last executing test programs:

2m55.781750159s ago: executing program 0 (id=309):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$vim2m(0x0, 0x0, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000240)="7772b9e563d7eb7360c90da7245afe945a9b5746fb4e81e9c8c62646310ddfebde4c2301e7d20f5494799149f889c0f01c7525df84b71f34dd5663e9c7e17ae356c673dcd6160f9176b4ec11b51204d609941222f09988e272d6cc45c6c894a2a2d6d9f6be72cae864804d8d2bef66511599891be26c05a1bbc0449ea5d7ab7b6ee4d217ed7305a3450f3d59e834e6f92adf06ac18373e63f8", 0x99)
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x80000000005, 0x100000001000087}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x14, &(0x7f0000000040)=0x6)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340), &(0x7f0000000280), &(0x7f0000000200), 0x0, 0x0, 0x82})
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f0000000200))
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_freezer_state(r2, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r3, &(0x7f0000000040)='FROZEN\x00', 0x7)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0xc0, 0x61)
mount(&(0x7f00000003c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000040)='udf\x00', 0x8007, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)

2m54.285299006s ago: executing program 0 (id=312):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$vim2m(0x0, 0x0, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000240)="7772b9e563d7eb7360c90da7245afe945a9b5746fb4e81e9c8c62646310ddfebde4c2301e7d20f5494799149f889c0f01c7525df84b71f34dd5663e9c7e17ae356c673dcd6160f9176b4ec11b51204d609941222f09988e272d6cc45c6c894a2a2d6d9f6be72cae864804d8d2bef66511599891be26c05a1bbc0449ea5d7ab7b6ee4d217ed7305a3450f3d59e834e6f92adf06ac18373e63f8", 0x99)
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x80000000005, 0x100000001000087}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x14, &(0x7f0000000040)=0x6)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340), &(0x7f0000000280), &(0x7f0000000200), 0x0, 0x0, 0x82})
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f0000000200))
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r2 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r2, &(0x7f0000000040)='FROZEN\x00', 0x7)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0xc0, 0x61)
mount(&(0x7f00000003c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000040)='udf\x00', 0x8007, 0x0)

2m52.765050877s ago: executing program 0 (id=316):
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x100)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000040)={{{@in=@local, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@loopback}}, &(0x7f0000000140)=0xe8)
quotactl_fd$Q_GETNEXTQUOTA(r0, 0xffffffff80000901, r1, &(0x7f0000000180))
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000200), 0x20000, 0x0) (async)
r3 = syz_open_dev$ndb(&(0x7f0000000240), 0x0, 0x2000)
ioctl$BTRFS_IOC_SYNC(r3, 0x9408, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000280), &(0x7f00000002c0)=@v2={0x2000000, [{0x2, 0x2}, {0x7, 0x33b0}]}, 0x14, 0x1) (async)
ioctl$KVM_CAP_DISABLE_QUIRKS(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000300)={0x74, 0x0, 0x20}) (async)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r2, 0xc0c89425, &(0x7f0000000380)={"13d3e4ce4448083f7ac84097bd9cf35d", <r4=>0x0, 0x0, {0x8000000000000001, 0xca}, {0x8, 0x4}, 0x1, [0xfffffffffffffeb1, 0x8, 0x9, 0x9, 0x0, 0x8000000000000001, 0x1, 0x0, 0x3ff, 0x1, 0x2f, 0x6, 0x5b6f, 0xfffffffffffffff8, 0x6, 0xffffffff]})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r3, 0x50009417, &(0x7f0000000500)={{r3}, r4, 0x10, @inherit={0x78, &(0x7f0000000480)={0x1, 0x6, 0x8, 0x5, {0x46, 0x54b5, 0x5, 0x80, 0x5}, [0x6d177e54, 0x10001, 0x80, 0x9, 0x3, 0x0]}}, @subvolid=0x6}) (async)
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x18)
ioctl$KVM_CREATE_GUEST_MEMFD(r5, 0xc040aed4, &(0x7f0000001500)={0x7a, 0xfffffffffffffff9}) (async)
syz_open_dev$video4linux(&(0x7f0000001540), 0x80000000, 0x501500) (async)
r6 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNDEL(r6, 0x400442c9, &(0x7f0000001580)={0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f0000001640)={{r0}, r4, 0x0, @inherit={0x58, &(0x7f00000015c0)={0x1, 0x2, 0x9, 0x0, {0x1, 0x1, 0x0, 0x3, 0x4}, [0x9, 0xfffffffffffffff2]}}, @name="abfaa4ae9e738a4d7fd02b3380768e42d8b17c6a50a3d65f6539eb33236fa30a06f32c348fce8d193adb8a65e6fee277186db80d1ea850c2e5800e58c4afbcde29d5265ca30a2000c1882a5ec19a7724f2c0f07dbed52ab56b1e5327616f8a590b434d4d76806403d628c5ba37d4a594d71bdf72865e1a97b9725b9a1d5fda29baf3ab59bce455af33195418f7b1eda8ecf6059e77af49a20f52363b435f63059fd367b393d7a46b9de788a74ef0fba8137bbfa6e12a10dc646ab03da681b4a0702f0d9ff46c3e60610aa6ada56aee60209e6b290d9b2dc3d49ec2f73d4ab3a0fdd5c56f5fb52580316ff120ced43ea77904e6bdd1292db4d7a7c09ff3c4cf2d6360b7be8ca6df776a0b7ff3f6b86898c1332634d76f7ebab002abcd02acc2a2b5b0b116654e6b3714923b6bc6cd3196a52317c2fb10445c57b8dd73cbd2f191db9cd14dfc8002ec2aedd944ea9da42b67a63a359bf8674bd8cf26e084a5edd0022d986ba942cd77160a20c6ffbc8cac91591afb0b13381ed4a66c83eb563d143bfc87e6aa3698a65e9599d08e83704d35717233fa532587c0abd07262d72dba6e16a727741a5e39430c9e978dee2040377db63de4c212e0bdb68ed77188b9122a1654e56b65220e6ac751026a9fa6db276618dcb1ce1d65e2d2865de02b711f9faa0f51efed276f42bba4b94af3756580b891636534b656ea34a73303dac1f644525a3b470875cd0c3d6d9f40c05130f6bb4ce48124c7535f7bbd8cc4cbe46eb49cd46e99937b378e5838a903561b345fd93983db591cc3c94db2da7ff2cbd4a0311ff2a047b0123daf6a066f87a61620d1353305ba96e64939b8eaf62d2b50260c54d9a82546e61c0302a75712e8c6827e98e80e80a232b1023d4336a3c7929fbd8eaaca982d73f95e0b5382cdcd5681f409a58ffbf87d276ced5d7f4b629a225bce153d1a54e610ea0a910cd9fc1f7b5e9466fd9fd0ca589733ff0718482b8385ca2dbd49c5e8088371c6ac161d902e0988da4386fddc80c6626e6244c861ced3bfd4c1077d507f36eb7d0fcdd45d16a5498700399037c178f7e818adf81538e86c253b0a9f533e73dbf523ff82d57204f83c6558e4da37bd7a1420f460c260045b4050bf84285e052962f6b22b040c1fc5e20ac75750d6504f75f4b7f719092448983900d94e33ba6e80afbe9945d987eef01ccefc87bafe4f5dca3eb50a77d790c2d9e43201f1c82caea35fc5ec844c402c4827e0f6e9c7d1045319b59d763395fe367ab8b6c4ec6d041167396db6b7808aba0ef5842bd7d2d726735fa9f25241062591e8226b00b1d8fa2476c9405d90690ea5652cb636cb8e37faaafe4d13ca3ea9cb17e6d4795d33bc93c5d9859e80d640f5679a8e75065c1ce92a588db5f03310dc2c5c711a96f0f1d292fdd24107ba28e68f3dfc4fa94d553c884274becdbea15f73d443601085d738ee2f92ef2550e74dea5d0acc4b4c7edd12adecc6e964a188674fa189bfe4b3c6cf882878e10d0e6d2567fbe463098e68d2cbaf1c70b5d03136990c7b0a9a69691c77d19a88aecdef57c382daed725b71b5de9734c236f9919c09c4279d901d1c6eacc5c3bb12e7a038917dae54f07987cd798859badabfc45f6e4e2271d45b6f4d1477afb77057533d810477c7ecf6dc3cda9ed5a921d16a21323495dd415fcc8a7f7a288647c1bc77315b23eaa80526749dd59436398f548c8230b8de23a11fc02c7ce6fcd9bf4bfdc8e811bd93d68326659714484b6e6d6961f99ac8892aea3fab4d965a802f095953c85f77163c536db458a15644d47ccd9f2806e1b627515c03a10924ca5d712acb6b765f179d1f6472b45d1ce299ac36f3e07b92f7639b6e40b675a12dea9f64e71603f721297b289e5be84da2148cbea59ee66273d762c6e971f8a371ee6069f81203642248617f555f3ebfc4b96d4395375ecf1171dd4627e29070288fde6bd4c63f3bbd857ddecfb020040cd26cc99697a6104ba3a58cda994e3bc4a1171535bf9e97658c53885739c048f07131a1703b73f776ab902215618dc6c5f0cef2db3183f3a88014d701570beb5f2bf3be68f988d18e07cb12f9e916c07f606f4a754a01bd323c56bd376012e433537702c2b55515cefb0ff0dc1c189e035a64f29438cb71eefc899432fe8f9d8012172cc5547a37723ab21dae11e90b65ea3aa983d6f49518b0d24fa9176c47ce957558fe45c9aa1cab62f8ea1035335dd80047c568e7d8afe08df4fbf6a7a9b20917fbd601adf4e9f4bb79fbdf62a27589a3cabaf54734b7b05fa53aa73eb645d06134ac5822883b5b37911245858ea612a4ca4d6182ab4def838a33eeccf512b0f62d0c5d8623ee8455050647912e127af8d3c47bfbb09fb475713bf609030bf6d8b121b0c93900cfa9ca5af1c26e16dfc9f5244b29e552e7606eba4a24c4bf568dd7b602ce1310c4efc09dc5131dd20064843c174e784b15d5459b52a4f08043bfdd9997bbd619a18a6b34e717833c8691f9073a7c420cab37ea8fb1c53a706e7c96262a160dd0bb87090f5a84d65e3d8a4888e83e233d99af4ff34348229ab976bcda3cb417373771fecc8f13450619933d4010025d80a0d1c88ffe5981a2ca4162405f3170029a203941925127d8bb636bc43679c3303d6270d19c36a776f25742f2c0d6fe5b090c634643cc0914b7fa2da023b83a265ac0a9466f626728534897abc8f3790ee95dc441a88ff9e0b115dd431055a74d6aacf361ef9434429f389d72aade6e87017a5ee234997bf16c60d0c32514ec81624fff2a98b0862783225e2c821a3b56302e87514aba4c539dc2619df53e8c998ea2be70bec91fef3ecafb1ce3289a1bf1a1afdee98e69929858f59c382f21636c29e1a5f42f07f56d2701347a31f3ed9ccd4d4c1c788b2a3e6057c7aa1dbe8ee49289601a45e40251fcf24210b9cd2b08aca8390a04c7830a04ec06dbf9e7538ef4a85ede7446997e1c56f39626d0589090aee4a79d5ddb06bcd69b0cd01f6d8c2e5238d130d239efe828bf3f6decfee35b1081bba79c92b19cdb19e756eeae2d58b67ab38b9a9e890ff97269ced4e68952abba7ba2bf40299b0d0093a1a35a9cdd59bae9514203f7adebdff0043e9c08e3a8d3c4910abee569f292b9de951fe7a6b50620ebde4b53a10d29e6ad4f47b9f36145af275798cc4e6fbfae2e682adabb61751d3fcdfd4acbcebe24192d10ee94a90502ecdc9ae7128e761793c74e9162dda5e8ed9a606a497aa5667130f10d3784d3676345e7be624c4c5e5f84da4d0a879770e138e2b815175a96bd2d837da4304e733718e466d6390a918805e2004d47fbdefa840b43e79e84c2b21388def9298f7662b0cd2a7723906fd9327b907a2060aae20dcc579de300b11aa0dbf5953dadbca78e10c3387010fe62ab85ad334f53cade4255096d7617cdfe8d26202c25468df891b432c74f0974c64e74b751e2a914fd448a828bdb6c3103a33d7ad61fec0b1029fe6663712158b4357cfe78b5440a6c08fd15285cb368b83a9e2b4aedf8d229ff9546804130e120d4aa086239d0a7174fabe163f938b3283d52879efd0905171f7e12280fdf13cc6697bde2f6989a372e7bd285843955861bc8c8f045113f63de06c03b0c9fba52f392400c621c83ee8bc9091c8fcf6799b6b508d45cd252bd35d5a419b30c982257bc263b15ee17932757af61f31c322ba4f684af2c318a478c1d643884d6b3e4167fb2c09f1ebf7e571df52cac9dc262c6ce49ddc63dd8350c4b2caf658d1d70a8856d7ef657f3a1a9e00cb67b81cacb8db331566d595791614c5af5745211b5521c1bc98b04bad49110d089bae62f451edf0566368a4672d94b475826e83d5171306bcd0ef01cdd4a19e68f23b08f44b219d80ffa70eca7feb999f141430a576768f7e2c4a0846dc889a53ff3aafeb5075dfdb31db57367587946ee648cd95682d92fe158e65b471b172cfe0700e452686e7a65b6ba2aa5f614e5c5173e18eba5026f7df665fc1eaf31a8cd64f34d0a9aac86a2521244db87571779dc3dfdd0c390716a4a7a121fba7fa173d7d725c5334551cf4118daf32d0f6a3dd80bb0fa7935586155141e24a7f766dfdeea48e4d623b7369306810565158041790afd473d14d9d175371e1017c461430afb4b4bf3252a9dcc6a8f0c8610b745c00c09cfae8d0179524b54dc9da534f8793704243d3016445801666ba1bb87f31929bf62c1af5925c6e06c543e31e82a59d802de2c66c6a97bcb97aaed0d5257a021123ac9604c2862c44e2ffc07270f080f41987e87941d2852991621fb50f54968714d2abeafe05d32b2b8f2db04225b95907d94fcaf4fcd63f78545827b9d1f5fb419cf67e730aac02732a20b3d417980f65389d14d5d76c98ffbb3f5b2e9fe451422b4a20fc072f929938768bb11b28f663a224b2e6f744f91329ecca7b052eba48b5df0274768db50096f0094ee772d91ccc341269d729478fd2a6832737e993c3b771630195317f40ccf6e311010e0a4b3fc46e835a4c7f453e6bcde1550a31da2081a61408ce4feb7633571aa62f337aec6333d2dabdc92e1f901deb9cf2d1b1ba4f0f0b563187fbd8896e73391dc8c86300b8d20629f16799f6ae04db77749aa639ae5bc016e6c418afac4cdd86aeda0eefab6ba81ba56b07b57fd9c6219c494b499501f21e3262a26f1840adb79ad902c2f25e56aa4a48c0339342b0a99e702ad00cabd3fe941419e2c119e4eafa36733a777e2a0976725ec3cfd7f8584d85ebb81b411fdfa3658855935a694fdfb1b80b2562c75e561820cce571f9d8ce6e814522c8656cf97ac4acacbaeb0363d0cfad856dd019281461d54c6ac2d901837cf32bf1c036fb2272fd2369666cca3d6e8fdb9822b97f27b64e6e80d4e0eb167446eb033afb6e7aed3882fb5ed756950e759eaa25866d72bc6cd724ab512edb0e41f949242c9003ad860e0bca31711f13e5b2684bbe41ee4d209d7613e8e23ca9a0adc025881af2e3e01aeea4803c23dd08d38b127917af251423f85d9e23a9c2def740905d697f355b05077d3673e02c5cbdea921874ec8e6aee59e349bdb6f3f8655ebc5d7f8e2bdec648d030d77136873a94588d7942f4ff083b1c061ea6dc780cfd9a7eec6642d144b058ec71c56e5509edc6397115753d54e7e0e064b26d92f92b45f289d535d11f0b3b52e097be5c3a1f9ea4d54dd2fc568ea0e65500c74e208019e29c523525b953f2c24e3a2091c9035e6936b661de2bc34db7aee5879f7bd2b7c552b7ae41ff79a9db448d4b272dd248241e9857b7a3882a09101c6410fa0527ea870462c5abcea7847dfb0f20abc0726bac72ba30ad35f55e05388086f757a9bb0f1ed530419e841e2411f10833f80ca4cd496ea1c17fe8d66a5cb5731cec4952548de27c3eca279119001cf6a1c1fe598b790f533691fa4ee82e2f2b58041c2a045d75fcee2767ac1210c7acca7b88adb51984d9d3a1c044cb8daad4e30abb4f5181f2914bd5b1cad01d8687e3a5194fd9f42bc2bb0ae1f535bd1f0366fbfc08ac13749d8e029f7bc967756ff14fd5803b4a18d913cfb4c9c30b77baf81e1e32c8ff3094063b69ab2cc83b4ebc5a898064eb25f4fda1ac305829e24bd2d8e301cecf0bf52885132d7956e0acf243311ddd738483b3e9526849c5d27dff934f41aee33504629e9b9de"}) (async)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r7, 0x84, 0xc, &(0x7f0000002640), &(0x7f0000002680)=0x4)
setreuid(r1, r1) (async)
quotactl_fd$Q_GETNEXTQUOTA(r6, 0xffffffff80000901, 0xee00, &(0x7f00000026c0))
ioctl$sock_inet_SIOCGIFNETMASK(r7, 0x891b, &(0x7f0000002740)={'veth1_to_hsr\x00', {0x2, 0x0, @broadcast}}) (async)
socket$inet_sctp(0x2, 0x1, 0x84) (async)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r3, 0x29, 0x45, &(0x7f0000002780)={'ipvs\x00'}, &(0x7f00000027c0)=0x1e) (async)
syz_open_dev$video4linux(&(0x7f0000002800), 0x3, 0x80000)
truncate(&(0x7f0000002840)='./file0/file0\x00', 0x5) (async)
r8 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000002880), 0x400000, 0x0)
ioctl$FUSE_DEV_IOC_BACKING_OPEN(r8, 0x4010e501, &(0x7f00000028c0)) (async)
write(r8, &(0x7f0000002900)="1f4009c3b0992b25f50ab8775bdfe38cf22317841f940484c56c975f6b7cc6ab5468e1e05b68eec39a9125417340c60dd096577dfd6f9e9d83835caf30354939eef4c330ff8121c9d9e48149f71df8b831374e09ea12dfa69a8bcbab2341e93032330e5d3388ca73e70d54e240ffd8ba0e7cb41a51303344ed6df53d081075cbd7b01c3fc8fdf86ce5393020377722579c739676bdf99bc49452cf9bb47e69678486e99417b47fdd6b2319b0107699c43545ed8a3fe930b393d5ed17cdd91cfb1f710346bc9b3e56d79a4b0dd1f4adb1fb16e9c592e1ba36aa957d850c0e2e4d0b12a8ce581899e4fc6dd8dfbce7285b2b47", 0xf2) (async)
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x14) (async)
setsockopt$inet_tcp_TLS_TX(r8, 0x6, 0x1, &(0x7f0000002a00)=@ccm_128={{0x304}, "a9ffd19684f3a1e8", "5d88123ed6596a36a227a7775974bb3d", "5e825a1c", "18a637c852edf553"}, 0x28)

2m52.440519111s ago: executing program 0 (id=319):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x1808704, &(0x7f0000000500), 0xfd, 0x49f, &(0x7f0000000a40)="$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")
creat(&(0x7f0000000300)='./bus\x00', 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x401, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4, 0xffffffffffffffff]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0x88080, 0x0)
getdents64(r1, 0x0, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110c230041)
ioctl$TUNDETACHFILTER(r2, 0x4004743c, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x3a)
flock(r3, 0x5)
r4 = openat(r3, &(0x7f0000000040)='.\x00', 0x0, 0x4)
getdents64(r4, &(0x7f0000000840)=""/4096, 0x1000)
ioctl$IOMMU_VFIO_IOAS$GET(0xffffffffffffffff, 0x3b88, &(0x7f0000000000)={0xc, <r5=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r4, 0x3ba0, &(0x7f0000000040)={0x48, 0x2, r5, 0x0, 0x0, 0x0, 0x0, 0x1})

2m47.823608705s ago: executing program 0 (id=329):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x0, 0x20}, 0xc)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000200), &(0x7f00000003c0)=r3}, 0x20)
r4 = syz_open_procfs(0x0, &(0x7f0000000680)='cmdline\x00')
preadv(r4, &(0x7f0000000300)=[{&(0x7f0000000040)=""/3, 0x3}, {0x0, 0x3}], 0x2, 0x0, 0x0)
setsockopt$inet6_icmp_ICMP_FILTER(r4, 0x1, 0x1, &(0x7f0000000080)={0x99}, 0x4)
syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000540)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f00000008c0)="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", 0x282}], 0x1}}], 0x1, 0x60cd894)
ioctl$KVM_GET_MSRS_cpu(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000380)={0x21, 0x0, [{0x298, 0x0, 0x100}]})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000280)={0x73622a85, 0x110b, 0x8000000000002})
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0xffffffffffffff61, 0x0, 0x0})
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r6, 0x10000000000)

2m46.210890971s ago: executing program 0 (id=335):
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000001280), 0x0)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000280), 0x40000, 0x0)
ioctl$RTC_ALM_SET(r3, 0x40247007, &(0x7f00000002c0)={0x14, 0x10, 0x3, 0xb, 0x4, 0x2, 0x3, 0x84, 0x1})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000080)='bbr\x00', 0x4)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r4, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f00000002c0)=';', 0x1}], 0x1}}], 0x1, 0x10)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x20, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xe, 0x49}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x400c001}, 0x40480b0)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, 0x0, 0x0)
socket(0x1e, 0x5, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000140)={0x7, 0x1, 0x2})

2m44.554993409s ago: executing program 32 (id=335):
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000001280), 0x0)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000280), 0x40000, 0x0)
ioctl$RTC_ALM_SET(r3, 0x40247007, &(0x7f00000002c0)={0x14, 0x10, 0x3, 0xb, 0x4, 0x2, 0x3, 0x84, 0x1})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000080)='bbr\x00', 0x4)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r4, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f00000002c0)=';', 0x1}], 0x1}}], 0x1, 0x10)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x20, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xe, 0x49}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x400c001}, 0x40480b0)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, 0x0, 0x0)
socket(0x1e, 0x5, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000140)={0x7, 0x1, 0x2})

1.688652542s ago: executing program 5 (id=1969):
r0 = syz_pidfd_open(0x0, 0x0)
process_madvise(r0, &(0x7f0000000240)=[{&(0x7f0000000100)="f6", 0x1}], 0x1, 0x12, 0x0)

1.524714373s ago: executing program 5 (id=1974):
syz_io_uring_setup(0x1a1d, &(0x7f0000000400)={0x0, 0x63dc, 0x800, 0x3, 0x2c7}, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r1=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="31032abd7000000000000900000008000300", @ANYRES32=r1, @ANYBLOB="080006"], 0x24}}, 0x0)

1.427933718s ago: executing program 3 (id=1977):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
rseq(&(0x7f0000000180)={0x0, 0x0, 0x0, 0x5}, 0x20, 0x0, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x0)

1.223593896s ago: executing program 3 (id=1980):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r1}, 0x18)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)

1.131055412s ago: executing program 2 (id=1982):
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r0 = socket$inet6(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00'}, 0x18)
sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

1.112474988s ago: executing program 5 (id=1983):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
fgetxattr(r0, &(0x7f0000000000)=ANY=[], 0x0, 0x0)

1.030550023s ago: executing program 4 (id=1984):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
process_madvise(r1, 0x0, 0x0, 0x12, 0x0)

1.02904242s ago: executing program 3 (id=1985):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="31832abd70000000000019000000180001801400020065727370616e30"], 0x2c}, 0x1, 0x0, 0x0, 0x50}, 0x4886)

989.646437ms ago: executing program 5 (id=1986):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000220000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)

988.65261ms ago: executing program 1 (id=1987):
r0 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2000)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SG_IO(r1, 0x2285, 0x0)

934.152916ms ago: executing program 2 (id=1988):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001300)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x1, 0xb}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_CT_STATE={0x6, 0x5b, 0x2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x81}, 0x800)

915.687649ms ago: executing program 3 (id=1989):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000140), &(0x7f0000000040)='%pI4   \x00'}, 0x2a)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
socket$packet(0x11, 0xa, 0x300)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

885.412522ms ago: executing program 1 (id=1990):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
fgetxattr(r0, &(0x7f00000000c0)=@random={'system.', '\x00'}, &(0x7f0000000100)=""/192, 0xc0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
gettid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x56, &(0x7f0000004180)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x20, 0x6, 0x0, @local, @local, {[], {{0x8000, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x2, 0x100, 0x0, 0x0, {[@sack_perm={0x4, 0x2}, @exp_fastopen={0xfe, 0xa, 0xf989, "f16d73c0e798"}]}}}}}}}}, 0x0)
sendmsg$NL80211_CMD_GET_WIPHY(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)={0x30, 0x0, 0x301, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x10}, @val={0x8}, @val={0xc, 0x99, {0x2, 0x8}}}}}, 0x30}}, 0x44)

807.051047ms ago: executing program 4 (id=1991):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b703000000030000850000001b000000b700000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004a80)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010328bd7000fbdbdf251c0000002000018008000100", @ANYRES32=r4, @ANYBLOB="140002"], 0x34}}, 0x2404c816)

768.307903ms ago: executing program 1 (id=1992):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="070000000400000008000000d9"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000001000080000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000380)={<r3=>0xffffffffffffffff}, 0x2, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0xfffe, 0x0, @empty, 0x4}, {0xa, 0x0, 0x0, @loopback, 0xfffffffc}, r3, 0x400}}, 0x48)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r2, &(0x7f0000000d40)={0x16, 0x98, 0xfa00, {0x0, 0x2, r3, 0x30, 0x1, @ib={0x1b, 0x8000, 0xfff, {"3f8c0d6cf777eaa6ace6d3ec00ed4771"}, 0x500e, 0x0, 0x5}}}, 0xa0)

767.076856ms ago: executing program 4 (id=1993):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$TIOCL_BLANKSCREEN(r2, 0x4b67, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r5}, 0x9)
sendmsg$nl_route_sched(r3, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000001180)=@newtaction={0x88c, 0x30, 0x12f, 0x0, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x7, 0x2, 0x2, 0x0, 0x0, 0x7}, 0x1}}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x247ecded, 0x0, 0x80000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x3, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803, 0x0, 0x0, 0x0, 0x0, 0x4, 0x3, 0xfffffffc, 0xd2e, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0xb, 0x37, 0x4, 0x0, 0x0, 0xfffffff5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0xffffff35, 0x0, 0x0, 0x4, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x80000000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0xb, 0x0, 0x0, 0x9, 0xfffffffd, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x4271, 0x40000000, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xa, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xf566, 0x100000, 0x0, 0xfffffff1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, 0x5, 0x0, 0x0, 0xffffffff, 0x9, 0x5, 0x0, 0x0, 0x3, 0x10000, 0x1]}, @TCA_POLICE_RATE={0x404, 0x2, [0x1, 0x0, 0x5, 0x0, 0x7, 0xb, 0xfffffffb, 0x0, 0x7, 0xfea7, 0x1, 0xffff8000, 0x890, 0x9fd, 0x2, 0xb8, 0xca2, 0x6, 0x3c, 0x7, 0x1, 0xa89c, 0x400, 0xc, 0x492217a0, 0xff, 0x5, 0x3, 0x1ff, 0xe5, 0x2d, 0xd, 0x3, 0xa, 0x3, 0x1, 0x9, 0x11, 0x188, 0x6, 0x3ff, 0x7, 0xd, 0x3, 0xc0001, 0x8, 0x8, 0xffffff40, 0x100, 0x3, 0x5, 0x7, 0xe0b2, 0x1, 0x8fc, 0xbf0, 0x9, 0x3, 0x9, 0x7ffffffd, 0x8, 0x0, 0x8, 0x800, 0x9, 0x4, 0x100, 0x401, 0x8, 0x3, 0xb5, 0x10001, 0x401, 0x1, 0x7f, 0x0, 0x8, 0x2, 0x7f, 0x0, 0x4, 0x4, 0x0, 0x1000004, 0x8000, 0x0, 0x9, 0x80, 0x7, 0x5, 0x1, 0x0, 0x2000007, 0xeb22, 0xd, 0x8000, 0xfffffff7, 0x0, 0x4, 0x3ff, 0x8400000, 0x10, 0x5, 0x3, 0x10000, 0x3, 0x1, 0x0, 0x2, 0x6, 0x5, 0x6, 0xe5a, 0x4, 0x2, 0x84, 0xd44, 0x9, 0x6, 0x7fff, 0x800, 0xfffffff4, 0x10000, 0x5, 0x8, 0xba, 0x2, 0x89, 0x2, 0x6, 0x6, 0x9, 0xffffa3e0, 0x86b9, 0x40ff, 0x1, 0x2, 0x7, 0x24b9, 0x3a, 0xe01, 0x1, 0x6430, 0xd, 0x8, 0x0, 0x3, 0x7eb6, 0x3, 0x0, 0x200, 0xfffffeff, 0x9, 0xff, 0xa, 0x100, 0x7, 0x100, 0x1, 0x8001, 0x100, 0xffff9c71, 0x8, 0x101, 0x6, 0x2, 0xfffffc00, 0x81, 0x81, 0x200, 0x80000001, 0x1, 0xfffffffd, 0x9, 0x7, 0x4, 0xb, 0x80, 0x0, 0xfffffffe, 0x0, 0x5, 0x2, 0x61, 0x40, 0xfffffa0c, 0x3, 0x0, 0x2, 0x4, 0x35bc0, 0x9, 0xfffffffa, 0x7, 0x5, 0x3, 0x0, 0x6, 0x8, 0x28, 0x2, 0x5, 0x10001, 0x2, 0xf, 0xffffffff, 0x1, 0x5, 0x0, 0x9, 0x9, 0x4, 0x6, 0x7, 0x200, 0xfffffbff, 0x7, 0x3, 0x8, 0x5, 0xfffffffb, 0x2, 0x7f, 0x2, 0x80000002, 0x0, 0x93e4, 0x1ff, 0xfffffffd, 0x928, 0x4, 0xffffffff, 0x5, 0x6042, 0xb85, 0x6, 0x8d8d, 0x55, 0x101, 0x3, 0x64e8, 0x8, 0x82f, 0x772, 0x80a, 0xffe, 0x6, 0x3f7, 0x4, 0x8, 0x8, 0x1, 0x5d, 0x9, 0xd, 0x80]}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x3}}}}]}]}, 0x88c}, 0x1, 0x0, 0x0, 0x50}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket(0x10, 0x3, 0x9)
capset(0x0, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$PIO_UNIMAPCLR(r6, 0x4b68, 0x0)

687.010726ms ago: executing program 5 (id=1994):
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_io_uring_setup(0x24fe, &(0x7f0000000300)={0x0, 0xf36e, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='='], 0x38}}, 0x80)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000540)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x100000d, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x10, 0x0, @fd_index=0x8, 0xfff, 0x0, 0x6, 0x0, 0x1})
io_uring_enter(r0, 0x6686, 0x2936, 0x28, 0x0, 0x0)

614.149644ms ago: executing program 5 (id=1995):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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")

478.348055ms ago: executing program 2 (id=1996):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, 0x0, &(0x7f0000000100))

430.983815ms ago: executing program 1 (id=1997):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$netlink(0x10, 0x3, 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='dctcp\x00', 0x6)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='westwood\x00', 0x9)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x0, 0x0, 0x7fffffff}}}}]}, 0x4c}}, 0x0)
shutdown(r0, 0x2)

430.609569ms ago: executing program 4 (id=1998):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet6(r0, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="b005000000000000290000003600000000b2"], 0x5b0}, 0x20008001)
sendmsg$inet6(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000600)="e5f1fddfe175759743a2d6055bef6ad67f4806ff6ac3a93555c1b5b84294df29b09e92680ca8bd3dc842c3147716237f0ad0c3ab59f41083aeb894e76f3c7fc753f2fca40d24553fdd9396171c35ecfd0932f37aa306040bd37f78526b319e572be0ae8b40f01b3835c385e789683bed9c65ccd19545b738fb470ef7c7247c631882fe3cee1ad627ad729a685446e0c1b6ca16a98bececc6ed604084f0de672a6143", 0xa2}, {&(0x7f0000001840)="fa4930e2f7feb52241e739006ef78c0aeb4dd989f1bf69e01e4eb4bb743569e49e3db4ab502ed6980a5794e38f83ba0c77252adc9d177719cb1f7991ee501ad1ff9d69f88d4bb7a70b76402fd5b363", 0x4f}, {&(0x7f0000000840)="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", 0xa83}], 0x3}, 0x20000044)

365.574435ms ago: executing program 3 (id=1999):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18000, &(0x7f0000000240)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES16=0x0, @ANYRES32, @ANYBLOB="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", @ANYRESOCT], 0x8, 0x2f6, &(0x7f0000000880)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x80}}, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=ANY=[@ANYRES16, @ANYRES32=0x0, @ANYBLOB="97020000000000005c00128009000100626f6e64000000004c00028008000a00000000001800088000000000e00000017f00000164010102000000000500010000000000080007"], 0x8c}}, 0x0)
write$tun(r1, &(0x7f0000000280)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x16, 0x0, 0x14}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0xb, 0x0, 0x0, 0x0, 0x18, {[@window={0x9, 0xfffffffffffffec4}, @timestamp={0x5, 0x2}, @generic={0x0, 0x2, "d58838068b91"}]}}}}}}, 0xfd6c)

327.94431ms ago: executing program 2 (id=2000):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="31832abd70000000000019000000180001801400020065727370616e30"], 0x2c}, 0x1, 0x0, 0x0, 0x50}, 0x4886)

316.72675ms ago: executing program 4 (id=2001):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x599, &(0x7f0000001280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000740)='./file1\x00', 0x183042, 0x15)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{0x0}], 0x1, 0xe7b, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x800000009)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c)

251.195798ms ago: executing program 1 (id=2002):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
process_madvise(r1, 0x0, 0x0, 0x12, 0x0)

199.734057ms ago: executing program 2 (id=2003):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
fgetxattr(r0, &(0x7f00000000c0)=@random={'system.', '\x00'}, &(0x7f0000000100)=""/192, 0xc0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
gettid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x56, &(0x7f0000004180)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x20, 0x6, 0x0, @local, @local, {[], {{0x8000, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x2, 0x100, 0x0, 0x0, {[@sack_perm={0x4, 0x2}, @exp_fastopen={0xfe, 0xa, 0xf989, "f16d73c0e798"}]}}}}}}}}, 0x0)
sendmsg$NL80211_CMD_GET_WIPHY(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)={0x30, 0x0, 0x301, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x10}, @val={0x8}, @val={0xc, 0x99, {0x2, 0x8}}}}}, 0x30}}, 0x44)

186.023614ms ago: executing program 1 (id=2004):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
r2 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fb, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000080)=@urb_type_control={0x2, {}, 0xfffffff8, 0x40, &(0x7f0000000000)={0x20, 0xc, 0xb, 0xfffd}, 0x8, 0x3, 0x8, 0x0, 0x2, 0x20000, 0x0})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

49.168009ms ago: executing program 2 (id=2005):
r0 = syz_io_uring_setup(0x24fe, &(0x7f0000000300)={0x0, 0xf36e, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x10, 0x0, @fd_index=0x8, 0xfff, 0x0, 0x6, 0x0, 0x1})
io_uring_enter(r0, 0x6686, 0x2936, 0x28, 0x0, 0x0)

7.164347ms ago: executing program 4 (id=2006):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000380)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000280)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)

0s ago: executing program 3 (id=2007):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
creat(0x0, 0xecf86c37d53048fc)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$RTC_UIE_ON(r0, 0x7003)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000040)={0x4, 0xc, 0x4, 0x5, 0x6, 0xa9, 0x3, 0xb2, 0x1})

kernel console output (not intermixed with test programs):

 nr_sectors = 8 limit=128
[  251.146833][ T6602] kworker/u8:9: attempt to access beyond end of device
[  251.146833][ T6602] loop4: rw=1, sector=193, nr_sectors = 8 limit=128
[  251.177778][ T6602] kworker/u8:9: attempt to access beyond end of device
[  251.177778][ T6602] loop4: rw=1, sector=209, nr_sectors = 8 limit=128
[  251.641615][ T6602] kworker/u8:9: attempt to access beyond end of device
[  251.641615][ T6602] loop4: rw=1, sector=225, nr_sectors = 8 limit=128
[  251.675163][ T6602] kworker/u8:9: attempt to access beyond end of device
[  251.675163][ T6602] loop4: rw=1, sector=241, nr_sectors = 8 limit=128
[  251.675284][ T6602] kworker/u8:9: attempt to access beyond end of device
[  251.675284][ T6602] loop4: rw=1, sector=257, nr_sectors = 8 limit=128
[  251.675392][ T6602] kworker/u8:9: attempt to access beyond end of device
[  251.675392][ T6602] loop4: rw=1, sector=273, nr_sectors = 8 limit=128
[  251.675499][ T6602] kworker/u8:9: attempt to access beyond end of device
[  251.675499][ T6602] loop4: rw=1, sector=289, nr_sectors = 8 limit=128
[  251.833764][ T7429] 8021q: adding VLAN 0 to HW filter on device batadv0
[  253.761915][ T7817] loop4: detected capacity change from 0 to 131072
[  253.777527][ T7817] F2FS-fs (loop4): Test dummy encryption mode enabled
[  253.829124][ T7817] F2FS-fs (loop4): invalid crc value
[  253.938571][ T7817] F2FS-fs (loop4): sanity_check_inode: corrupted inode ino=3, wrong feature flag: 16, run fsck to fix.
[  253.973228][ T7817] F2FS-fs (loop4): Failed to read root inode
[  254.933484][ T7429] veth0_vlan: entered promiscuous mode
[  254.970092][ T7429] veth1_vlan: entered promiscuous mode
[  255.108454][ T7429] veth0_macvtap: entered promiscuous mode
[  255.152876][ T7429] veth1_macvtap: entered promiscuous mode
[  255.220736][ T7429] batman_adv: batadv0: Interface activated: batadv_slave_0
[  255.314908][ T7429] batman_adv: batadv0: Interface activated: batadv_slave_1
[  255.343502][   T57] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  255.384657][   T57] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  255.508919][   T57] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  255.547500][   T57] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  255.661481][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  255.668201][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  255.838497][ T6602] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  255.846345][ T6602] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  255.987467][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  255.995337][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  256.273112][ T7897] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  256.391221][ T7897] wlan1: No basic rates, using min rate instead
[  256.409416][ T7897] wlan1: authenticate with aa:09:b7:99:c0:d7 (local address=08:02:11:00:00:01)
[  256.449267][ T7897] wlan1: send auth to aa:09:b7:99:c0:d7 (try 1/3)
[  256.518566][ T7904] wlan1: aborting authentication with aa:09:b7:99:c0:d7 by local choice (Reason: 3=DEAUTH_LEAVING)
[  256.929341][   T30] audit: type=1326 audit(1757541717.634:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7923 comm="syz.3.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  256.985725][   T30] audit: type=1326 audit(1757541717.664:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7923 comm="syz.3.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  257.002819][ T7926] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  257.096915][   T30] audit: type=1326 audit(1757541717.664:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7923 comm="syz.3.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  257.098731][   T30] audit: type=1326 audit(1757541717.664:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7923 comm="syz.3.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  257.098780][   T30] audit: type=1326 audit(1757541717.664:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7923 comm="syz.3.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  257.098823][   T30] audit: type=1326 audit(1757541717.664:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7923 comm="syz.3.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  257.098866][   T30] audit: type=1326 audit(1757541717.664:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7923 comm="syz.3.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  257.098914][   T30] audit: type=1326 audit(1757541717.664:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7923 comm="syz.3.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  257.098956][   T30] audit: type=1326 audit(1757541717.664:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7923 comm="syz.3.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  257.099000][   T30] audit: type=1326 audit(1757541717.664:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7923 comm="syz.3.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  257.322462][ T7939] netlink: 56 bytes leftover after parsing attributes in process `syz.3.461'.
[  257.592542][ T7945] netlink: 12 bytes leftover after parsing attributes in process `syz.1.464'.
[  257.766034][ T7951] pim6reg1: entered promiscuous mode
[  257.766285][ T7951] pim6reg1: entered allmulticast mode
[  259.683506][ T7988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.478'.
[  259.763231][ T7993] tipc: New replicast peer: 255.255.255.255
[  259.770529][ T7993] tipc: Enabled bearer <udp:s>, priority 10
[  260.750850][ T8011] loop5: detected capacity change from 0 to 4096
[  260.779136][ T8011] EXT4-fs: Ignoring removed nomblk_io_submit option
[  261.011108][ T8011] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  261.360176][ T8035] loop2: detected capacity change from 0 to 512
[  261.404540][ T8035] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  261.504706][ T8035] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  261.607723][ T8035] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  261.637351][ T8035] EXT4-fs (loop2): 1 truncate cleaned up
[  261.698801][ T8035] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  261.816303][ T8044] loop4: detected capacity change from 0 to 1024
[  261.923468][ T8044] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  261.947356][ T8044] ext4 filesystem being mounted at /107/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  262.004210][ T5861] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.133322][   T30] kauditd_printk_skb: 82 callbacks suppressed
[  262.133339][   T30] audit: type=1800 audit(1757541722.834:105): pid=8044 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.495" name="file1" dev="loop4" ino=15 res=0 errno=0
[  262.190310][ T8044] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: comm syz.4.495: lblock 0 mapped to illegal pblock 0 (length 6)
[  262.257835][ T8044] EXT4-fs error (device loop4): ext4_ext_remove_space:2955: inode #15: comm syz.4.495: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  262.336163][ T8057] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: comm syz.4.495: lblock 0 mapped to illegal pblock 0 (length 1)
[  262.435682][ T8057] EXT4-fs error (device loop4): ext4_ext_remove_space:2955: inode #15: comm syz.4.495: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  262.859085][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  263.323678][ T8077] netlink: 'syz.3.502': attribute type 4 has an invalid length.
[  263.338456][ T8077] netlink: 17 bytes leftover after parsing attributes in process `syz.3.502'.
[  263.605819][ T8086] loop1: detected capacity change from 0 to 128
[  263.875042][   T30] audit: type=1800 audit(1757541724.514:106): pid=8087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.503" name="file1" dev="loop1" ino=1048612 res=0 errno=0
[  264.240159][ T8085] syzkaller1: entered promiscuous mode
[  264.245667][ T8085] syzkaller1: entered allmulticast mode
[  264.532868][ T8096] loop3: detected capacity change from 0 to 512
[  265.197203][ T8115] program syz.3.512 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  266.561978][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.757062][   T30] audit: type=1326 audit(1757541727.444:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.2.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  266.891202][   T30] audit: type=1326 audit(1757541727.444:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.2.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  267.427622][ T8171] loop5: detected capacity change from 0 to 512
[  267.453636][ T8171] EXT4-fs: Ignoring removed bh option
[  267.497066][ T8171] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  267.539725][ T8171] EXT4-fs (loop5): 1 truncate cleaned up
[  267.600782][ T8171] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  267.685920][   T30] audit: type=1326 audit(1757541728.384:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  267.727504][   T30] audit: type=1326 audit(1757541728.414:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f60fc58d510 code=0x7ffc0000
[  267.785300][   T30] audit: type=1326 audit(1757541728.414:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  267.900792][   T30] audit: type=1326 audit(1757541728.414:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  267.954055][   T30] audit: type=1326 audit(1757541728.424:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=8 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  267.976368][   T30] audit: type=1326 audit(1757541728.434:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  268.000509][   T30] audit: type=1326 audit(1757541728.434:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  268.076913][ T8187] lo speed is unknown, defaulting to 1000
[  268.100228][ T8187] lo speed is unknown, defaulting to 1000
[  268.121946][ T8187] lo speed is unknown, defaulting to 1000
[  268.666814][ T8181] loop1: detected capacity change from 0 to 1024
[  268.697886][ T8181] EXT4-fs: Ignoring removed bh option
[  268.703334][ T8181] EXT4-fs: inline encryption not supported
[  268.754489][ T8181] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  268.755987][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.862675][ T8187] infiniband s
z1: set active
[  268.867670][ T8187] infiniband s
z1: added lo
[  268.875866][ T8187] s
z1: rxe_create_cq: returned err = -12
[  268.882073][ T8187] infiniband s
z1: Couldn't create ib_mad CQ
[  268.889461][ T8187] infiniband s
z1: Couldn't open port 1
[  268.905743][ T5958] lo speed is unknown, defaulting to 1000
[  268.920262][ T8181] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  268.931373][ T8187] RDS/IB: s
z1: added
[  268.935853][ T8187] smc: adding ib device s
z1 with port count 1
[  268.942542][ T8187] smc:    ib device s
z1 port 1 has no pnetid
[  268.954746][ T8187] lo speed is unknown, defaulting to 1000
[  268.967195][ T5958] lo speed is unknown, defaulting to 1000
[  268.985653][ T8181] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.533: lblock 2 mapped to illegal pblock 2 (length 1)
[  269.063682][ T8181] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  269.087121][ T8181] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.533: lblock 0 mapped to illegal pblock 48 (length 1)
[  269.116587][ T8181] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  269.127209][ T8181] EXT4-fs error (device loop1): ext4_acquire_dquot:6943: comm syz.1.533: Failed to acquire dquot type 0
[  269.149616][ T8181] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  269.181850][ T8181] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.533: mark_inode_dirty error
[  269.213974][ T8181] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  269.253712][ T8181] EXT4-fs (loop1): 1 orphan inode deleted
[  269.460412][ T6920] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:10: lblock 1 mapped to illegal pblock 1 (length 1)
[  269.477284][ T8187] lo speed is unknown, defaulting to 1000
[  269.503410][ T8181] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  269.527387][ T6920] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  269.550920][ T6920] EXT4-fs error (device loop1): ext4_release_dquot:6979: comm kworker/u8:10: Failed to release dquot type 0
[  269.677342][ T8181] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.533: lblock 0 mapped to illegal pblock 48 (length 1)
[  269.699182][ T8187] lo speed is unknown, defaulting to 1000
[  269.761698][ T8181] ext4: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿ18446744073709551615ÿÿÿÿš@­LqE�:†‹� á艞Õt}²0ü�$‰'
[  269.923961][ T5868] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.932457][ T8187] lo speed is unknown, defaulting to 1000
[  270.192865][ T8208] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  270.230355][ T8212] netlink: 16 bytes leftover after parsing attributes in process `syz.5.545'.
[  270.375935][ T8187] lo speed is unknown, defaulting to 1000
[  271.036035][ T8223] loop3: detected capacity change from 0 to 1024
[  271.062879][ T8223] EXT4-fs: Ignoring removed nobh option
[  271.077824][ T8223] EXT4-fs: Ignoring removed bh option
[  271.160132][ T8223] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  271.405044][ T5859] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.461291][ T8198] infiniband !yz!: set active
[  271.466013][ T8198] infiniband !yz!: added team_slave_0
[  271.487790][ T8198] !yz!: rxe_create_cq: returned err = -12
[  271.523030][ T8198] infiniband !yz!: Couldn't create ib_mad CQ
[  271.537170][ T8198] infiniband !yz!: Couldn't open port 1
[  271.662940][ T8198] RDS/IB: !yz!: added
[  271.677970][ T8198] smc: adding ib device !yz! with port count 1
[  271.684179][ T8198] smc:    ib device !yz! port 1 has no pnetid
[  272.239625][ T8254] loop4: detected capacity change from 0 to 128
[  272.570318][ T8259] loop3: detected capacity change from 0 to 128
[  272.594272][ T7119] bio_check_eod: 102 callbacks suppressed
[  272.594289][ T7119] kworker/u8:11: attempt to access beyond end of device
[  272.594289][ T7119] loop4: rw=1, sector=153, nr_sectors = 8 limit=128
[  272.807731][ T7119] kworker/u8:11: attempt to access beyond end of device
[  272.807731][ T7119] loop4: rw=1, sector=169, nr_sectors = 8 limit=128
[  272.822414][ T7119] kworker/u8:11: attempt to access beyond end of device
[  272.822414][ T7119] loop4: rw=1, sector=185, nr_sectors = 8 limit=128
[  272.836343][ T7119] kworker/u8:11: attempt to access beyond end of device
[  272.836343][ T7119] loop4: rw=1, sector=201, nr_sectors = 8 limit=128
[  272.855892][ T7119] kworker/u8:11: attempt to access beyond end of device
[  272.855892][ T7119] loop4: rw=1, sector=217, nr_sectors = 8 limit=128
[  272.883598][ T7119] kworker/u8:11: attempt to access beyond end of device
[  272.883598][ T7119] loop4: rw=1, sector=233, nr_sectors = 8 limit=128
[  273.126711][ T7119] kworker/u8:11: attempt to access beyond end of device
[  273.126711][ T7119] loop4: rw=1, sector=249, nr_sectors = 8 limit=128
[  273.340082][ T7119] kworker/u8:11: attempt to access beyond end of device
[  273.340082][ T7119] loop4: rw=1, sector=265, nr_sectors = 8 limit=128
[  273.427555][ T7119] kworker/u8:11: attempt to access beyond end of device
[  273.427555][ T7119] loop4: rw=1, sector=281, nr_sectors = 8 limit=128
[  273.441198][ T7119] kworker/u8:11: attempt to access beyond end of device
[  273.441198][ T7119] loop4: rw=1, sector=297, nr_sectors = 8 limit=128
[  273.748017][ T8268] netlink: 10 bytes leftover after parsing attributes in process `syz.4.566'.
[  274.157257][ T8282] netlink: 'syz.1.574': attribute type 1 has an invalid length.
[  274.194094][ T8282] netlink: 228 bytes leftover after parsing attributes in process `syz.1.574'.
[  274.401441][ T8288] netlink: 'syz.1.577': attribute type 13 has an invalid length.
[  274.455812][ T8290] loop4: detected capacity change from 0 to 1024
[  274.489233][ T8290] EXT4-fs: Ignoring removed orlov option
[  274.523538][ T8295] loop5: detected capacity change from 0 to 512
[  274.563227][ T8297] loop1: detected capacity change from 0 to 512
[  274.589758][ T8290] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  274.680215][ T8288] bridge0: port 2(bridge_slave_1) entered disabled state
[  274.684769][ T8295] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  274.688779][ T8288] bridge0: port 1(bridge_slave_0) entered disabled state
[  274.708123][ T8297] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.577: bg 0: block 248: padding at end of block bitmap is not set
[  274.741513][ T8295] ext4 filesystem being mounted at /20/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  274.792584][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  274.792602][   T30] audit: type=1800 audit(1757541735.464:116): pid=8290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.579" name="bus" dev="loop4" ino=18 res=0 errno=0
[  274.800304][ T8297] Quota error (device loop1): write_blk: dquota write failed
[  274.828201][ T8297] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  274.840393][ T8297] EXT4-fs error (device loop1): ext4_acquire_dquot:6943: comm syz.1.577: Failed to acquire dquot type 1
[  274.869444][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.906497][ T8297] EXT4-fs (loop1): 1 truncate cleaned up
[  274.923333][ T8297] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  274.969930][ T8297] ext4 filesystem being mounted at /119/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  275.022238][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.152994][ T8288] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  275.234573][ T8288] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  275.340226][ T8315] netlink: 4 bytes leftover after parsing attributes in process `syz.4.584'.
[  275.514253][   T30] audit: type=1326 audit(1757541736.214:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.5.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  275.517511][ T8320] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  275.567280][   T30] audit: type=1326 audit(1757541736.214:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.5.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  275.610830][   T30] audit: type=1326 audit(1757541736.214:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.5.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  275.688573][   T57] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  275.694380][   T30] audit: type=1326 audit(1757541736.214:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.5.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc1e1b8d510 code=0x7ffc0000
[  275.721882][   T30] audit: type=1326 audit(1757541736.214:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.5.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  275.732755][   T57] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  275.753453][   T30] audit: type=1326 audit(1757541736.214:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.5.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  275.810349][   T30] audit: type=1326 audit(1757541736.254:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.5.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  275.919612][ T5868] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.974497][   T57] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  276.007207][   T57] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  276.131638][ T8327] loop3: detected capacity change from 0 to 512
[  276.178126][ T8327] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  276.255152][ T8327] EXT4-fs (loop3): 1 orphan inode deleted
[  276.285206][ T8327] EXT4-fs (loop3): 1 truncate cleaned up
[  276.296782][ T8327] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  276.314985][ T8327] EXT4-fs error (device loop3): ext4_inlinedir_to_tree:1314: inode #12: block 7: comm syz.3.591: path /129/file0/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  276.344678][ T8327] EXT4-fs (loop3): Remounting filesystem read-only
[  276.391047][ T5859] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  276.554846][ T8338] netdevsim netdevsim3: Direct firmware load for ./file0 failed with error -2
[  276.588803][ T8338] netdevsim netdevsim3: Falling back to sysfs fallback for: ./file0
[  276.782240][ T8342] sctp: [Deprecated]: syz.1.597 (pid 8342) Use of int in maxseg socket option.
[  276.782240][ T8342] Use struct sctp_assoc_value instead
[  277.812845][ T8370] netlink: 'syz.1.611': attribute type 7 has an invalid length.
[  278.015519][ T8373] loop5: detected capacity change from 0 to 2048
[  278.122805][ T8376] loop4: detected capacity change from 0 to 512
[  278.142626][ T8373] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  278.156058][ T8376] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  278.174745][ T8373] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.224235][ T8376] EXT4-fs (loop4): orphan cleanup on readonly fs
[  278.289664][ T8376] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.612: bg 0: block 16: invalid block bitmap
[  278.377968][ T8376] EXT4-fs (loop4): Remounting filesystem read-only
[  278.384708][ T8376] EXT4-fs (loop4): 1 truncate cleaned up
[  278.456440][ T8376] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  278.551411][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.622643][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.181316][ T8410] netlink: 'syz.5.630': attribute type 4 has an invalid length.
[  279.277799][ T8413] netlink: 'syz.5.630': attribute type 4 has an invalid length.
[  279.568091][ T8430] netlink: 8 bytes leftover after parsing attributes in process `syz.5.636'.
[  279.930502][ T5231] udevd[5231]: worker [6137] terminated by signal 33 (Unknown signal 33)
[  279.964815][ T5231] udevd[5231]: worker [6137] failed while handling '/devices/virtual/block/loop4'
[  280.116933][ T8444] loop5: detected capacity change from 0 to 1024
[  280.134097][ T8444] EXT4-fs: Ignoring removed bh option
[  280.166179][ T8444] EXT4-fs: inline encryption not supported
[  280.190032][ T8444] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  280.241738][ T8444] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  280.327709][ T8444] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 2: comm syz.5.641: lblock 2 mapped to illegal pblock 2 (length 1)
[  280.334386][ T8450] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  280.437217][ T8444] __quota_error: 37 callbacks suppressed
[  280.437246][ T8444] Quota error (device loop5): qtree_write_dquot: dquota write failed
[  280.502979][ T8444] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 48: comm syz.5.641: lblock 0 mapped to illegal pblock 48 (length 1)
[  280.529471][ T8444] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  280.584082][ T8444] EXT4-fs error (device loop5): ext4_acquire_dquot:6943: comm syz.5.641: Failed to acquire dquot type 0
[  280.641142][ T8444] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  280.684645][ T8444] EXT4-fs error (device loop5): ext4_evict_inode:254: inode #11: comm syz.5.641: mark_inode_dirty error
[  280.733114][ T8444] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  280.747959][ T8459] loop3: detected capacity change from 0 to 512
[  280.765743][ T8444] EXT4-fs (loop5): 1 orphan inode deleted
[  280.772810][ T8459] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  280.787484][ T6920] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:10: lblock 1 mapped to illegal pblock 1 (length 1)
[  280.828971][ T8444] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  280.881546][ T6920] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  280.913443][ T6920] EXT4-fs error (device loop5): ext4_release_dquot:6979: comm kworker/u8:10: Failed to release dquot type 0
[  280.958897][ T8459] EXT4-fs (loop3): 1 truncate cleaned up
[  280.966270][ T8459] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  281.125292][ T8444] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 48: comm syz.5.641: lblock 0 mapped to illegal pblock 48 (length 1)
[  281.140259][ T8465] loop2: detected capacity change from 0 to 1024
[  281.185025][ T8444] Quota error (device loop5): v2_read_header: Failed header read: expected=8 got=-117
[  281.190680][ T8459] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.198267][ T8465] EXT4-fs: Ignoring removed orlov option
[  281.236946][ T8465] EXT4-fs: Ignoring removed nomblk_io_submit option
[  281.317917][ T8465] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  281.473432][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.796257][ T5861] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.796675][ T8477] loop5: detected capacity change from 0 to 128
[  281.811852][ T8476] netlink: 'syz.3.655': attribute type 4 has an invalid length.
[  281.837351][ T8476] netlink: 228 bytes leftover after parsing attributes in process `syz.3.655'.
[  282.198113][ T6920] bio_check_eod: 13 callbacks suppressed
[  282.198130][ T6920] kworker/u8:10: attempt to access beyond end of device
[  282.198130][ T6920] loop5: rw=1, sector=153, nr_sectors = 8 limit=128
[  282.281260][ T6920] kworker/u8:10: attempt to access beyond end of device
[  282.281260][ T6920] loop5: rw=1, sector=169, nr_sectors = 8 limit=128
[  282.333378][ T6920] kworker/u8:10: attempt to access beyond end of device
[  282.333378][ T6920] loop5: rw=1, sector=185, nr_sectors = 8 limit=128
[  282.371829][ T6920] kworker/u8:10: attempt to access beyond end of device
[  282.371829][ T6920] loop5: rw=1, sector=201, nr_sectors = 8 limit=128
[  282.427326][ T6920] kworker/u8:10: attempt to access beyond end of device
[  282.427326][ T6920] loop5: rw=1, sector=217, nr_sectors = 8 limit=128
[  282.497200][ T6920] kworker/u8:10: attempt to access beyond end of device
[  282.497200][ T6920] loop5: rw=1, sector=233, nr_sectors = 8 limit=128
[  282.550440][ T6920] kworker/u8:10: attempt to access beyond end of device
[  282.550440][ T6920] loop5: rw=1, sector=249, nr_sectors = 8 limit=128
[  282.842024][ T6920] kworker/u8:10: attempt to access beyond end of device
[  282.842024][ T6920] loop5: rw=1, sector=265, nr_sectors = 8 limit=128
[  282.907317][   T30] audit: type=1326 audit(1757541743.604:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8482 comm="syz.2.656" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x0
[  282.967030][ T8490] netlink: 'syz.2.656': attribute type 10 has an invalid length.
[  282.974802][ T8490] team0: Device dummy0 is up. Set it down before adding it as a team port
[  282.987546][ T6920] kworker/u8:10: attempt to access beyond end of device
[  282.987546][ T6920] loop5: rw=1, sector=281, nr_sectors = 8 limit=128
[  283.011373][ T6920] kworker/u8:10: attempt to access beyond end of device
[  283.011373][ T6920] loop5: rw=1, sector=297, nr_sectors = 8 limit=128
[  283.979783][ T8516] loop3: detected capacity change from 0 to 128
[  284.072387][ T8516] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  284.081670][ T8516] FAT-fs (loop3): Filesystem has been set read-only
[  284.091223][   T30] audit: type=1800 audit(1757541744.764:162): pid=8516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.669" name="file2" dev="loop3" ino=1048615 res=0 errno=0
[  284.117185][ T8516] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  284.166651][ T8516] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  284.263029][ T8523] Buffer I/O error on dev loop3, logical block 2065, async page read
[  284.598000][ T8531] netlink: 'syz.2.671': attribute type 4 has an invalid length.
[  284.605686][ T8531] netlink: 17 bytes leftover after parsing attributes in process `syz.2.671'.
[  284.927743][ T8533] lo speed is unknown, defaulting to 1000
[  286.207206][ T8523] Buffer I/O error on dev loop3, logical block 2066, async page read
[  286.215429][ T8523] Buffer I/O error on dev loop3, logical block 2067, async page read
[  286.257237][ T8523] Buffer I/O error on dev loop3, logical block 2068, async page read
[  286.265453][ T8523] Buffer I/O error on dev loop3, logical block 2069, async page read
[  286.293466][ T8523] Buffer I/O error on dev loop3, logical block 2070, async page read
[  286.302018][ T8523] Buffer I/O error on dev loop3, logical block 2071, async page read
[  286.310444][ T8523] Buffer I/O error on dev loop3, logical block 2072, async page read
[  286.347446][ T8516] Buffer I/O error on dev loop3, logical block 2065, async page read
[  286.397820][ T8516] Buffer I/O error on dev loop3, logical block 2066, async page read
[  286.475480][ T8544] rdma_rxe: rxe_newlink: failed to add lo
[  286.834792][ T8554] loop5: detected capacity change from 0 to 512
[  286.861550][ T8554] ext4: Unknown parameter 'obj_role'
[  286.964221][   T30] audit: type=1326 audit(1757541747.664:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8558 comm="syz.2.687" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f60fc58eba9 code=0x0
[  287.149758][   T30] audit: type=1326 audit(1757541747.844:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8567 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  287.182619][   T30] audit: type=1326 audit(1757541747.854:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8567 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  287.251382][ T8568] loop4: detected capacity change from 0 to 512
[  287.316205][   T30] audit: type=1326 audit(1757541747.884:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8567 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  287.361346][   T30] audit: type=1326 audit(1757541747.884:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8567 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  287.456186][ T8568] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.689: bg 0: block 248: padding at end of block bitmap is not set
[  287.485008][   T30] audit: type=1326 audit(1757541747.884:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8567 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  287.554946][ T8568] Quota error (device loop4): write_blk: dquota write failed
[  287.620686][ T8568] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  287.622453][   T30] audit: type=1326 audit(1757541747.884:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8567 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  287.653475][ T8568] EXT4-fs error (device loop4): ext4_acquire_dquot:6943: comm syz.4.689: Failed to acquire dquot type 1
[  287.717379][ T8568] EXT4-fs (loop4): 1 truncate cleaned up
[  287.735085][ T8568] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.778213][   T30] audit: type=1326 audit(1757541747.884:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8567 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  287.817611][ T8568] ext4 filesystem being mounted at /155/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  288.011938][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.129721][ T8594] loop2: detected capacity change from 0 to 512
[  288.270510][ T8594] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  288.307472][ T8603] loop5: detected capacity change from 0 to 128
[  288.513805][ T5861] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.766559][ T8617] loop4: detected capacity change from 0 to 1024
[  288.776447][ T8617] EXT4-fs: Ignoring removed orlov option
[  288.784932][ T8617] EXT4-fs: Ignoring removed nomblk_io_submit option
[  288.843598][ T8617] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  288.903069][ T8627] bridge0: port 3(gretap0) entered blocking state
[  288.910472][ T8627] bridge0: port 3(gretap0) entered disabled state
[  288.918009][ T8627] gretap0: entered allmulticast mode
[  288.925503][ T8627] gretap0: entered promiscuous mode
[  288.932627][ T8627] bridge0: port 3(gretap0) entered blocking state
[  288.939498][ T8627] bridge0: port 3(gretap0) entered forwarding state
[  288.954103][ T8628] gretap0: left allmulticast mode
[  288.959284][ T8628] gretap0: left promiscuous mode
[  288.966365][ T8628] bridge0: port 3(gretap0) entered disabled state
[  288.984999][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.282435][ T8640] netlink: 60 bytes leftover after parsing attributes in process `syz.4.721'.
[  289.292295][ T8640] unsupported nlmsg_type 40
[  289.347347][ T8645] netlink: 8 bytes leftover after parsing attributes in process `syz.5.723'.
[  289.356545][ T8645] netlink: 8 bytes leftover after parsing attributes in process `syz.5.723'.
[  289.446451][ T8651] netlink: 332 bytes leftover after parsing attributes in process `syz.4.726'.
[  289.626199][ T8658] netlink: 20 bytes leftover after parsing attributes in process `syz.2.730'.
[  289.729805][ T8661] loop4: detected capacity change from 0 to 512
[  289.742722][ T8661] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  289.745617][ T8663] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  289.760298][ T8663] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  289.771750][ T8661] EXT4-fs (loop4): 1 truncate cleaned up
[  289.782109][ T8661] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  289.925621][ T8661] syzkaller0: entered promiscuous mode
[  289.937887][ T8661] syzkaller0: entered allmulticast mode
[  289.990699][ T8671] loop2: detected capacity change from 0 to 512
[  290.038736][ T8671] EXT4-fs error (device loop2): ext4_quota_enable:7134: inode #4: comm syz.2.735: iget: bogus i_mode (4200)
[  290.058212][ T8671] EXT4-fs error (device loop2): ext4_quota_enable:7137: comm syz.2.735: Bad quota inode: 4, type: 1
[  290.069742][ T8671] EXT4-fs warning (device loop2): ext4_enable_quotas:7178: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  290.094731][ T8671] EXT4-fs (loop2): mount failed
[  290.193835][ T8671] loop2: detected capacity change from 0 to 1024
[  290.218439][ T8671] EXT4-fs: Ignoring removed bh option
[  290.242258][ T8671] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  290.278879][ T8671] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[  290.306551][ T8671] System zones: 0-1, 3-12
[  290.323935][ T8671] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #3: block 1: comm syz.2.735: lblock 1 mapped to illegal pblock 1 (length 1)
[  290.342891][ T8671] EXT4-fs error (device loop2): ext4_acquire_dquot:6943: comm syz.2.735: Failed to acquire dquot type 0
[  290.365029][ T8671] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.735: Freeing blocks not in datazone - block = 0, count = 4096
[  290.399193][ T8671] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.735: Invalid inode bitmap blk 0 in block_group 0
[  290.413673][ T8671] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  290.440974][ T1162] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[  290.442438][ T8671] EXT4-fs (loop2): 1 orphan inode deleted
[  290.501973][ T1162] EXT4-fs error (device loop2): ext4_release_dquot:6979: comm kworker/u8:7: Failed to release dquot type 0
[  290.515413][ T8671] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.830978][ T8671] netlink: 'syz.2.735': attribute type 21 has an invalid length.
[  290.900185][ T8710] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  290.929134][ T8710] capability: warning: `syz.2.735' uses 32-bit capabilities (legacy support in use)
[  292.210674][ T8671] netlink: 156 bytes leftover after parsing attributes in process `syz.2.735'.
[  292.210799][ T8695] smc: net device bond0 applied user defined pnetid SYZ0
[  292.221713][ T8671] netlink: 4 bytes leftover after parsing attributes in process `syz.2.735'.
[  292.265409][ T5861] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.395144][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.042066][ T8768] netdevsim netdevsim4: Direct firmware load for ./file0 failed with error -2
[  293.064566][ T8768] netdevsim netdevsim4: Falling back to sysfs fallback for: ./file0
[  293.152306][ T8772] loop2: detected capacity change from 0 to 128
[  293.195467][ T8774] process 'syz.1.776' launched '/dev/fd/6' with NULL argv: empty string added
[  293.270186][  T205] bio_check_eod: 38 callbacks suppressed
[  293.270204][  T205] kworker/u8:5: attempt to access beyond end of device
[  293.270204][  T205] loop2: rw=1, sector=153, nr_sectors = 8 limit=128
[  293.296905][  T205] kworker/u8:5: attempt to access beyond end of device
[  293.296905][  T205] loop2: rw=1, sector=169, nr_sectors = 8 limit=128
[  293.315673][  T205] kworker/u8:5: attempt to access beyond end of device
[  293.315673][  T205] loop2: rw=1, sector=185, nr_sectors = 8 limit=128
[  293.331166][  T205] kworker/u8:5: attempt to access beyond end of device
[  293.331166][  T205] loop2: rw=1, sector=201, nr_sectors = 8 limit=128
[  293.346381][  T205] kworker/u8:5: attempt to access beyond end of device
[  293.346381][  T205] loop2: rw=1, sector=217, nr_sectors = 8 limit=128
[  293.362520][  T205] kworker/u8:5: attempt to access beyond end of device
[  293.362520][  T205] loop2: rw=1, sector=233, nr_sectors = 8 limit=128
[  293.377436][  T205] kworker/u8:5: attempt to access beyond end of device
[  293.377436][  T205] loop2: rw=1, sector=249, nr_sectors = 8 limit=128
[  293.393358][  T205] kworker/u8:5: attempt to access beyond end of device
[  293.393358][  T205] loop2: rw=1, sector=265, nr_sectors = 8 limit=128
[  293.407607][  T205] kworker/u8:5: attempt to access beyond end of device
[  293.407607][  T205] loop2: rw=1, sector=281, nr_sectors = 8 limit=128
[  293.424086][  T205] kworker/u8:5: attempt to access beyond end of device
[  293.424086][  T205] loop2: rw=1, sector=297, nr_sectors = 8 limit=128
[  294.020050][ T8804] loop4: detected capacity change from 0 to 1024
[  294.036536][ T8804] EXT4-fs: Ignoring removed bh option
[  294.062670][ T8804] EXT4-fs: inline encryption not supported
[  294.074152][ T8804] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  294.114830][ T8804] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  294.134100][ T8804] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 2: comm syz.4.791: lblock 2 mapped to illegal pblock 2 (length 1)
[  294.155808][ T8804] __quota_error: 180 callbacks suppressed
[  294.155824][ T8804] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  294.174047][ T8804] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 48: comm syz.4.791: lblock 0 mapped to illegal pblock 48 (length 1)
[  294.192350][ T8804] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  294.201290][ T8804] EXT4-fs error (device loop4): ext4_acquire_dquot:6943: comm syz.4.791: Failed to acquire dquot type 0
[  294.216727][ T8804] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  294.232745][ T8804] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.791: mark_inode_dirty error
[  294.282448][ T8804] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  294.302925][ T8804] EXT4-fs (loop4): 1 orphan inode deleted
[  294.312341][ T8804] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  294.332035][ T7119] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:11: lblock 1 mapped to illegal pblock 1 (length 1)
[  294.389453][ T7119] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  294.435485][ T7119] EXT4-fs error (device loop4): ext4_release_dquot:6979: comm kworker/u8:11: Failed to release dquot type 0
[  294.462302][ T8804] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 48: comm syz.4.791: lblock 0 mapped to illegal pblock 48 (length 1)
[  294.504655][ T8804] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=-117
[  294.760536][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.708987][ T8838] loop2: detected capacity change from 0 to 2048
[  295.763547][ T8838] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  295.796827][ T8838] ext4 filesystem being mounted at /143/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  296.253468][ T8838] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.803: bg 0: block 345: padding at end of block bitmap is not set
[  296.352222][   T57] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 79 with max blocks 1 with error 28
[  296.383776][   T57] EXT4-fs (loop2): This should not happen!! Data will be lost
[  296.383776][   T57] 
[  296.410581][   T57] EXT4-fs (loop2): Total free blocks count 0
[  296.416607][   T57] EXT4-fs (loop2): Free/Dirty block details
[  296.435520][   T57] EXT4-fs (loop2): free_blocks=0
[  296.449884][   T57] EXT4-fs (loop2): dirty_blocks=16
[  296.465655][   T57] EXT4-fs (loop2): Block reservation details
[  296.482781][ T5960] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4
[  296.496055][ T5960] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2
[  296.504182][   T57] EXT4-fs (loop2): i_reserved_data_blocks=1
[  296.515156][ T5960] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  296.524719][ T5960] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  296.553591][ T5861] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.563077][ T5960] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  296.563131][ T5960] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  296.645325][ T5960] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  296.670813][ T5960] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  296.693799][ T5960] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  296.730527][   T30] audit: type=1326 audit(1757541757.434:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8864 comm="syz.4.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  296.757488][ T5960] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  296.800331][ T5960] hid-generic 0000:3000000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  296.810415][   T30] audit: type=1326 audit(1757541757.434:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8864 comm="syz.4.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  296.886922][   T30] audit: type=1326 audit(1757541757.434:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8864 comm="syz.4.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  296.936588][   T30] audit: type=1326 audit(1757541757.434:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8864 comm="syz.4.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  297.004468][ T8872] 9pnet_fd: Insufficient options for proto=fd
[  297.018605][   T30] audit: type=1326 audit(1757541757.434:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8864 comm="syz.4.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  297.088440][   T30] audit: type=1326 audit(1757541757.434:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8864 comm="syz.4.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  297.199537][ T8884] netlink: 4 bytes leftover after parsing attributes in process `syz.4.825'.
[  297.907733][ T8910] loop5: detected capacity change from 0 to 2048
[  298.083744][ T8910] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  298.129267][ T8910] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  298.305070][ T8910] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.836: bg 0: block 345: padding at end of block bitmap is not set
[  298.423583][ T6920] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 79 with max blocks 1 with error 28
[  298.477008][ T6920] EXT4-fs (loop5): This should not happen!! Data will be lost
[  298.477008][ T6920] 
[  298.503231][ T6920] EXT4-fs (loop5): Total free blocks count 0
[  298.526911][ T6920] EXT4-fs (loop5): Free/Dirty block details
[  298.532844][ T6920] EXT4-fs (loop5): free_blocks=0
[  298.554550][ T6920] EXT4-fs (loop5): dirty_blocks=16
[  298.568222][ T6920] EXT4-fs (loop5): Block reservation details
[  298.581423][ T6920] EXT4-fs (loop5): i_reserved_data_blocks=1
[  298.592203][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.159726][ T8943] loop4: detected capacity change from 0 to 1024
[  299.293932][ T8943] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  299.676331][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.845477][ T8954] ALSA: seq fatal error: cannot create timer (-19)
[  300.120659][ T8970] loop2: detected capacity change from 0 to 764
[  300.177614][ T8970] rock: directory entry would overflow storage
[  300.224356][ T8971] loop5: detected capacity change from 0 to 2048
[  300.230866][ T8970] rock: sig=0x4f50, size=4, remaining=3
[  300.245360][ T8970] iso9660: Corrupted directory entry in block 6 of inode 1792
[  300.291188][ T8971]  loop5: p1 < > p4
[  300.317989][ T8971] loop5: p4 start 42180 is beyond EOD, truncated
[  300.615060][ T8981] loop2: detected capacity change from 0 to 128
[  301.110686][ T8988] netlink: 176 bytes leftover after parsing attributes in process `syz.4.862'.
[  301.405739][ T8994] hub 9-0:1.0: USB hub found
[  301.418998][ T8994] hub 9-0:1.0: 1 port detected
[  301.530553][ T8997] netlink: 24 bytes leftover after parsing attributes in process `syz.5.865'.
[  301.668301][ T9003] program syz.1.868 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  301.937103][ T9020] Driver unsupported XDP return value 0 on prog  (id 333) dev N/A, expect packet loss!
[  302.716595][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  302.716613][   T30] audit: type=1326 audit(1757541763.415:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  302.753540][   T30] audit: type=1326 audit(1757541763.455:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  302.778247][   T30] audit: type=1326 audit(1757541763.455:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  302.802209][   T30] audit: type=1326 audit(1757541763.455:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  302.831514][   T30] audit: type=1326 audit(1757541763.455:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  302.894388][   T30] audit: type=1326 audit(1757541763.455:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  302.921571][   T30] audit: type=1326 audit(1757541763.565:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  302.983146][   T30] audit: type=1326 audit(1757541763.565:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  303.001703][ T9032] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.072446][ T9047] netlink: 'syz.5.885': attribute type 10 has an invalid length.
[  303.126763][ T9032] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.139679][ T9047] netlink: 40 bytes leftover after parsing attributes in process `syz.5.885'.
[  303.164190][ T9047] batman_adv: batadv0: Adding interface: virt_wifi0
[  303.171435][ T9047] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  303.201643][ T9047] batman_adv: batadv0: Interface activated: virt_wifi0
[  303.245403][ T9032] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.355159][ T9053] loop4: detected capacity change from 0 to 512
[  303.392043][ T9032] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.431075][ T9053] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.887: bg 0: block 131: padding at end of block bitmap is not set
[  303.454928][ T9053] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  303.487770][ T9053] EXT4-fs (loop4): 1 truncate cleaned up
[  303.495218][ T9053] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  303.514510][   T30] audit: type=1326 audit(1757541764.215:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9052 comm="syz.4.887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  303.537051][   T30] audit: type=1326 audit(1757541764.215:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9052 comm="syz.4.887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  303.700453][ T6602] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  303.722968][ T6602] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  303.754716][ T6602] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  303.802541][ T7119] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  303.915945][ T9076] loop2: detected capacity change from 0 to 128
[  304.093436][ T9082] tipc: Started in network mode
[  304.114072][ T9082] tipc: Node identity , cluster identity 4711
[  304.136506][ T9082] tipc: Failed to obtain node identity
[  304.142024][ T9082] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  304.156559][ T6920] bio_check_eod: 9 callbacks suppressed
[  304.156575][ T6920] kworker/u8:10: attempt to access beyond end of device
[  304.156575][ T6920] loop2: rw=1, sector=153, nr_sectors = 8 limit=128
[  304.206390][ T6920] kworker/u8:10: attempt to access beyond end of device
[  304.206390][ T6920] loop2: rw=1, sector=169, nr_sectors = 8 limit=128
[  304.246944][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.254576][ T6920] kworker/u8:10: attempt to access beyond end of device
[  304.254576][ T6920] loop2: rw=1, sector=185, nr_sectors = 8 limit=128
[  304.316393][ T6920] kworker/u8:10: attempt to access beyond end of device
[  304.316393][ T6920] loop2: rw=1, sector=201, nr_sectors = 8 limit=128
[  304.336482][ T6920] kworker/u8:10: attempt to access beyond end of device
[  304.336482][ T6920] loop2: rw=1, sector=217, nr_sectors = 8 limit=128
[  304.374447][ T6920] kworker/u8:10: attempt to access beyond end of device
[  304.374447][ T6920] loop2: rw=1, sector=233, nr_sectors = 8 limit=128
[  304.401644][ T6920] kworker/u8:10: attempt to access beyond end of device
[  304.401644][ T6920] loop2: rw=1, sector=249, nr_sectors = 8 limit=128
[  304.430935][ T6920] kworker/u8:10: attempt to access beyond end of device
[  304.430935][ T6920] loop2: rw=1, sector=265, nr_sectors = 8 limit=128
[  304.466846][ T6920] kworker/u8:10: attempt to access beyond end of device
[  304.466846][ T6920] loop2: rw=1, sector=281, nr_sectors = 8 limit=128
[  304.482862][ T9084] syzkaller0: entered promiscuous mode
[  304.495906][ T6920] kworker/u8:10: attempt to access beyond end of device
[  304.495906][ T6920] loop2: rw=1, sector=297, nr_sectors = 8 limit=128
[  304.519841][ T9084] syzkaller0: entered allmulticast mode
[  304.915410][ T9106] netlink: 'syz.2.905': attribute type 142 has an invalid length.
[  308.115759][ T9137] hub 9-0:1.0: USB hub found
[  308.116119][ T9137] hub 9-0:1.0: 1 port detected
[  308.569988][ T9154] rdma_rxe: rxe_newlink: failed to add lo
[  309.041956][ T9159] loop5: detected capacity change from 0 to 128
[  309.055780][ T9158] netlink: 4 bytes leftover after parsing attributes in process `syz.2.927'.
[  309.445169][ T9175] loop4: detected capacity change from 0 to 512
[  309.495364][ T9179] capability: warning: `syz.2.938' uses deprecated v2 capabilities in a way that may be insecure
[  309.518354][ T9175] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  309.558651][ T9175] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  309.792357][   T30] kauditd_printk_skb: 192 callbacks suppressed
[  309.792376][   T30] audit: type=1326 audit(1757541770.495:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.3.943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  310.035548][ T9200] lo speed is unknown, defaulting to 1000
[  311.793245][   T30] audit: type=1326 audit(1757541770.505:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.3.943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  312.380493][   T30] audit: type=1326 audit(1757541770.535:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.3.943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  312.433206][   T30] audit: type=1326 audit(1757541770.535:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.3.943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  312.481809][   T30] audit: type=1326 audit(1757541770.545:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.3.943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  312.504403][   T30] audit: type=1326 audit(1757541770.545:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.3.943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  312.541989][   T30] audit: type=1326 audit(1757541770.545:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.3.943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  312.570125][   T30] audit: type=1326 audit(1757541770.545:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.3.943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  312.592805][   T30] audit: type=1326 audit(1757541770.545:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.3.943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  312.678590][   T30] audit: type=1326 audit(1757541770.545:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.3.943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  312.722049][ T9210] loop5: detected capacity change from 0 to 1024
[  312.755530][ T9210] EXT4-fs: Ignoring removed bh option
[  312.790292][ T9210] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  312.923361][ T9210] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.126090][ T9223] pim6reg1: entered promiscuous mode
[  313.156314][ T9227] netlink: 12 bytes leftover after parsing attributes in process `syz.3.951'.
[  313.165323][ T9223] pim6reg1: entered allmulticast mode
[  313.193292][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.604509][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.205163][ T9266] loop4: detected capacity change from 0 to 764
[  315.553878][ T9303] netlink: 4 bytes leftover after parsing attributes in process `syz.4.985'.
[  315.563627][ T9303] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  315.571568][ T9303] batman_adv: batadv0: Removing interface: batadv_slave_0
[  315.916576][ T9303] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  315.924439][ T9303] batman_adv: batadv0: Removing interface: batadv_slave_1
[  316.317810][ T9319] loop4: detected capacity change from 0 to 2048
[  316.334024][ T9322] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  316.348232][ T9321] IPVS: stopping master sync thread 9322 ...
[  316.387408][ T9319] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  316.399694][ T9319] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  316.417630][ T9321] loop2: detected capacity change from 0 to 1024
[  316.438864][ T9321] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  316.469026][ T9321] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  316.484999][ T9321] JBD2: no valid journal superblock found
[  316.491108][ T9321] EXT4-fs (loop2): Could not load journal inode
[  316.582551][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.036807][ T9346] loop4: detected capacity change from 0 to 128
[  317.104864][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  317.112875][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  319.294676][   T30] kauditd_printk_skb: 30 callbacks suppressed
[  319.294714][   T30] audit: type=1326 audit(1757541779.996:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9414 comm="syz.1.1035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f574778eba9 code=0x7fc00000
[  319.648854][ T9439] loop9: detected capacity change from 0 to 7
[  319.657614][ T9439] buffer_io_error: 6 callbacks suppressed
[  319.657631][ T9439] Buffer I/O error on dev loop9, logical block 0, async page read
[  319.676550][ T9439] Buffer I/O error on dev loop9, logical block 0, async page read
[  319.684479][ T9439] Buffer I/O error on dev loop9, logical block 0, async page read
[  319.712902][ T9439] Buffer I/O error on dev loop9, logical block 0, async page read
[  319.816935][ T9439] Buffer I/O error on dev loop9, logical block 0, async page read
[  319.848705][ T9439] Buffer I/O error on dev loop9, logical block 0, async page read
[  319.885623][ T9439] Buffer I/O error on dev loop9, logical block 0, async page read
[  319.925677][ T9439] ldm_validate_partition_table(): Disk read failed.
[  319.932374][ T9439] Buffer I/O error on dev loop9, logical block 0, async page read
[  319.944548][ T9439] Buffer I/O error on dev loop9, logical block 0, async page read
[  319.952580][ T9439] Buffer I/O error on dev loop9, logical block 0, async page read
[  319.960824][ T9439] Dev loop9: unable to read RDB block 0
[  319.966846][ T9439]  loop9: unable to read partition table
[  319.973026][ T9439] loop9: partition table beyond EOD, truncated
[  319.979691][ T9439] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[  319.979691][ T9439] 
) failed (rc=-5)
[  320.049265][ T9447] rdma_rxe: rxe_newlink: failed to add lo
[  320.312373][ T9446] loop5: detected capacity change from 0 to 1024
[  320.589857][ T9446] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.668745][ T9446] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.1049: Allocating blocks 385-513 which overlap fs metadata
[  320.744375][ T9446] EXT4-fs (loop5): pa ffff8880320f7bc8: logic 16, phys. 129, len 24
[  320.753057][ T9446] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  320.756486][ T9462] 9pnet_fd: Insufficient options for proto=fd
[  320.812997][ T9446] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 28 with max blocks 4 with error 28
[  320.836417][ T9446] EXT4-fs (loop5): This should not happen!! Data will be lost
[  320.836417][ T9446] 
[  320.872257][ T9446] EXT4-fs (loop5): Total free blocks count 0
[  320.900819][ T9446] EXT4-fs (loop5): Free/Dirty block details
[  320.922468][ T9446] EXT4-fs (loop5): free_blocks=128
[  320.945526][ T9446] EXT4-fs (loop5): dirty_blocks=0
[  320.960777][ T9446] EXT4-fs (loop5): Block reservation details
[  320.978545][ T9446] EXT4-fs (loop5): i_reserved_data_blocks=0
[  321.321198][ T9492] loop2: detected capacity change from 0 to 2048
[  321.345883][ T9496] loop5: detected capacity change from 0 to 1024
[  321.360947][ T9492] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.381016][ T9492] ext4 filesystem being mounted at /193/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.404914][ T9496] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  321.421620][   T30] audit: type=1800 audit(1757541782.106:604): pid=9492 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1069" name="file1" dev="loop2" ino=15 res=0 errno=0
[  321.447537][ T9496] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.472459][   T30] audit: type=1800 audit(1757541782.176:605): pid=9496 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1071" name="file1" dev="loop5" ino=15 res=0 errno=0
[  321.501998][ T9496] EXT4-fs error (device loop5): ext4_map_blocks:814: inode #15: comm syz.5.1071: lblock 0 mapped to illegal pblock 0 (length 6)
[  321.519194][ T9496] EXT4-fs error (device loop5): ext4_ext_remove_space:2955: inode #15: comm syz.5.1071: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  321.540052][ T9496] EXT4-fs error (device loop5): ext4_map_blocks:814: inode #15: comm syz.5.1071: lblock 0 mapped to illegal pblock 0 (length 1)
[  321.540794][ T5861] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.580479][ T9496] EXT4-fs error (device loop5): ext4_ext_remove_space:2955: inode #15: comm syz.5.1071: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  321.645580][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  321.674310][   T30] audit: type=1326 audit(1757541782.386:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9463 comm="syz.4.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7fc00000
[  321.936204][ T9519] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1080'.
[  321.965369][ T9519] batman_adv: batadv0: Removing interface: batadv_slave_0
[  322.114556][ T9519] batman_adv: batadv0: Removing interface: batadv_slave_1
[  322.202289][ T9519] bond0: (slave batadv0): Releasing backup interface
[  322.843173][ T9552] 9pnet_fd: Insufficient options for proto=fd
[  324.352318][ T9628] netlink: 'syz.1.1131': attribute type 1 has an invalid length.
[  324.644278][ T9648] netlink: 'syz.2.1140': attribute type 3 has an invalid length.
[  324.978065][ T9669] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1149'.
[  325.847073][ T9709] loop5: detected capacity change from 0 to 128
[  326.096147][ T9715] geneve2: entered promiscuous mode
[  326.111756][ T9715] geneve2: entered allmulticast mode
[  326.636497][ T9727] rdma_rxe: rxe_newlink: failed to add lo
[  327.676466][ T9750] 9pnet_fd: Insufficient options for proto=fd
[  328.259383][ T9764] rdma_rxe: rxe_newlink: failed to add lo
[  329.067056][ T9773] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1188'.
[  329.564316][ T9768] infiniband syz!: set down
[  329.582558][ T9768] infiniband syz!: added team_slave_0
[  329.595208][ T9768] syz!: rxe_create_cq: returned err = -12
[  329.604168][ T9768] infiniband syz!: Couldn't create ib_mad CQ
[  329.614262][ T9768] infiniband syz!: Couldn't open port 1
[  329.677211][ T9768] RDS/IB: syz!: added
[  329.681319][ T9768] smc: adding ib device syz! with port count 1
[  329.712936][ T9768] smc:    ib device syz! port 1 has no pnetid
[  329.930745][ T9791] loop5: detected capacity change from 0 to 1024
[  329.954014][ T9791] EXT4-fs: Ignoring removed bh option
[  329.998757][ T9791] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  330.176884][ T9791] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  330.843312][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.169229][ T9814] loop5: detected capacity change from 0 to 128
[  331.228409][ T9815] loop4: detected capacity change from 0 to 1024
[  331.275149][ T9815] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5
[  331.318678][ T9815] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  331.342401][ T9815] EXT4-fs error (device loop4): ext4_acquire_dquot:6943: comm syz.4.1202: Failed to acquire dquot type 0
[  331.392770][ T6920] bio_check_eod: 6 callbacks suppressed
[  331.392785][ T6920] kworker/u8:10: attempt to access beyond end of device
[  331.392785][ T6920] loop5: rw=1, sector=153, nr_sectors = 8 limit=128
[  331.416297][ T9815] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  331.457883][ T6920] kworker/u8:10: attempt to access beyond end of device
[  331.457883][ T6920] loop5: rw=1, sector=169, nr_sectors = 8 limit=128
[  331.477775][ T9815] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.1202: corrupted inode contents
[  331.479925][ T6920] kworker/u8:10: attempt to access beyond end of device
[  331.479925][ T6920] loop5: rw=1, sector=185, nr_sectors = 8 limit=128
[  331.506573][ T9815] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #13: comm syz.4.1202: mark_inode_dirty error
[  331.507309][ T6920] kworker/u8:10: attempt to access beyond end of device
[  331.507309][ T6920] loop5: rw=1, sector=201, nr_sectors = 8 limit=128
[  331.531586][ T6920] kworker/u8:10: attempt to access beyond end of device
[  331.531586][ T6920] loop5: rw=1, sector=217, nr_sectors = 8 limit=128
[  331.549346][ T6920] kworker/u8:10: attempt to access beyond end of device
[  331.549346][ T6920] loop5: rw=1, sector=233, nr_sectors = 8 limit=128
[  331.563791][ T6920] kworker/u8:10: attempt to access beyond end of device
[  331.563791][ T6920] loop5: rw=1, sector=249, nr_sectors = 8 limit=128
[  331.564783][ T9815] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.1202: corrupted inode contents
[  331.580231][ T6920] kworker/u8:10: attempt to access beyond end of device
[  331.580231][ T6920] loop5: rw=1, sector=265, nr_sectors = 8 limit=128
[  331.610067][ T9815] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #13: comm syz.4.1202: mark_inode_dirty error
[  331.642400][ T6920] kworker/u8:10: attempt to access beyond end of device
[  331.642400][ T6920] loop5: rw=1, sector=281, nr_sectors = 8 limit=128
[  331.662416][ T9815] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.1202: corrupted inode contents
[  331.676173][ T6920] kworker/u8:10: attempt to access beyond end of device
[  331.676173][ T6920] loop5: rw=1, sector=297, nr_sectors = 8 limit=128
[  331.692508][ T9815] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  331.736725][ T9815] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.1202: corrupted inode contents
[  331.774593][ T9815] EXT4-fs error (device loop4): ext4_truncate:4666: inode #13: comm syz.4.1202: mark_inode_dirty error
[  331.795410][ T9815] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  331.817503][ T9815] EXT4-fs (loop4): 1 truncate cleaned up
[  331.830782][ T9827] 9pnet_fd: Insufficient options for proto=fd
[  331.864492][ T9815] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  331.987724][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.149079][ T9838] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1215'.
[  332.163180][ T9838] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  332.174468][ T9838] batman_adv: batadv0: Removing interface: batadv_slave_0
[  332.184304][ T9838] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  332.204975][ T9838] batman_adv: batadv0: Removing interface: batadv_slave_1
[  332.226721][ T9838] bond0: (slave batadv0): Releasing backup interface
[  332.451013][ T9841] lo speed is unknown, defaulting to 1000
[  332.944003][ T9855] 9pnet_fd: Insufficient options for proto=fd
[  332.970867][   T30] audit: type=1326 audit(1757541793.676:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9836 comm="syz.5.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7fc00000
[  333.337533][ T9806] rdma_rxe: rxe_newlink: failed to add lo
[  333.348076][ T9871] geneve2: entered promiscuous mode
[  333.353300][ T9871] geneve2: entered allmulticast mode
[  333.565471][ T9880] 9pnet_fd: Insufficient options for proto=fd
[  333.693955][ T9886] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1235'.
[  334.448006][ T9902] rdma_rxe: rxe_newlink: failed to add lo
[  334.486950][   T30] audit: type=1326 audit(1757541795.186:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9881 comm="syz.5.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7fc00000
[  334.609891][ T9905] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1243'.
[  334.624627][ T9905] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  334.632099][ T9905] batman_adv: batadv0: Removing interface: batadv_slave_0
[  334.721549][ T9905] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  334.737273][ T9905] batman_adv: batadv0: Removing interface: batadv_slave_1
[  334.787652][ T9905] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  334.817530][ T9905] batman_adv: batadv0: Removing interface: virt_wifi0
[  335.177059][   T30] audit: type=1326 audit(1757541795.876:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9912 comm="syz.2.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  335.241990][   T30] audit: type=1326 audit(1757541795.876:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9912 comm="syz.2.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  335.320675][   T30] audit: type=1326 audit(1757541795.876:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9912 comm="syz.2.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  335.406935][   T30] audit: type=1326 audit(1757541795.886:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9912 comm="syz.2.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  335.485721][   T30] audit: type=1326 audit(1757541795.886:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9912 comm="syz.2.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  335.548806][   T30] audit: type=1326 audit(1757541795.886:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9912 comm="syz.2.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  335.672906][ T9931] geneve2: entered promiscuous mode
[  335.707630][ T9931] geneve2: entered allmulticast mode
[  336.570449][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  336.570467][   T30] audit: type=1326 audit(1757541797.277:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  336.631661][   T30] audit: type=1326 audit(1757541797.277:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  336.743660][   T30] audit: type=1326 audit(1757541797.287:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  336.871402][   T30] audit: type=1326 audit(1757541797.287:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  337.013396][   T30] audit: type=1326 audit(1757541797.287:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  337.048173][ T9981] loop5: detected capacity change from 0 to 128
[  337.108712][   T30] audit: type=1326 audit(1757541797.287:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  337.175115][   T30] audit: type=1326 audit(1757541797.327:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  337.231628][   T30] audit: type=1326 audit(1757541797.367:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  337.258328][   T30] audit: type=1326 audit(1757541797.367:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  337.298562][   T30] audit: type=1326 audit(1757541797.367:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  337.393348][ T9997] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1286'.
[  337.442978][T10001] loop4: detected capacity change from 0 to 1024
[  337.456581][T10001] EXT4-fs: Ignoring removed bh option
[  337.468925][T10001] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  337.539850][T10001] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  337.603818][T10011] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1292'.
[  337.623958][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.158305][T10043] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.191942][T10049] loop4: detected capacity change from 0 to 512
[  338.203641][T10049] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.1308: casefold flag without casefold feature
[  338.220792][T10049] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1308: couldn't read orphan inode 15 (err -117)
[  338.240917][T10049] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  338.291810][T10043] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.430600][T10043] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.578754][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.673071][T10043] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.933527][ T7119] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  338.969463][ T7119] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  338.977828][ T7119] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  338.997282][ T7119] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  339.004193][T10086] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1325'.
[  339.089259][T10092] loop5: detected capacity change from 0 to 128
[  339.200095][ T7119] bio_check_eod: 13 callbacks suppressed
[  339.200114][ T7119] kworker/u8:11: attempt to access beyond end of device
[  339.200114][ T7119] loop5: rw=1, sector=153, nr_sectors = 8 limit=128
[  339.223540][ T7119] kworker/u8:11: attempt to access beyond end of device
[  339.223540][ T7119] loop5: rw=1, sector=169, nr_sectors = 8 limit=128
[  339.241463][ T7119] kworker/u8:11: attempt to access beyond end of device
[  339.241463][ T7119] loop5: rw=1, sector=185, nr_sectors = 8 limit=128
[  339.258301][ T7119] kworker/u8:11: attempt to access beyond end of device
[  339.258301][ T7119] loop5: rw=1, sector=201, nr_sectors = 8 limit=128
[  339.273358][ T7119] kworker/u8:11: attempt to access beyond end of device
[  339.273358][ T7119] loop5: rw=1, sector=217, nr_sectors = 8 limit=128
[  339.290463][ T7119] kworker/u8:11: attempt to access beyond end of device
[  339.290463][ T7119] loop5: rw=1, sector=233, nr_sectors = 8 limit=128
[  339.304646][ T7119] kworker/u8:11: attempt to access beyond end of device
[  339.304646][ T7119] loop5: rw=1, sector=249, nr_sectors = 8 limit=128
[  339.318701][ T7119] kworker/u8:11: attempt to access beyond end of device
[  339.318701][ T7119] loop5: rw=1, sector=265, nr_sectors = 8 limit=128
[  339.332864][ T7119] kworker/u8:11: attempt to access beyond end of device
[  339.332864][ T7119] loop5: rw=1, sector=281, nr_sectors = 8 limit=128
[  339.355521][ T7119] kworker/u8:11: attempt to access beyond end of device
[  339.355521][ T7119] loop5: rw=1, sector=297, nr_sectors = 8 limit=128
[  340.070147][T10137] netlink: 'syz.3.1344': attribute type 10 has an invalid length.
[  340.078243][T10134] bond0: (slave batadv0): Releasing backup interface
[  340.078451][T10137] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1344'.
[  340.103427][T10134] bridge_slave_0: left allmulticast mode
[  340.109440][T10134] bridge_slave_0: left promiscuous mode
[  340.119224][T10134] bridge0: port 1(bridge_slave_0) entered disabled state
[  340.136415][T10134] bridge_slave_1: left allmulticast mode
[  340.144007][T10134] bridge_slave_1: left promiscuous mode
[  340.150942][T10134] bridge0: port 2(bridge_slave_1) entered disabled state
[  340.182016][T10134] bond0: (slave bond_slave_0): Releasing backup interface
[  340.197835][T10134] bond0: (slave bond_slave_1): Releasing backup interface
[  340.218323][T10134] team0: Port device team_slave_0 removed
[  340.230643][T10134] team0: Port device team_slave_1 removed
[  340.237817][T10134] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  340.245796][T10134] batman_adv: batadv0: Removing interface: batadv_slave_0
[  340.254398][T10134] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  340.261808][T10134] batman_adv: batadv0: Removing interface: batadv_slave_1
[  340.272392][T10134] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  340.291126][   T10] lo speed is unknown, defaulting to 1000
[  340.298359][T10137] batman_adv: batadv0: Adding interface: virt_wifi0
[  340.333372][T10137] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  340.361486][T10137] batman_adv: batadv0: Interface activated: virt_wifi0
[  341.112354][T10169] loop4: detected capacity change from 0 to 1024
[  341.119855][T10169] EXT4-fs: Ignoring removed bh option
[  341.127872][T10169] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  341.216143][T10169] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  341.313352][T10143] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  341.341103][T10143] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  341.367169][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.410418][T10143] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  341.424355][T10143] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  341.458450][T10143] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  341.482497][T10143] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  341.522731][T10143] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  341.542805][T10143] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  341.603783][T10143] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  341.612600][T10143] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  341.698727][T10143] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  341.745575][T10187] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1364'.
[  341.945065][T10193] veth0_to_team: entered promiscuous mode
[  343.017296][ T5877] Bluetooth: hci0: command 0x0406 tx timeout
[  343.481147][ T5877] Bluetooth: hci1: command 0x0406 tx timeout
[  343.504512][ T5877] Bluetooth: hci2: command 0x0406 tx timeout
[  343.575856][ T5877] Bluetooth: hci4: command 0x0405 tx timeout
[  343.602014][T10243] loop2: detected capacity change from 0 to 128
[  343.604785][T10238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1386'.
[  343.654903][ T5877] Bluetooth: hci3: command 0x0c1a tx timeout
[  343.701679][T10246] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1392'.
[  343.850020][T10253] geneve2: entered promiscuous mode
[  343.855473][T10253] geneve2: entered allmulticast mode
[  343.917770][T10259] loop2: detected capacity change from 0 to 128
[  344.489259][T10292] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1409'.
[  344.712078][T10306] netlink: 'syz.2.1415': attribute type 3 has an invalid length.
[  344.814875][T10314] loop2: detected capacity change from 0 to 512
[  344.886977][T10314] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.904214][T10314] ext4 filesystem being mounted at /251/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  344.953511][T10322] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1421'.
[  345.094042][ T5877] Bluetooth: hci0: command 0x0406 tx timeout
[  345.100466][ T5861] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.381485][T10346] loop2: detected capacity change from 0 to 164
[  345.393711][T10346] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  345.411671][T10346] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  345.423400][T10346] Symlink component flag not implemented
[  345.432483][T10346] Symlink component flag not implemented
[  345.439315][T10346] Symlink component flag not implemented (7)
[  345.447230][T10346] Symlink component flag not implemented (116)
[  345.510250][T10354] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1433'.
[  345.570936][T10356] loop2: detected capacity change from 0 to 512
[  345.577816][ T5877] Bluetooth: hci2: command 0x0406 tx timeout
[  345.584105][ T5873] Bluetooth: hci1: command 0x0406 tx timeout
[  345.590903][T10356] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  345.616522][T10358] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1435'.
[  345.619783][T10360] loop5: detected capacity change from 0 to 128
[  345.646831][T10356] EXT4-fs (loop2): 1 truncate cleaned up
[  345.654139][ T5877] Bluetooth: hci4: command 0x0405 tx timeout
[  345.655858][T10356] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.701962][   T30] kauditd_printk_skb: 31 callbacks suppressed
[  345.701979][   T30] audit: type=1804 audit(1757541806.407:661): pid=10356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1434" name="/newroot/254/bus/bus" dev="loop2" ino=18 res=1 errno=0
[  345.704687][T10364] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1437'.
[  345.738172][ T5877] Bluetooth: hci3: command 0x0c1a tx timeout
[  345.744566][T10364] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1437'.
[  346.208005][T10386] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1446'.
[  346.379013][T10391] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1447'.
[  346.515900][ T5861] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.987510][    T9] hid_parser_main: 6 callbacks suppressed
[  346.987533][    T9] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4
[  347.022358][    T9] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2
[  347.041216][    T9] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  347.050000][    T9] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  347.058474][    T9] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  347.066547][    T9] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  347.074533][    T9] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  347.082342][    T9] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  347.090445][    T9] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  347.148144][    T9] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[  347.184161][    T9] hid-generic 0000:3000000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  347.186439][T10423] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1463'.
[  347.260180][   T30] audit: type=1326 audit(1757541807.967:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.1.1464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  347.319816][   T30] audit: type=1326 audit(1757541807.987:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.1.1464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  347.381642][   T30] audit: type=1326 audit(1757541807.987:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.1.1464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  347.421473][T10435] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  347.421586][   T30] audit: type=1326 audit(1757541807.997:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.1.1464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  347.454304][   T30] audit: type=1326 audit(1757541807.997:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.1.1464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  347.494350][   T30] audit: type=1326 audit(1757541807.997:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.1.1464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  347.520007][   T30] audit: type=1326 audit(1757541807.997:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.1.1464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  347.677043][   T30] audit: type=1326 audit(1757541807.997:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.1.1464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  347.700098][   T30] audit: type=1326 audit(1757541807.997:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.1.1464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  347.843086][ T5877] Bluetooth: hci3: command 0x0c1a tx timeout
[  347.860963][T10442] rdma_rxe: rxe_newlink: failed to add lo
[  347.863204][T10450] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1472'.
[  347.889138][T10450] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1472'.
[  348.301570][T10478] netlink: 'syz.2.1482': attribute type 3 has an invalid length.
[  348.380565][T10482] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1483'.
[  348.566156][T10497] loop4: detected capacity change from 0 to 128
[  349.443884][T10545] loop5: detected capacity change from 0 to 1024
[  349.451196][T10545] EXT4-fs: Ignoring removed orlov option
[  349.497247][T10545] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  349.655669][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.087925][T10584] geneve2: entered promiscuous mode
[  350.093189][T10584] geneve2: entered allmulticast mode
[  350.705111][T10612] __nla_validate_parse: 3 callbacks suppressed
[  350.705129][T10612] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1537'.
[  350.734266][   T30] kauditd_printk_skb: 36 callbacks suppressed
[  350.734283][   T30] audit: type=1326 audit(1757541811.447:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.4.1538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  350.782838][T10614] loop4: detected capacity change from 0 to 512
[  350.800699][T10614] EXT4-fs: Ignoring removed orlov option
[  350.813428][   T30] audit: type=1326 audit(1757541811.477:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.4.1538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  350.848510][T10614] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  350.858636][   T30] audit: type=1326 audit(1757541811.477:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.4.1538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  350.884996][   T30] audit: type=1326 audit(1757541811.477:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.4.1538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  350.936865][T10614] EXT4-fs (loop4): 1 truncate cleaned up
[  350.960499][T10614] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  351.012368][   T30] audit: type=1326 audit(1757541811.477:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.4.1538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  351.132774][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.145553][   T30] audit: type=1326 audit(1757541811.487:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.4.1538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  351.201071][   T30] audit: type=1326 audit(1757541811.487:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.4.1538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  351.242755][   T30] audit: type=1326 audit(1757541811.487:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.4.1538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  351.300110][   T30] audit: type=1326 audit(1757541811.487:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.4.1538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  351.345011][T10636] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1544'.
[  351.376545][   T30] audit: type=1326 audit(1757541811.487:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.4.1538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f710258ebe3 code=0x7ffc0000
[  351.565299][T10647] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1550'.
[  352.049733][T10680] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1562'.
[  352.089184][T10681] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1564'.
[  352.252120][T10691] netlink: 332 bytes leftover after parsing attributes in process `syz.3.1569'.
[  352.261418][T10691] netlink: 'syz.3.1569': attribute type 9 has an invalid length.
[  352.274878][T10691] netlink: 108 bytes leftover after parsing attributes in process `syz.3.1569'.
[  352.296049][T10688] 9pnet_fd: Insufficient options for proto=fd
[  352.307819][T10691] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1569'.
[  352.578895][T10706] serio: Serial port ptm0
[  352.619571][T10711] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1578'.
[  352.629353][T10712] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1577'.
[  353.355830][T10758] loop4: detected capacity change from 0 to 128
[  353.452512][    T9] hid_parser_main: 6 callbacks suppressed
[  353.452533][    T9] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x4
[  353.478377][    T9] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x2
[  353.496634][    T9] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  353.516930][    T9] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  353.538436][    T9] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  353.549208][    T9] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  353.560733][ T7119] bio_check_eod: 34 callbacks suppressed
[  353.560750][ T7119] kworker/u8:11: attempt to access beyond end of device
[  353.560750][ T7119] loop4: rw=1, sector=153, nr_sectors = 8 limit=128
[  353.572960][T10769] loop5: detected capacity change from 0 to 1024
[  353.587985][    T9] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  353.598099][    T9] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  353.606460][ T7119] kworker/u8:11: attempt to access beyond end of device
[  353.606460][ T7119] loop4: rw=1, sector=169, nr_sectors = 8 limit=128
[  353.622022][    T9] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  353.627863][ T7119] kworker/u8:11: attempt to access beyond end of device
[  353.627863][ T7119] loop4: rw=1, sector=185, nr_sectors = 8 limit=128
[  353.637966][    T9] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  353.643599][ T7119] kworker/u8:11: attempt to access beyond end of device
[  353.643599][ T7119] loop4: rw=1, sector=201, nr_sectors = 8 limit=128
[  353.665533][ T7119] kworker/u8:11: attempt to access beyond end of device
[  353.665533][ T7119] loop4: rw=1, sector=217, nr_sectors = 8 limit=128
[  353.681872][ T7119] kworker/u8:11: attempt to access beyond end of device
[  353.681872][ T7119] loop4: rw=1, sector=233, nr_sectors = 8 limit=128
[  353.682442][    T9] hid-generic 0000:3000000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  353.700678][ T7119] kworker/u8:11: attempt to access beyond end of device
[  353.700678][ T7119] loop4: rw=1, sector=249, nr_sectors = 8 limit=128
[  353.718984][ T7119] kworker/u8:11: attempt to access beyond end of device
[  353.718984][ T7119] loop4: rw=1, sector=265, nr_sectors = 8 limit=128
[  353.732733][ T7119] kworker/u8:11: attempt to access beyond end of device
[  353.732733][ T7119] loop4: rw=1, sector=281, nr_sectors = 8 limit=128
[  353.737526][T10769] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  353.752408][ T7119] kworker/u8:11: attempt to access beyond end of device
[  353.752408][ T7119] loop4: rw=1, sector=297, nr_sectors = 8 limit=128
[  353.778812][T10769] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  353.817702][T10769] EXT4-fs error (device loop5): ext4_map_blocks:814: inode #15: block 3: comm syz.5.1602: lblock 3 mapped to illegal pblock 3 (length 3)
[  353.849652][T10769] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  353.866577][T10769] EXT4-fs (loop5): This should not happen!! Data will be lost
[  353.866577][T10769] 
[  353.926297][  T205] EXT4-fs error (device loop5): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:5: lblock 8 mapped to illegal pblock 8 (length 8)
[  353.959601][  T205] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  353.992788][  T205] EXT4-fs (loop5): This should not happen!! Data will be lost
[  353.992788][  T205] 
[  354.046721][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  355.664737][    T9] hid-generic 0000:3000000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  355.826693][   T30] kauditd_printk_skb: 129 callbacks suppressed
[  355.826710][   T30] audit: type=1326 audit(1757541816.538:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10885 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  355.898698][   T30] audit: type=1326 audit(1757541816.568:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10885 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=197 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  355.921469][   T30] audit: type=1326 audit(1757541816.568:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10885 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f574778eba9 code=0x7ffc0000
[  355.996256][T10888] syzkaller0: refused to change device tx_queue_len
[  356.073166][T10895] lo speed is unknown, defaulting to 1000
[  356.404604][T10913] __nla_validate_parse: 5 callbacks suppressed
[  356.404626][T10913] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1659'.
[  356.931641][   T30] audit: type=1326 audit(1757541817.638:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10930 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  356.988707][   T30] audit: type=1326 audit(1757541817.638:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10930 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  357.064981][   T30] audit: type=1326 audit(1757541817.638:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10930 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  357.120513][   T30] audit: type=1326 audit(1757541817.678:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10930 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  357.178330][T10938] bond0: entered promiscuous mode
[  357.193589][T10938] bond_slave_0: entered promiscuous mode
[  357.206636][T10938] bond_slave_1: entered promiscuous mode
[  358.251015][   T30] audit: type=1326 audit(1757541818.958:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10954 comm="syz.4.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7fc00000
[  358.458298][T10999] loop4: detected capacity change from 0 to 1024
[  358.477417][T10999] EXT4-fs: Ignoring removed orlov option
[  358.524797][T10999] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  358.526660][   T10] hid_parser_main: 22 callbacks suppressed
[  358.526677][   T10] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x4
[  358.564775][   T30] audit: type=1800 audit(1757541819.268:854): pid=10999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1697" name="file1" dev="loop4" ino=15 res=0 errno=0
[  358.594010][   T10] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x2
[  358.603484][   T10] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0
[  358.611273][   T10] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0
[  358.620000][   T10] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0
[  358.628945][   T10] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0
[  358.637036][   T10] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0
[  358.646723][   T30] audit: type=1804 audit(1757541819.358:855): pid=10999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1697" name="/newroot/350/file1/file1" dev="loop4" ino=15 res=1 errno=0
[  358.668793][   T10] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0
[  358.688666][   T10] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0
[  358.698789][   T10] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0
[  358.700893][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.713706][   T10] hid-generic 0000:3000000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  359.324603][ T5958] hid-generic 0000:3000000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  359.342690][T11036] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1710'.
[  359.572404][T11052] loop5: detected capacity change from 0 to 1024
[  359.581573][T11052] EXT4-fs: Ignoring removed nobh option
[  359.589122][T11052] EXT4-fs: Ignoring removed bh option
[  359.609563][T11052] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  359.687779][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.826252][T11065] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1721'.
[  360.224673][T11088] loop7: detected capacity change from 0 to 16384
[  360.349724][T11091] pim6reg: entered allmulticast mode
[  360.358899][T11094] loop4: detected capacity change from 0 to 512
[  360.379328][T11095] loop5: detected capacity change from 0 to 512
[  360.403697][T11095] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  360.460499][T11095] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.1733: invalid indirect mapped block 4294967295 (level 0)
[  360.488095][T11095] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.1733: invalid indirect mapped block 4294967295 (level 1)
[  360.526949][T11094] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.545998][T11095] EXT4-fs (loop5): 1 orphan inode deleted
[  360.551772][T11095] EXT4-fs (loop5): 1 truncate cleaned up
[  360.568454][T11095] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  360.590645][T11094] ext4 filesystem being mounted at /358/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  360.627706][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.664277][T11091] loop7: detected capacity change from 16384 to 16383
[  360.738595][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.932029][   T30] kauditd_printk_skb: 52 callbacks suppressed
[  360.932045][   T30] audit: type=1326 audit(1757541821.638:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11118 comm="syz.4.1742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  361.003335][   T30] audit: type=1326 audit(1757541821.688:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11118 comm="syz.4.1742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  361.058717][   T30] audit: type=1326 audit(1757541821.688:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11118 comm="syz.4.1742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  361.131193][   T30] audit: type=1326 audit(1757541821.688:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11118 comm="syz.4.1742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  361.168113][   T30] audit: type=1326 audit(1757541821.708:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11118 comm="syz.4.1742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  361.192747][   T30] audit: type=1326 audit(1757541821.708:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11118 comm="syz.4.1742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=102 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  361.242538][   T30] audit: type=1326 audit(1757541821.708:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11118 comm="syz.4.1742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7ffc0000
[  361.794382][T11151] program syz.1.1754 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  361.804149][T11151] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  361.951133][T11156] geneve2: entered promiscuous mode
[  361.957834][T11156] geneve2: entered allmulticast mode
[  362.074448][   T30] audit: type=1326 audit(1757541822.788:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11159 comm="syz.5.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  362.122174][   T30] audit: type=1326 audit(1757541822.788:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11159 comm="syz.5.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  362.192160][   T30] audit: type=1326 audit(1757541822.788:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11159 comm="syz.5.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1e1b8eba9 code=0x7ffc0000
[  364.704823][T11238] sg_write: data in/out 127/8 bytes for SCSI command 0x7f-- guessing data in;
[  364.704823][T11238]    program syz.5.1785 not setting count and/or reply_len properly
[  364.821196][T11245] loop5: detected capacity change from 0 to 128
[  365.587670][T11260] rdma_rxe: rxe_newlink: failed to add lo
[  366.279545][T11267] loop5: detected capacity change from 0 to 512
[  366.365821][T11267] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  366.397812][T11267] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  366.665195][ T7429] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.166135][T11292] netlink: 64 bytes leftover after parsing attributes in process `syz.5.1806'.
[  367.579671][T11113] Set syz1 is full, maxelem 65536 reached
[  367.620124][T11303] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1811'.
[  367.789553][T11305] lo speed is unknown, defaulting to 1000
[  368.206809][T11320] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1817'.
[  368.849267][T11330] program syz.2.1821 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  368.868624][T11330] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  369.222766][T11338] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1824'.
[  369.702610][   T30] kauditd_printk_skb: 228 callbacks suppressed
[  369.702628][   T30] audit: type=1326 audit(1757541830.388:1146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11329 comm="syz.4.1820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f710258eba9 code=0x7fc00000
[  370.899544][T11380] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1834'.
[  371.243883][   T30] audit: type=1326 audit(1757541831.958:1147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11397 comm="syz.2.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  371.309094][   T30] audit: type=1326 audit(1757541831.958:1148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11397 comm="syz.2.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  371.322868][T11400] loop4: detected capacity change from 0 to 512
[  371.379088][   T30] audit: type=1326 audit(1757541831.958:1149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11397 comm="syz.2.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  371.382867][T11400] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.437557][   T30] audit: type=1326 audit(1757541831.958:1150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11397 comm="syz.2.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  371.463791][   T30] audit: type=1326 audit(1757541831.958:1151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11397 comm="syz.2.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  371.486517][   T30] audit: type=1326 audit(1757541831.958:1152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11397 comm="syz.2.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  371.509403][   T30] audit: type=1326 audit(1757541831.958:1153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11397 comm="syz.2.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  371.532006][   T30] audit: type=1326 audit(1757541831.958:1154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11397 comm="syz.2.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  371.555261][   T30] audit: type=1326 audit(1757541831.958:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11397 comm="syz.2.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  371.578174][T11400] ext4 filesystem being mounted at /379/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  371.670722][T11410] netlink: 96 bytes leftover after parsing attributes in process `syz.5.1847'.
[  371.786631][T11400] EXT4-fs error (device loop4): ext4_readdir:264: inode #12: block 32: comm syz.4.1843: path /379/bus/file0: bad entry in directory: rec_len is too small for name_len - offset=0, inode=12, rec_len=12, size=2048 fake=0
[  371.947908][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.184968][T11426] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  372.191967][ T5958] IPVS: starting estimator thread 0...
[  372.201371][T11426] syzkaller0: entered promiscuous mode
[  372.212155][T11426] syzkaller0: entered allmulticast mode
[  372.234843][T11425] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1854'.
[  372.244201][T11425] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1854'.
[  372.280688][T11426] tipc: Resetting bearer <eth:syzkaller0>
[  372.294342][T11428] IPVS: using max 30 ests per chain, 72000 per kthread
[  372.303586][T11423] tipc: Resetting bearer <eth:syzkaller0>
[  372.348854][T11423] tipc: Disabling bearer <eth:syzkaller0>
[  372.612572][   T10] hid_parser_main: 22 callbacks suppressed
[  372.612618][   T10] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x4
[  372.659402][   T10] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x2
[  372.669550][   T10] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  372.677775][   T10] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  372.687047][   T10] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  372.695120][   T10] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  372.706220][   T10] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  372.742989][   T10] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  372.761512][   T10] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  372.788549][   T10] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  372.815021][   T10] hid-generic 0000:3000000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  373.200643][T11480] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1877'.
[  373.212859][T11480] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1877'.
[  373.347529][ T5958] hid-generic 0000:3000000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  373.530310][T11493] loop4: detected capacity change from 0 to 512
[  373.555521][T11493] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  373.603496][T11493] ext4 filesystem being mounted at /388/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  373.841950][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.537195][T11522] usb usb8: usbfs: process 11522 (syz.4.1892) did not claim interface 0 before use
[  375.188731][T11548] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1903'.
[  375.198364][T11548] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1903'.
[  375.767208][T11562] loop4: detected capacity change from 0 to 2048
[  375.944765][T11562] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  375.964221][T11562] ext4 filesystem being mounted at /394/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  376.064083][T11574] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1913'.
[  376.230353][T11579] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1915'.
[  376.288487][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  376.288504][   T30] audit: type=1326 audit(1757541836.999:1165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11580 comm="syz.2.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  376.392364][   T30] audit: type=1326 audit(1757541837.029:1166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11580 comm="syz.2.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  376.436291][   T30] audit: type=1326 audit(1757541837.039:1167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11580 comm="syz.2.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  376.464630][   T30] audit: type=1326 audit(1757541837.039:1168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11580 comm="syz.2.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  376.497684][   T30] audit: type=1326 audit(1757541837.039:1169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11580 comm="syz.2.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60fc58eba9 code=0x7ffc0000
[  376.718044][  T205] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:5: bg 0: block 345: padding at end of block bitmap is not set
[  376.746870][  T205] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 79 with max blocks 1 with error 117
[  376.765205][  T205] EXT4-fs (loop4): This should not happen!! Data will be lost
[  376.765205][  T205] 
[  376.780490][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.877574][T11601] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1922'.
[  377.286539][T11628] netlink: 264 bytes leftover after parsing attributes in process `syz.5.1935'.
[  378.131241][T11677] loop4: detected capacity change from 0 to 128
[  378.433903][T11685] tipc: Started in network mode
[  378.454147][T11685] tipc: Node identity 86da9b61ec86, cluster identity 4711
[  378.461459][T11685] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  378.475767][T11685] syzkaller0: entered promiscuous mode
[  378.481269][T11685] syzkaller0: entered allmulticast mode
[  378.503974][T11685] tipc: Resetting bearer <eth:syzkaller0>
[  378.529618][T11684] tipc: Resetting bearer <eth:syzkaller0>
[  378.540537][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  378.621480][T11697] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1965'.
[  378.644273][T11684] tipc: Disabling bearer <eth:syzkaller0>
[  379.041519][   T30] audit: type=1326 audit(1757541839.749:1170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11724 comm="syz.3.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  379.093943][   T30] audit: type=1326 audit(1757541839.749:1171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11724 comm="syz.3.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  379.145343][   T30] audit: type=1326 audit(1757541839.789:1172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11724 comm="syz.3.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  379.190113][   T30] audit: type=1326 audit(1757541839.789:1173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11724 comm="syz.3.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  379.291142][   T30] audit: type=1326 audit(1757541839.789:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11724 comm="syz.3.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835478eba9 code=0x7ffc0000
[  379.374450][T11737] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1982'.
[  379.486581][T11747] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1986'.
[  379.518747][T11747] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1986'.
[  380.168411][T11780] loop4: detected capacity change from 0 to 1024
[  380.211489][T11780] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  380.256863][T11780] ext4 filesystem being mounted at /413/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  380.288998][T11787] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  380.307492][T11780] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 3: comm syz.4.2001: lblock 3 mapped to illegal pblock 3 (length 3)
[  380.326967][T11780] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  380.339947][T11780] EXT4-fs (loop4): This should not happen!! Data will be lost
[  380.339947][T11780] 
[  380.377044][T11766] loop5: detected capacity change from 0 to 512
[  380.390373][  T205] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:5: lblock 8 mapped to illegal pblock 8 (length 8)
[  380.421600][  T205] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  380.434831][T11766] ------------[ cut here ]------------
[  380.440549][T11766] EA inode 11 i_nlink=2
[  380.440895][T11766] WARNING: fs/ext4/xattr.c:1053 at ext4_xattr_inode_update_ref+0x534/0x5d0, CPU#1: syz.5.1995/11766
[  380.444850][  T205] EXT4-fs (loop4): This should not happen!! Data will be lost
[  380.444850][  T205] 
[  380.445708][T11766] Modules linked in:
[  380.469930][ T5860] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  380.471198][T11766] CPU: 1 UID: 0 PID: 11766 Comm: syz.5.1995 Not tainted syzkaller #0 PREEMPT(full) 
[  380.490668][T11766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  380.502305][T11766] RIP: 0010:ext4_xattr_inode_update_ref+0x534/0x5d0
[  380.509412][T11766] Code: 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 0f 85 86 00 00 00 41 8b 14 24 48 c7 c7 e0 e0 bf 8b 4c 89 fe e8 0d 53 fc fe 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df e9 bb fd ff ff e8 94 57
[  380.529562][T11766] RSP: 0018:ffffc9000d79f160 EFLAGS: 00010246
[  380.536186][T11766] RAX: 57ca77eacbdfed00 RBX: dffffc0000000000 RCX: 0000000000080000
[  380.544719][T11766] RDX: ffffc9000e813000 RSI: 0000000000007a57 RDI: 0000000000007a58
[  380.553252][T11766] RBP: ffffc9000d79f258 R08: ffff8880b8724253 R09: 1ffff110170e484a
[  380.561242][T11766] R10: dffffc0000000000 R11: ffffed10170e484b R12: ffff88804bf7bc40
[  380.569755][T11766] R13: 1ffff110097ef788 R14: 00000000ffffffff R15: 000000000000000b
[  380.578179][T11766] FS:  00007fc1e2a366c0(0000) GS:ffff888125af0000(0000) knlGS:0000000000000000
[  380.587586][T11766] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  380.595054][T11766] CR2: ffffffffffffffe8 CR3: 000000002705c000 CR4: 00000000003526f0
[  380.603689][T11766] Call Trace:
[  380.606986][T11766]  <TASK>
[  380.609930][T11766]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  380.615870][T11766]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  380.622276][T11766]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[  380.627771][T11766]  ext4_xattr_set_entry+0xabb/0x1e20
[  380.633183][T11766]  ext4_xattr_ibody_set+0x254/0x6a0
[  380.638415][T11766]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[  380.644422][T11766]  __ext4_expand_extra_isize+0x30d/0x400
[  380.650116][T11766]  __ext4_mark_inode_dirty+0x46c/0x700
[  380.655633][T11766]  ext4_evict_inode+0x80d/0xee0
[  380.660504][T11766]  ? __pfx_ext4_evict_inode+0x10/0x10
[  380.665980][T11766]  ? do_raw_spin_unlock+0x122/0x240
[  380.671194][T11766]  ? __pfx_ext4_evict_inode+0x10/0x10
[  380.676650][T11766]  evict+0x501/0x9c0
[  380.680578][T11766]  ? __pfx_evict+0x10/0x10
[  380.685091][T11766]  ? do_raw_spin_unlock+0x122/0x240
[  380.690730][T11766]  ? _raw_spin_unlock+0x28/0x50
[  380.696090][T11766]  ? iput+0x930/0xc40
[  380.700387][T11766]  ext4_orphan_cleanup+0xc20/0x1460
[  380.705641][T11766]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  380.711287][T11766]  ? ext4_register_li_request+0x259/0x720
[  380.717083][T11766]  ? errseq_check_and_advance+0x66/0x120
[  380.722795][T11766]  ext4_fill_super+0x57df/0x6090
[  380.727784][T11766]  ? __pfx_ext4_fill_super+0x10/0x10
[  380.733185][T11766]  ? set_blocksize+0x21e/0x500
[  380.737981][T11766]  ? sb_set_blocksize+0x104/0x180
[  380.743084][T11766]  ? setup_bdev_super+0x4c1/0x5b0
[  380.748144][T11766]  get_tree_bdev_flags+0x40b/0x4d0
[  380.753353][T11766]  ? __pfx_ext4_fill_super+0x10/0x10
[  380.758664][T11766]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  380.764495][T11766]  vfs_get_tree+0x8f/0x2b0
[  380.768940][T11766]  do_new_mount+0x302/0xa10
[  380.773754][T11766]  ? apparmor_capable+0x137/0x1b0
[  380.778803][T11766]  ? __pfx_do_new_mount+0x10/0x10
[  380.783869][T11766]  ? ns_capable+0x8a/0xf0
[  380.788247][T11766]  ? kmem_cache_free+0x19a/0x690
[  380.793611][T11766]  __se_sys_mount+0x313/0x410
[  380.798295][T11766]  ? __pfx___se_sys_mount+0x10/0x10
[  380.803560][T11766]  ? do_syscall_64+0xbe/0xfa0
[  380.808246][T11766]  ? __x64_sys_mount+0x20/0xc0
[  380.813066][T11766]  do_syscall_64+0xfa/0xfa0
[  380.817582][T11766]  ? lockdep_hardirqs_on+0x9c/0x150
[  380.822823][T11766]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.828902][T11766]  ? clear_bhb_loop+0x60/0xb0
[  380.833644][T11766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.839546][T11766] RIP: 0033:0x7fc1e1b9034a
[  380.843994][T11766] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  380.863671][T11766] RSP: 002b:00007fc1e2a35e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  380.872139][T11766] RAX: ffffffffffffffda RBX: 00007fc1e2a35ef0 RCX: 00007fc1e1b9034a
[  380.880130][T11766] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fc1e2a35eb0
[  380.888160][T11766] RBP: 0000200000000180 R08: 00007fc1e2a35ef0 R09: 0000000000800700
[  380.896625][T11766] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  380.904681][T11766] R13: 00007fc1e2a35eb0 R14: 0000000000000473 R15: 0000200000000680
[  380.912754][T11766]  </TASK>
[  380.915793][T11766] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  380.923077][T11766] CPU: 1 UID: 0 PID: 11766 Comm: syz.5.1995 Not tainted syzkaller #0 PREEMPT(full) 
[  380.932453][T11766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  380.942512][T11766] Call Trace:
[  380.945793][T11766]  <TASK>
[  380.948748][T11766]  dump_stack_lvl+0x99/0x250
[  380.953335][T11766]  ? __asan_memcpy+0x40/0x70
[  380.957921][T11766]  ? __pfx_dump_stack_lvl+0x10/0x10
[  380.963113][T11766]  ? __pfx__printk+0x10/0x10
[  380.967751][T11766]  vpanic+0x237/0x6d0
[  380.971723][T11766]  ? __pfx_vpanic+0x10/0x10
[  380.976233][T11766]  ? is_bpf_text_address+0x292/0x2b0
[  380.981519][T11766]  ? is_bpf_text_address+0x26/0x2b0
[  380.986739][T11766]  panic+0xb9/0xc0
[  380.990467][T11766]  ? __pfx_panic+0x10/0x10
[  380.994926][T11766]  __warn+0x334/0x4c0
[  380.998924][T11766]  ? ext4_xattr_inode_update_ref+0x534/0x5d0
[  381.004923][T11766]  ? ext4_xattr_inode_update_ref+0x534/0x5d0
[  381.010912][T11766]  report_bug+0x2be/0x4f0
[  381.015269][T11766]  ? ext4_xattr_inode_update_ref+0x534/0x5d0
[  381.021246][T11766]  ? ext4_xattr_inode_update_ref+0x534/0x5d0
[  381.027330][T11766]  ? ext4_xattr_inode_update_ref+0x536/0x5d0
[  381.033326][T11766]  handle_bug+0x84/0x160
[  381.037572][T11766]  exc_invalid_op+0x1a/0x50
[  381.042069][T11766]  asm_exc_invalid_op+0x1a/0x20
[  381.046947][T11766] RIP: 0010:ext4_xattr_inode_update_ref+0x534/0x5d0
[  381.053546][T11766] Code: 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 0f 85 86 00 00 00 41 8b 14 24 48 c7 c7 e0 e0 bf 8b 4c 89 fe e8 0d 53 fc fe 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df e9 bb fd ff ff e8 94 57
[  381.073159][T11766] RSP: 0018:ffffc9000d79f160 EFLAGS: 00010246
[  381.079236][T11766] RAX: 57ca77eacbdfed00 RBX: dffffc0000000000 RCX: 0000000000080000
[  381.087258][T11766] RDX: ffffc9000e813000 RSI: 0000000000007a57 RDI: 0000000000007a58
[  381.095237][T11766] RBP: ffffc9000d79f258 R08: ffff8880b8724253 R09: 1ffff110170e484a
[  381.103212][T11766] R10: dffffc0000000000 R11: ffffed10170e484b R12: ffff88804bf7bc40
[  381.111182][T11766] R13: 1ffff110097ef788 R14: 00000000ffffffff R15: 000000000000000b
[  381.119174][T11766]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  381.124991][T11766]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  381.131356][T11766]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[  381.136843][T11766]  ext4_xattr_set_entry+0xabb/0x1e20
[  381.142151][T11766]  ext4_xattr_ibody_set+0x254/0x6a0
[  381.147355][T11766]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[  381.153295][T11766]  __ext4_expand_extra_isize+0x30d/0x400
[  381.158953][T11766]  __ext4_mark_inode_dirty+0x46c/0x700
[  381.164435][T11766]  ext4_evict_inode+0x80d/0xee0
[  381.169311][T11766]  ? __pfx_ext4_evict_inode+0x10/0x10
[  381.174724][T11766]  ? do_raw_spin_unlock+0x122/0x240
[  381.179929][T11766]  ? __pfx_ext4_evict_inode+0x10/0x10
[  381.185299][T11766]  evict+0x501/0x9c0
[  381.189211][T11766]  ? __pfx_evict+0x10/0x10
[  381.193647][T11766]  ? do_raw_spin_unlock+0x122/0x240
[  381.198890][T11766]  ? _raw_spin_unlock+0x28/0x50
[  381.203745][T11766]  ? iput+0x930/0xc40
[  381.207741][T11766]  ext4_orphan_cleanup+0xc20/0x1460
[  381.212961][T11766]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  381.218588][T11766]  ? ext4_register_li_request+0x259/0x720
[  381.224306][T11766]  ? errseq_check_and_advance+0x66/0x120
[  381.229951][T11766]  ext4_fill_super+0x57df/0x6090
[  381.234910][T11766]  ? __pfx_ext4_fill_super+0x10/0x10
[  381.240203][T11766]  ? set_blocksize+0x21e/0x500
[  381.244986][T11766]  ? sb_set_blocksize+0x104/0x180
[  381.250027][T11766]  ? setup_bdev_super+0x4c1/0x5b0
[  381.255059][T11766]  get_tree_bdev_flags+0x40b/0x4d0
[  381.260171][T11766]  ? __pfx_ext4_fill_super+0x10/0x10
[  381.265454][T11766]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  381.271092][T11766]  vfs_get_tree+0x8f/0x2b0
[  381.275524][T11766]  do_new_mount+0x302/0xa10
[  381.280043][T11766]  ? apparmor_capable+0x137/0x1b0
[  381.285076][T11766]  ? __pfx_do_new_mount+0x10/0x10
[  381.290112][T11766]  ? ns_capable+0x8a/0xf0
[  381.294458][T11766]  ? kmem_cache_free+0x19a/0x690
[  381.299405][T11766]  __se_sys_mount+0x313/0x410
[  381.304088][T11766]  ? __pfx___se_sys_mount+0x10/0x10
[  381.309289][T11766]  ? do_syscall_64+0xbe/0xfa0
[  381.313959][T11766]  ? __x64_sys_mount+0x20/0xc0
[  381.318723][T11766]  do_syscall_64+0xfa/0xfa0
[  381.323214][T11766]  ? lockdep_hardirqs_on+0x9c/0x150
[  381.328413][T11766]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.334472][T11766]  ? clear_bhb_loop+0x60/0xb0
[  381.339146][T11766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.345030][T11766] RIP: 0033:0x7fc1e1b9034a
[  381.349435][T11766] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.369030][T11766] RSP: 002b:00007fc1e2a35e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  381.377436][T11766] RAX: ffffffffffffffda RBX: 00007fc1e2a35ef0 RCX: 00007fc1e1b9034a
[  381.385400][T11766] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fc1e2a35eb0
[  381.393363][T11766] RBP: 0000200000000180 R08: 00007fc1e2a35ef0 R09: 0000000000800700
[  381.401321][T11766] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  381.409279][T11766] R13: 00007fc1e2a35eb0 R14: 0000000000000473 R15: 0000200000000680
[  381.417259][T11766]  </TASK>
[  381.420527][T11766] Kernel Offset: disabled
[  381.424843][T11766] Rebooting in 86400 seconds..