: p194 size 131072 extends beyond EOD, truncated
[  458.938463][ T9132] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  458.947655][ T9129] loop3: detected capacity change from 0 to 2048
[  458.981077][ T9027] loop2: p195 size 131072 extends beyond EOD, truncated
[  459.004119][ T9027] loop2: p196 size 131072 extends beyond EOD, truncated
[  459.011798][ T9132] EXT4-fs error (device loop0): xattr_find_entry:333: inode #15: comm syz.0.1075: corrupted xattr entries
[  459.012840][ T9132] EXT4-fs (loop0): Remounting filesystem read-only
[  459.030661][ T9132] EXT4-fs (loop0): 1 truncate cleaned up
[  459.039677][ T9132] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  459.078646][ T9132] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1075'.
[  459.088338][ T9132] ksmbd: Unknown IPC event: 4, ignore.
[  459.100169][ T9027] loop2: p197 size 131072 extends beyond EOD, truncated
[  459.110695][ T9027] loop2: p198 size 131072 extends beyond EOD, truncated
[  459.121255][ T9027] loop2: p199 size 131072 extends beyond EOD, truncated
[  459.143769][ T9027] loop2: p200 size 131072 extends beyond EOD, truncated
[  459.201194][ T9027] loop2: p201 size 131072 extends beyond EOD, truncated
[  459.221409][ T9027] loop2: p202 size 131072 extends beyond EOD, truncated
[  459.253754][ T9027] loop2: p203 size 131072 extends beyond EOD, truncated
[  459.274711][ T9027] loop2: p204 size 131072 extends beyond EOD, truncated
[  459.298620][ T9027] loop2: p205 size 131072 extends beyond EOD, truncated
[  459.359620][ T9027] loop2: p206 size 131072 extends beyond EOD, truncated
[  459.375944][ T9027] loop2: p207 size 131072 extends beyond EOD, truncated
[  459.387194][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.388539][ T9027] loop2: p208 size 131072 extends beyond EOD, truncated
[  459.407328][ T9027] loop2: p209 size 131072 extends beyond EOD, truncated
[  459.421127][ T9027] loop2: p210 size 131072 extends beyond EOD, truncated
[  459.433612][ T9027] loop2: p211 size 131072 extends beyond EOD, truncated
[  459.491914][ T9027] loop2: p212 size 131072 extends beyond EOD, truncated
[  459.521235][ T9027] loop2: p213 size 131072 extends beyond EOD, truncated
[  459.542534][ T9027] loop2: p214 size 131072 extends beyond EOD, truncated
[  459.570888][ T9027] loop2: p215 size 131072 extends beyond EOD, truncated
[  459.611580][ T9027] loop2: p216 size 131072 extends beyond EOD, truncated
[  459.630895][ T9027] loop2: p217 size 131072 extends beyond EOD, truncated
[  459.661073][ T9027] loop2: p218 size 131072 extends beyond EOD, truncated
[  459.691799][ T9027] loop2: p219 size 131072 extends beyond EOD, truncated
[  459.727793][ T9027] loop2: p220 size 131072 extends beyond EOD, truncated
[  459.766830][ T9027] loop2: p221 size 131072 extends beyond EOD, truncated
[  459.786692][ T9027] loop2: p222 size 131072 extends beyond EOD, truncated
[  459.819341][ T9027] loop2: p223 size 131072 extends beyond EOD, truncated
[  459.852563][ T9027] loop2: p224 size 131072 extends beyond EOD, truncated
[  459.874857][ T9027] loop2: p225 size 131072 extends beyond EOD, truncated
[  459.905021][ T9027] loop2: p226 size 131072 extends beyond EOD, truncated
[  459.948794][ T9027] loop2: p227 size 131072 extends beyond EOD, truncated
[  459.981278][ T9027] loop2: p228 size 131072 extends beyond EOD, truncated
[  460.017986][ T9027] loop2: p229 size 131072 extends beyond EOD, truncated
[  460.061231][ T9027] loop2: p230 size 131072 extends beyond EOD, truncated
[  460.090985][ T9027] loop2: p231 size 131072 extends beyond EOD, truncated
[  460.111521][ T9027] loop2: p232 size 131072 extends beyond EOD, truncated
[  460.132107][ T9027] loop2: p233 size 131072 extends beyond EOD, truncated
[  460.161417][ T9027] loop2: p234 size 131072 extends beyond EOD, truncated
[  460.180811][ T9157] loop3: detected capacity change from 0 to 164
[  460.193865][ T9027] loop2: p235 size 131072 extends beyond EOD, truncated
[  460.207325][ T9157] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  460.219507][ T9027] loop2: p236 size 131072 extends beyond EOD, truncated
[  460.244188][ T9027] loop2: p237 size 131072 extends beyond EOD, truncated
[  460.264217][ T9157] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  460.279370][ T9027] loop2: p238 size 131072 extends beyond EOD, truncated
[  460.295783][ T9157] Symlink component flag not implemented
[  460.301838][ T9157] Symlink component flag not implemented
[  460.307942][ T9157] Symlink component flag not implemented (7)
[  460.314387][ T9157] Symlink component flag not implemented (116)
[  460.323751][ T9027] loop2: p239 size 131072 extends beyond EOD, truncated
[  460.333655][ T9027] loop2: p240 size 131072 extends beyond EOD, truncated
[  460.366175][ T9027] loop2: p241 size 131072 extends beyond EOD, truncated
[  460.377673][ T9027] loop2: p242 size 131072 extends beyond EOD, truncated
[  460.411235][ T9027] loop2: p243 size 131072 extends beyond EOD, truncated
[  460.587643][ T9027] loop2: p244 size 131072 extends beyond EOD, truncated
[  460.598819][ T9027] loop2: p245 size 131072 extends beyond EOD, truncated
[  460.613320][ T9027] loop2: p246 size 131072 extends beyond EOD, truncated
[  460.623889][ T9027] loop2: p247 size 131072 extends beyond EOD, truncated
[  460.634685][ T9027] loop2: p248 size 131072 extends beyond EOD, truncated
[  460.688221][ T9027] loop2: p249 size 131072 extends beyond EOD, truncated
[  460.712872][ T9027] loop2: p250 size 131072 extends beyond EOD, truncated
[  460.748720][ T9027] loop2: p251 size 131072 extends beyond EOD, truncated
[  460.766230][ T9027] loop2: p252 size 131072 extends beyond EOD, truncated
[  460.805481][ T9027] loop2: p253 size 131072 extends beyond EOD, truncated
[  460.831546][ T9027] loop2: p254 size 131072 extends beyond EOD, truncated
[  460.853687][ T9027] loop2: p255 size 131072 extends beyond EOD, truncated
[  461.016136][ T9171] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1088'.
[  461.146378][ T6484] kernel write not supported for file /vcs (pid: 6484 comm: kworker/1:7)
[  462.927204][ T9200] loop0: detected capacity change from 0 to 512
[  463.199379][ T9200] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  463.215561][ T9200] ext4 filesystem being mounted at /210/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  463.733936][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  464.107091][   T30] kauditd_printk_skb: 37 callbacks suppressed
[  464.107163][   T30] audit: type=1326 audit(1751579035.503:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9222 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  464.114404][   T30] audit: type=1326 audit(1751579035.513:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9222 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  464.117997][   T30] audit: type=1326 audit(1751579035.513:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9222 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  464.121927][   T30] audit: type=1326 audit(1751579035.523:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9222 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  464.123748][   T30] audit: type=1326 audit(1751579035.523:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9222 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  464.297657][ T9226] loop2: detected capacity change from 0 to 2048
[  464.457066][ T9226] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  464.524139][   T30] audit: type=1804 audit(1751579035.923:653): pid=9226 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1110" name="/newroot/213/file1/bus" dev="loop2" ino=18 res=1 errno=0
[  464.546407][   T30] audit: type=1800 audit(1751579035.923:654): pid=9226 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1110" name="bus" dev="loop2" ino=18 res=0 errno=0
[  464.658304][ T9226] Invalid ELF header magic: != ELF
[  464.858396][ T9240] loop4: detected capacity change from 0 to 512
[  465.091291][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.143846][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  465.150705][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  465.197795][ T9240] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  465.230792][ T9240] EXT4-fs error (device loop4): xattr_find_entry:333: inode #15: comm syz.4.1116: corrupted xattr entries
[  465.246191][ T9240] EXT4-fs (loop4): Remounting filesystem read-only
[  465.253196][ T9240] EXT4-fs (loop4): 1 truncate cleaned up
[  465.261329][ T9240] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  465.289166][ T9245] loop3: detected capacity change from 0 to 512
[  465.495565][ T9245] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.508936][ T9245] ext4 filesystem being mounted at /219/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  465.553764][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.638841][ T9252] loop0: detected capacity change from 0 to 512
[  465.716120][ T9252] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.729332][ T9252] ext4 filesystem being mounted at /214/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  466.018317][ T9262] loop1: detected capacity change from 0 to 256
[  466.075371][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.103303][ T9264] x_tables: ip6_tables: mh match: only valid for protocol 135
[  466.255326][ T9262] FAT-fs (loop1): Directory bread(block 64) failed
[  466.262431][ T9262] FAT-fs (loop1): Directory bread(block 65) failed
[  466.269352][ T9262] FAT-fs (loop1): Directory bread(block 66) failed
[  466.276553][ T9262] FAT-fs (loop1): Directory bread(block 67) failed
[  466.283684][ T9262] FAT-fs (loop1): Directory bread(block 68) failed
[  466.290560][ T9262] FAT-fs (loop1): Directory bread(block 69) failed
[  466.297467][ T9262] FAT-fs (loop1): Directory bread(block 70) failed
[  466.304656][ T9262] FAT-fs (loop1): Directory bread(block 71) failed
[  466.311677][ T9262] FAT-fs (loop1): Directory bread(block 72) failed
[  466.318457][ T9262] FAT-fs (loop1): Directory bread(block 73) failed
[  466.449798][ T9262] syz.1.1123: attempt to access beyond end of device
[  466.449798][ T9262] loop1: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  466.464338][ T9262] syz.1.1123: attempt to access beyond end of device
[  466.464338][ T9262] loop1: rw=0, sector=1736, nr_sectors = 8 limit=256
[  466.498783][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.855264][ T9273] pim6reg: entered allmulticast mode
[  466.926781][ T9274] pim6reg: left allmulticast mode
[  467.071205][ T9277] Invalid ELF header magic: != ELF
[  468.099688][ T9295] loop0: detected capacity change from 0 to 512
[  468.153840][ T9289] 9pnet: Could not find request transport: fd0x0000000000000004
[  468.302165][ T9295] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  468.315335][ T9295] ext4 filesystem being mounted at /217/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  468.410047][ T9304] loop2: detected capacity change from 0 to 256
[  468.569477][ T9304] FAT-fs (loop2): Directory bread(block 64) failed
[  468.576935][ T9304] FAT-fs (loop2): Directory bread(block 65) failed
[  468.583971][ T9304] FAT-fs (loop2): Directory bread(block 66) failed
[  468.590879][ T9304] FAT-fs (loop2): Directory bread(block 67) failed
[  468.597791][ T9304] FAT-fs (loop2): Directory bread(block 68) failed
[  468.604782][ T9304] FAT-fs (loop2): Directory bread(block 69) failed
[  468.611844][ T9304] FAT-fs (loop2): Directory bread(block 70) failed
[  468.618630][ T9304] FAT-fs (loop2): Directory bread(block 71) failed
[  468.625742][ T9304] FAT-fs (loop2): Directory bread(block 72) failed
[  468.632737][ T9304] FAT-fs (loop2): Directory bread(block 73) failed
[  468.715932][ T9312] Invalid ELF header magic: != ELF
[  468.725801][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  468.784846][ T9304] syz.2.1138: attempt to access beyond end of device
[  468.784846][ T9304] loop2: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  468.799248][ T9304] syz.2.1138: attempt to access beyond end of device
[  468.799248][ T9304] loop2: rw=0, sector=1736, nr_sectors = 8 limit=256
[  469.592805][ T9328] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  470.218364][   T30] audit: type=1326 audit(1751579041.613:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  470.248357][   T30] audit: type=1326 audit(1751579041.613:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  470.272538][   T30] audit: type=1326 audit(1751579041.643:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  470.295540][   T30] audit: type=1326 audit(1751579041.673:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  470.319804][   T30] audit: type=1326 audit(1751579041.693:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  470.345184][ T9336] 9pnet: Could not find request transport: fd0x0000000000000004
[  470.345275][   T30] audit: type=1326 audit(1751579041.743:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  470.376195][   T30] audit: type=1326 audit(1751579041.743:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  470.395422][ T9344] Invalid ELF header magic: != ELF
[  470.413847][ T9340] loop2: detected capacity change from 0 to 512
[  470.486218][   T30] audit: type=1326 audit(1751579041.843:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  470.511100][   T30] audit: type=1326 audit(1751579041.843:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  470.542694][   T30] audit: type=1326 audit(1751579041.843:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda38e929 code=0x7ffc0000
[  470.671046][ T9340] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  470.684611][ T9340] ext4 filesystem being mounted at /220/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  470.784522][ T9349] loop1: detected capacity change from 0 to 256
[  470.935148][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  470.960616][ T9349] FAT-fs (loop1): Directory bread(block 64) failed
[  470.967539][ T9349] FAT-fs (loop1): Directory bread(block 65) failed
[  470.974726][ T9349] FAT-fs (loop1): Directory bread(block 66) failed
[  470.981796][ T9349] FAT-fs (loop1): Directory bread(block 67) failed
[  470.988715][ T9349] FAT-fs (loop1): Directory bread(block 68) failed
[  470.996580][ T9349] FAT-fs (loop1): Directory bread(block 69) failed
[  471.004606][ T9349] FAT-fs (loop1): Directory bread(block 70) failed
[  471.012467][ T9349] FAT-fs (loop1): Directory bread(block 71) failed
[  471.021511][ T9349] FAT-fs (loop1): Directory bread(block 72) failed
[  471.028322][ T9349] FAT-fs (loop1): Directory bread(block 73) failed
[  471.135609][ T9349] syz.1.1156: attempt to access beyond end of device
[  471.135609][ T9349] loop1: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  471.149931][ T9349] syz.1.1156: attempt to access beyond end of device
[  471.149931][ T9349] loop1: rw=0, sector=1736, nr_sectors = 8 limit=256
[  471.421125][ T9359] loop2: detected capacity change from 0 to 1764
[  471.537252][ T9359] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
[  472.015087][ T9373] loop0: detected capacity change from 0 to 2048
[  472.111594][ T9373] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  472.174805][ T9380] loop4: detected capacity change from 0 to 512
[  472.185438][ T9375] 9pnet: Could not find request transport: fd0x0000000000000004
[  472.343922][ T9380] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  472.356607][ T9373] Invalid ELF header magic: != ELF
[  472.362923][ T9380] ext4 filesystem being mounted at /246/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  472.654925][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.701870][ T9395] loop3: detected capacity change from 0 to 256
[  472.776954][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.787725][ T9387] loop1: detected capacity change from 0 to 8192
[  472.979501][ T9395] FAT-fs (loop3): Directory bread(block 64) failed
[  472.986789][ T9395] FAT-fs (loop3): Directory bread(block 65) failed
[  472.994045][ T9395] FAT-fs (loop3): Directory bread(block 66) failed
[  473.000966][ T9395] FAT-fs (loop3): Directory bread(block 67) failed
[  473.007859][ T9395] FAT-fs (loop3): Directory bread(block 68) failed
[  473.014800][ T9395] FAT-fs (loop3): Directory bread(block 69) failed
[  473.021917][ T9395] FAT-fs (loop3): Directory bread(block 70) failed
[  473.028666][ T9395] FAT-fs (loop3): Directory bread(block 71) failed
[  473.035851][ T9395] FAT-fs (loop3): Directory bread(block 72) failed
[  473.042907][ T9395] FAT-fs (loop3): Directory bread(block 73) failed
[  473.153635][ T9395] syz.3.1173: attempt to access beyond end of device
[  473.153635][ T9395] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  473.168962][ T9395] syz.3.1173: attempt to access beyond end of device
[  473.168962][ T9395] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256
[  473.303144][ T9401] syzkaller1: entered promiscuous mode
[  473.308987][ T9401] syzkaller1: entered allmulticast mode
[  473.948116][ T9415] 9pnet_fd: Insufficient options for proto=fd
[  474.192007][ T9417] loop0: detected capacity change from 0 to 2048
[  474.198621][ T9421] loop3: detected capacity change from 0 to 512
[  474.299539][ T9417] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  474.306454][ T9421] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  474.325687][ T9421] ext4 filesystem being mounted at /232/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  474.548041][ T9434] x_tables: ip6_tables: mh match: only valid for protocol 135
[  474.799055][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  474.998776][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  474.999750][ T9436] loop2: detected capacity change from 0 to 512
[  475.156344][ T9438] loop1: detected capacity change from 0 to 256
[  475.313070][ T9442] netlink: 'syz.4.1193': attribute type 10 has an invalid length.
[  475.325503][ T9442] netlink: 55 bytes leftover after parsing attributes in process `syz.4.1193'.
[  475.354335][ T9438] FAT-fs (loop1): Directory bread(block 64) failed
[  475.367402][ T9438] FAT-fs (loop1): Directory bread(block 65) failed
[  475.376016][ T9438] FAT-fs (loop1): Directory bread(block 66) failed
[  475.382983][ T9438] FAT-fs (loop1): Directory bread(block 67) failed
[  475.389873][ T9438] FAT-fs (loop1): Directory bread(block 68) failed
[  475.396774][ T9438] FAT-fs (loop1): Directory bread(block 69) failed
[  475.403948][ T9438] FAT-fs (loop1): Directory bread(block 70) failed
[  475.410872][ T9438] FAT-fs (loop1): Directory bread(block 71) failed
[  475.417860][ T9438] FAT-fs (loop1): Directory bread(block 72) failed
[  475.424807][ T9438] FAT-fs (loop1): Directory bread(block 73) failed
[  475.540643][ T9444] loop3: detected capacity change from 0 to 512
[  475.570239][ T9438] syz.1.1191: attempt to access beyond end of device
[  475.570239][ T9438] loop1: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  475.585269][ T9438] syz.1.1191: attempt to access beyond end of device
[  475.585269][ T9438] loop1: rw=0, sector=1736, nr_sectors = 8 limit=256
[  475.613850][ T9444] EXT4-fs (loop3): orphan cleanup on readonly fs
[  475.658451][ T9444] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.1192: bad orphan inode 13
[  475.704726][ T9444] ext4_test_bit(bit=12, block=18) = 1
[  475.712305][ T9444] is_bad_inode(inode)=0
[  475.716655][ T9444] NEXT_ORPHAN(inode)=2130706432
[  475.722958][ T9444] max_ino=32
[  475.726346][ T9444] i_nlink=1
[  475.732123][ T9444] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  475.892026][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  476.046868][ T9453] 9pnet_fd: Insufficient options for proto=fd
[  476.117864][ T9455] pimreg: entered allmulticast mode
[  476.777084][ T9468] loop1: detected capacity change from 0 to 512
[  477.029404][ T9475] x_tables: ip6_tables: mh match: only valid for protocol 135
[  477.337158][ T9468] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  477.350638][ T9468] ext4 filesystem being mounted at /250/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  477.490956][ T9481] loop2: detected capacity change from 0 to 256
[  477.721205][ T9481] FAT-fs (loop2): Directory bread(block 64) failed
[  477.728189][ T9481] FAT-fs (loop2): Directory bread(block 65) failed
[  477.735340][ T9481] FAT-fs (loop2): Directory bread(block 66) failed
[  477.742226][ T9481] FAT-fs (loop2): Directory bread(block 67) failed
[  477.749116][ T9481] FAT-fs (loop2): Directory bread(block 68) failed
[  477.756148][ T9481] FAT-fs (loop2): Directory bread(block 69) failed
[  477.765959][ T9481] FAT-fs (loop2): Directory bread(block 70) failed
[  477.773215][ T9481] FAT-fs (loop2): Directory bread(block 71) failed
[  477.780209][ T9481] FAT-fs (loop2): Directory bread(block 72) failed
[  477.787103][ T9481] FAT-fs (loop2): Directory bread(block 73) failed
[  477.849260][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  477.903496][ T9485] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1208'.
[  477.924522][ T9481] syz.2.1206: attempt to access beyond end of device
[  477.924522][ T9481] loop2: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  477.938948][ T9481] syz.2.1206: attempt to access beyond end of device
[  477.938948][ T9481] loop2: rw=0, sector=1736, nr_sectors = 8 limit=256
[  477.996553][ T9487] netlink: 'syz.4.1209': attribute type 10 has an invalid length.
[  478.026952][ T9487] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  478.186919][ T9487] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1209'.
[  478.204491][ T9491] 9pnet_fd: Insufficient options for proto=fd
[  478.794894][ T9499] loop1: detected capacity change from 0 to 1024
[  478.848147][ T9499] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  478.859853][ T9499] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  478.930883][ T9499] JBD2: no valid journal superblock found
[  478.937075][ T9499] EXT4-fs (loop1): Could not load journal inode
[  479.672111][ T9513] loop3: detected capacity change from 0 to 512
[  479.717894][ T9510] x_tables: ip6_tables: mh match: only valid for protocol 135
[  479.986858][ T9513] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  480.003702][ T9513] ext4 filesystem being mounted at /238/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  480.305905][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  480.305981][   T30] audit: type=1326 audit(1751579051.703:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9521 comm="syz.2.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  480.392599][ T9525] loop4: detected capacity change from 0 to 256
[  480.414265][ T9526] 9pnet_fd: Insufficient options for proto=fd
[  480.421666][   T30] audit: type=1326 audit(1751579051.733:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9521 comm="syz.2.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  480.444837][   T30] audit: type=1326 audit(1751579051.733:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9521 comm="syz.2.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff99078e929 code=0x7ffc0000
[  480.518886][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  480.666482][ T9525] FAT-fs (loop4): Directory bread(block 64) failed
[  480.674261][ T9525] FAT-fs (loop4): Directory bread(block 65) failed
[  480.681498][ T9525] FAT-fs (loop4): Directory bread(block 66) failed
[  480.688272][ T9525] FAT-fs (loop4): Directory bread(block 67) failed
[  480.695357][ T9525] FAT-fs (loop4): Directory bread(block 68) failed
[  480.702315][ T9525] FAT-fs (loop4): Directory bread(block 69) failed
[  480.709228][ T9525] FAT-fs (loop4): Directory bread(block 70) failed
[  480.716170][ T9525] FAT-fs (loop4): Directory bread(block 71) failed
[  480.723215][ T9525] FAT-fs (loop4): Directory bread(block 72) failed
[  480.729987][ T9525] FAT-fs (loop4): Directory bread(block 73) failed
[  480.903686][ T9525] syz.4.1223: attempt to access beyond end of device
[  480.903686][ T9525] loop4: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  480.918136][ T9525] syz.4.1223: attempt to access beyond end of device
[  480.918136][ T9525] loop4: rw=0, sector=1736, nr_sectors = 8 limit=256
[  481.467105][ T9539] loop1: detected capacity change from 0 to 2048
[  481.522435][ T9539] EXT4-fs: Ignoring removed bh option
[  481.576098][ T9533] loop0: detected capacity change from 0 to 8192
[  481.616546][ T9539] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  481.752689][   T30] audit: type=1326 audit(1751579053.133:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9546 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  481.775914][   T30] audit: type=1326 audit(1751579053.143:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9546 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  481.798775][   T30] audit: type=1326 audit(1751579053.143:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9546 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  482.007874][   T30] audit: type=1800 audit(1751579053.403:680): pid=9539 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1229" name="file1" dev="loop1" ino=15 res=0 errno=0
[  482.182553][ T9539] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  482.223375][ T9539] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 396 with error 28
[  482.236496][ T9539] EXT4-fs (loop1): This should not happen!! Data will be lost
[  482.236496][ T9539] 
[  482.246574][ T9539] EXT4-fs (loop1): Total free blocks count 0
[  482.253535][ T9539] EXT4-fs (loop1): Free/Dirty block details
[  482.259656][ T9539] EXT4-fs (loop1): free_blocks=2415919104
[  482.265817][ T9539] EXT4-fs (loop1): dirty_blocks=416
[  482.271377][ T9539] EXT4-fs (loop1): Block reservation details
[  482.277577][ T9539] EXT4-fs (loop1): i_reserved_data_blocks=26
[  482.439697][ T9556] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  482.518209][   T30] audit: type=1326 audit(1751579053.913:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9555 comm="syz.4.1237" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x0
[  482.727152][ T4477] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  482.836675][ T9563] 9pnet_fd: Insufficient options for proto=fd
[  482.984248][ T9566] loop2: detected capacity change from 0 to 256
[  483.143784][ T9566] FAT-fs (loop2): Directory bread(block 64) failed
[  483.150995][ T9566] FAT-fs (loop2): Directory bread(block 65) failed
[  483.157920][ T9566] FAT-fs (loop2): Directory bread(block 66) failed
[  483.164941][ T9566] FAT-fs (loop2): Directory bread(block 67) failed
[  483.171988][ T9566] FAT-fs (loop2): Directory bread(block 68) failed
[  483.178778][ T9566] FAT-fs (loop2): Directory bread(block 69) failed
[  483.185888][ T9566] FAT-fs (loop2): Directory bread(block 70) failed
[  483.192949][ T9566] FAT-fs (loop2): Directory bread(block 71) failed
[  483.199897][ T9566] FAT-fs (loop2): Directory bread(block 72) failed
[  483.206828][ T9566] FAT-fs (loop2): Directory bread(block 73) failed
[  483.317488][ T9566] syz.2.1241: attempt to access beyond end of device
[  483.317488][ T9566] loop2: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  483.331846][ T9566] syz.2.1241: attempt to access beyond end of device
[  483.331846][ T9566] loop2: rw=0, sector=1736, nr_sectors = 8 limit=256
[  483.947408][ T9584] loop0: detected capacity change from 0 to 2048
[  483.980691][ T9584] EXT4-fs: Ignoring removed bh option
[  484.035784][ T9584] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  484.148486][ T9594] 9pnet_fd: Insufficient options for proto=fd
[  484.241078][   T30] audit: type=1800 audit(1751579055.633:682): pid=9584 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1250" name="file1" dev="loop0" ino=15 res=0 errno=0
[  484.493588][ T9598] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  484.572909][ T9584] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  484.621094][ T9584] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 640 with error 28
[  484.634362][ T9584] EXT4-fs (loop0): This should not happen!! Data will be lost
[  484.634362][ T9584] 
[  484.645042][ T9584] EXT4-fs (loop0): Total free blocks count 0
[  484.646268][   T30] audit: type=1326 audit(1751579056.033:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.1.1254" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3264b8e929 code=0x0
[  484.651346][ T9584] EXT4-fs (loop0): Free/Dirty block details
[  484.651432][ T9584] EXT4-fs (loop0): free_blocks=2415919104
[  484.651519][ T9584] EXT4-fs (loop0): dirty_blocks=656
[  484.691561][ T9584] EXT4-fs (loop0): Block reservation details
[  484.697773][ T9584] EXT4-fs (loop0): i_reserved_data_blocks=41
[  484.881833][ T3702] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  485.362767][ T9613] loop0: detected capacity change from 0 to 256
[  485.537137][ T9613] FAT-fs (loop0): Directory bread(block 64) failed
[  485.544152][ T9613] FAT-fs (loop0): Directory bread(block 65) failed
[  485.551371][ T9613] FAT-fs (loop0): Directory bread(block 66) failed
[  485.558158][ T9613] FAT-fs (loop0): Directory bread(block 67) failed
[  485.565279][ T9613] FAT-fs (loop0): Directory bread(block 68) failed
[  485.572599][ T9613] FAT-fs (loop0): Directory bread(block 69) failed
[  485.579510][ T9613] FAT-fs (loop0): Directory bread(block 70) failed
[  485.586527][ T9613] FAT-fs (loop0): Directory bread(block 71) failed
[  485.593677][ T9613] FAT-fs (loop0): Directory bread(block 72) failed
[  485.605985][ T9613] FAT-fs (loop0): Directory bread(block 73) failed
[  485.719873][ T9613] syz.0.1259: attempt to access beyond end of device
[  485.719873][ T9613] loop0: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  485.735448][ T9613] syz.0.1259: attempt to access beyond end of device
[  485.735448][ T9613] loop0: rw=0, sector=1736, nr_sectors = 8 limit=256
[  486.397654][ T9632] loop0: detected capacity change from 0 to 2048
[  486.450472][ T9632] EXT4-fs: Ignoring removed bh option
[  486.598547][ T9632] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  486.673828][ T9642] loop1: detected capacity change from 0 to 512
[  486.724066][ T9641] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  486.789417][   T30] audit: type=1800 audit(1751579058.183:684): pid=9632 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1269" name="file1" dev="loop0" ino=15 res=0 errno=0
[  486.797835][ T9642] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  486.824459][ T9642] ext4 filesystem being mounted at /263/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  486.843348][ T9645] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  486.869716][   T30] audit: type=1326 audit(1751579058.263:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9644 comm="syz.3.1275" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5dc618e929 code=0x0
[  487.111080][ T9632] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 455 with error 28
[  487.111755][ T9651] loop4: detected capacity change from 0 to 1024
[  487.127559][ T9632] EXT4-fs (loop0): This should not happen!! Data will be lost
[  487.127559][ T9632] 
[  487.141409][ T9632] EXT4-fs (loop0): Total free blocks count 0
[  487.147636][ T9632] EXT4-fs (loop0): Free/Dirty block details
[  487.154046][ T9632] EXT4-fs (loop0): free_blocks=2415919104
[  487.160003][ T9632] EXT4-fs (loop0): dirty_blocks=480
[  487.165621][ T9632] EXT4-fs (loop0): Block reservation details
[  487.171957][ T9632] EXT4-fs (loop0): i_reserved_data_blocks=30
[  487.205675][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  487.264457][ T9651] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  487.278265][ T9651] ext4 filesystem being mounted at /267/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  487.329116][ T4606] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  487.494901][ T9654] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1277: bg 0: block 393: padding at end of block bitmap is not set
[  487.564542][ T9650] loop2: detected capacity change from 0 to 8192
[  487.573409][ T9654] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 112 with error 117
[  487.586778][ T9654] EXT4-fs (loop4): This should not happen!! Data will be lost
[  487.586778][ T9654] 
[  487.635811][ T9654] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[  487.648928][ T9654] EXT4-fs (loop4): This should not happen!! Data will be lost
[  487.648928][ T9654] 
[  487.658992][ T9654] EXT4-fs (loop4): Total free blocks count 0
[  487.665768][ T9654] EXT4-fs (loop4): Free/Dirty block details
[  487.672220][ T9654] EXT4-fs (loop4): free_blocks=0
[  487.677421][ T9654] EXT4-fs (loop4): dirty_blocks=32
[  487.683007][ T9654] EXT4-fs (loop4): Block reservation details
[  487.850905][ T9658] loop0: detected capacity change from 0 to 256
[  488.020035][ T9658] FAT-fs (loop0): Directory bread(block 64) failed
[  488.027272][ T9658] FAT-fs (loop0): Directory bread(block 65) failed
[  488.034359][ T9658] FAT-fs (loop0): Directory bread(block 66) failed
[  488.041292][ T9658] FAT-fs (loop0): Directory bread(block 67) failed
[  488.048203][ T9658] FAT-fs (loop0): Directory bread(block 68) failed
[  488.055103][ T9658] FAT-fs (loop0): Directory bread(block 69) failed
[  488.062184][ T9658] FAT-fs (loop0): Directory bread(block 70) failed
[  488.068959][ T9658] FAT-fs (loop0): Directory bread(block 71) failed
[  488.076002][ T9658] FAT-fs (loop0): Directory bread(block 72) failed
[  488.083047][ T9658] FAT-fs (loop0): Directory bread(block 73) failed
[  488.151511][ T9658] syz.0.1279: attempt to access beyond end of device
[  488.151511][ T9658] loop0: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  488.168915][ T9658] syz.0.1279: attempt to access beyond end of device
[  488.168915][ T9658] loop0: rw=0, sector=1736, nr_sectors = 8 limit=256
[  488.271114][   T30] audit: type=1326 audit(1751579059.653:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9665 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  488.294219][   T30] audit: type=1326 audit(1751579059.663:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9665 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  488.317155][   T30] audit: type=1326 audit(1751579059.663:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9665 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  488.340051][   T30] audit: type=1326 audit(1751579059.663:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9665 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  488.363273][   T30] audit: type=1326 audit(1751579059.663:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9665 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  488.386385][   T30] audit: type=1326 audit(1751579059.663:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9665 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  488.411758][   T30] audit: type=1326 audit(1751579059.763:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9665 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  488.447630][   T30] audit: type=1326 audit(1751579059.833:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9665 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f1ed078e929 code=0x7ffc0000
[  488.946009][ T9674] sd 0:0:1:0: device reset
[  489.267403][ T9672] loop2: detected capacity change from 0 to 8192
[  489.322557][ T9681] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  489.371011][ T9682] loop3: detected capacity change from 0 to 2048
[  489.380584][ T9682] EXT4-fs: Ignoring removed bh option
[  489.435840][ T9682] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  489.960223][ T9682] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  490.004705][ T9682] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 640 with error 28
[  490.017747][ T9682] EXT4-fs (loop3): This should not happen!! Data will be lost
[  490.017747][ T9682] 
[  490.027855][ T9682] EXT4-fs (loop3): Total free blocks count 0
[  490.034253][ T9682] EXT4-fs (loop3): Free/Dirty block details
[  490.040668][ T9682] EXT4-fs (loop3): free_blocks=2415919104
[  490.046630][ T9682] EXT4-fs (loop3): dirty_blocks=656
[  490.052739][ T9682] EXT4-fs (loop3): Block reservation details
[  490.058954][ T9682] EXT4-fs (loop3): i_reserved_data_blocks=41
[  490.197365][ T9690] loop2: detected capacity change from 0 to 8192
[  490.363465][ T4107] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  490.925135][ T9705] x_tables: ip6_tables: mh match: only valid for protocol 135
[  492.291694][ T9725] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  492.392096][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  492.392173][   T30] audit: type=1326 audit(1751579063.793:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9724 comm="syz.2.1307" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff99078e929 code=0x0
[  492.840862][ T9727] loop3: detected capacity change from 0 to 2048
[  492.862644][ T9727] EXT4-fs: Ignoring removed bh option
[  492.922618][ T9727] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  493.100917][   T30] audit: type=1800 audit(1751579064.463:724): pid=9727 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1308" name="file1" dev="loop3" ino=15 res=0 errno=0
[  493.397539][ T9727] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  493.418606][ T9727] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 269 with error 28
[  493.432222][ T9727] EXT4-fs (loop3): This should not happen!! Data will be lost
[  493.432222][ T9727] 
[  493.442246][ T9727] EXT4-fs (loop3): Total free blocks count 0
[  493.448471][ T9727] EXT4-fs (loop3): Free/Dirty block details
[  493.454961][ T9727] EXT4-fs (loop3): free_blocks=2415919104
[  493.461173][ T9727] EXT4-fs (loop3): dirty_blocks=288
[  493.466631][ T9727] EXT4-fs (loop3): Block reservation details
[  493.473025][ T9727] EXT4-fs (loop3): i_reserved_data_blocks=18
[  493.516747][ T9731] loop1: detected capacity change from 0 to 8192
[  493.711048][ T4107] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  494.427131][ T9756] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1319'.
[  494.443587][ T5804] =====================================================
[  494.451069][ T5804] BUG: KMSAN: kernel-infoleak-after-free in _copy_to_user+0xcc/0x120
[  494.452607][ T9757] loop2: detected capacity change from 0 to 1024
[  494.459294][ T5804]  _copy_to_user+0xcc/0x120
[  494.470903][ T5804]  copy_siginfo_to_user+0x3f/0x140
[  494.475383][ T9758] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1319'.
[  494.476155][ T5804]  x64_setup_rt_frame+0x1392/0x2590
[  494.491385][ T5804]  arch_do_signal_or_restart+0x63c/0xbf0
[  494.497280][ T5804]  exit_to_user_mode_loop+0xec/0x330
[  494.502976][ T5804]  do_syscall_64+0x1e3/0x210
[  494.507777][ T5804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  494.514065][ T5804] 
[  494.516527][ T5804] Uninit was stored to memory at:
[  494.522003][ T5804]  __dequeue_signal+0x4d6/0x970
[  494.527069][ T5804]  dequeue_signal+0x1c0/0x840
[  494.532304][ T5804]  get_signal+0xbf8/0x2a20
[  494.536953][ T5804]  arch_do_signal_or_restart+0x53/0xbf0
[  494.544110][ T5804]  exit_to_user_mode_loop+0xec/0x330
[  494.549865][ T5804]  do_syscall_64+0x1e3/0x210
[  494.554829][ T5804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  494.561150][ T5804] 
[  494.563589][ T5804] Uninit was created at:
[  494.568081][ T5804]  kmem_cache_free+0x2a1/0xec0
[  494.573234][ T5804]  __sigqueue_free+0x23a/0x270
[  494.578224][ T5804]  __dequeue_signal+0x66b/0x970
[  494.583454][ T5804]  dequeue_signal+0x1c0/0x840
[  494.588354][ T5804]  get_signal+0xbf8/0x2a20
[  494.593370][ T5804]  arch_do_signal_or_restart+0x53/0xbf0
[  494.599200][ T5804]  exit_to_user_mode_loop+0xec/0x330
[  494.604863][ T5804]  do_syscall_64+0x1e3/0x210
[  494.609651][ T5804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  494.615932][ T5804] 
[  494.618356][ T5804] Bytes 12-15 of 48 are uninitialized
[  494.624055][ T5804] Memory access of size 48 starts at ffff88803b0a3df0
[  494.631205][ T5804] Data copied to user address 00007ffc6dc22e70
[  494.637520][ T5804] 
[  494.639994][ T5804] CPU: 1 UID: 0 PID: 5804 Comm: syz-executor Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(undef) 
[  494.655856][ T5804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  494.666248][ T5804] =====================================================
[  494.673481][ T5804] Disabling lock debugging due to kernel taint
[  494.679776][ T5804] Kernel panic - not syncing: kmsan.panic set ...
[  494.686368][ T5804] CPU: 1 UID: 0 PID: 5804 Comm: syz-executor Tainted: G    B               6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(undef) 
[  494.700416][ T5804] Tainted: [B]=BAD_PAGE
[  494.704688][ T5804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  494.714921][ T5804] Call Trace:
[  494.718329][ T5804]  <TASK>
[  494.721374][ T5804]  __dump_stack+0x26/0x30
[  494.725918][ T5804]  dump_stack_lvl+0x53/0x270
[  494.730730][ T5804]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  494.736811][ T5804]  dump_stack+0x1e/0x25
[  494.741168][ T5804]  panic+0x4bd/0xd50
[  494.745323][ T5804]  kmsan_report+0x31c/0x320
[  494.750053][ T5804]  ? copy_fpstate_to_sigframe+0x1111/0x13d0
[  494.756182][ T5804]  ? kmsan_internal_check_memory+0x16c/0x230
[  494.762379][ T5804]  ? kmsan_copy_to_user+0xf1/0x190
[  494.767704][ T5804]  ? _copy_to_user+0xcc/0x120
[  494.772595][ T5804]  ? copy_siginfo_to_user+0x3f/0x140
[  494.778070][ T5804]  ? x64_setup_rt_frame+0x1392/0x2590
[  494.783678][ T5804]  ? arch_do_signal_or_restart+0x63c/0xbf0
[  494.789818][ T5804]  ? exit_to_user_mode_loop+0xec/0x330
[  494.795508][ T5804]  ? do_syscall_64+0x1e3/0x210
[  494.800461][ T5804]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  494.806728][ T5804]  ? stack_depot_save_flags+0x35/0x7b0
[  494.812414][ T5804]  ? kmsan_get_metadata+0xfb/0x160
[  494.817772][ T5804]  ? kmsan_internal_check_memory+0x9c/0x230
[  494.823922][ T5804]  ? copy_fpstate_to_sigframe+0x126f/0x13d0
[  494.830083][ T5804]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  494.836124][ T5804]  ? kmsan_get_metadata+0xfb/0x160
[  494.841472][ T5804]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  494.847522][ T5804]  kmsan_internal_check_memory+0x16c/0x230
[  494.853567][ T5804]  kmsan_copy_to_user+0xf1/0x190
[  494.858743][ T5804]  _copy_to_user+0xcc/0x120
[  494.863441][ T5804]  copy_siginfo_to_user+0x3f/0x140
[  494.868751][ T5804]  x64_setup_rt_frame+0x1392/0x2590
[  494.874237][ T5804]  arch_do_signal_or_restart+0x63c/0xbf0
[  494.880151][ T5804]  exit_to_user_mode_loop+0xec/0x330
[  494.885644][ T5804]  do_syscall_64+0x1e3/0x210
[  494.890414][ T5804]  ? irqentry_exit+0x16/0x60
[  494.895168][ T5804]  ? clear_bhb_loop+0x40/0x90
[  494.900049][ T5804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  494.906151][ T5804] RIP: 0033:0x7f5dc619066a
[  494.910722][ T5804] Code: ff c3 66 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb b8 0f 1f 44 00 00 49 89 ca b8 37 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7
[  494.930538][ T5804] RSP: 002b:00007ffc6dc232f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000037
[  494.939172][ T5804] RAX: 0000000000000000 RBX: 00007ffc6dc23380 RCX: 00007f5dc619066a
[  494.947321][ T5804] RDX: 0000000000000041 RSI: 0000000000000000 RDI: 0000000000000003
[  494.955436][ T5804] RBP: 0000000000000003 R08: 00007ffc6dc2331c R09: 0079746972756365
[  494.963555][ T5804] R10: 00007ffc6dc23380 R11: 0000000000000216 R12: 00007f5dc6383940
[  494.971675][ T5804] R13: 00007ffc6dc2331c R14: 0000000000000000 R15: 00007f5dc6384000
[  494.979832][ T5804]  </TASK>
[  494.983420][ T5804] Kernel Offset: disabled
[  494.987871][ T5804] Rebooting in 86400 seconds..