last executing test programs:

16.200818766s ago: executing program 2 (id=2007):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x2200054, &(0x7f0000000140)={[{@minixdf}, {@nodelalloc}]}, 0x1, 0x236, &(0x7f0000000300)="$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")
open(&(0x7f0000000140)='./bus\x00', 0x14937e, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r0, 0x2007ffb)
socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x13, r0, 0x0)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000240)='./file2\x00', 0x800000, &(0x7f0000000200)=ANY=[@ANYRESHEX=0x0, @ANYRES64, @ANYRESOCT], 0x1, 0x333, &(0x7f0000000440)="$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")
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000001540)='./file0\x00', 0x40, &(0x7f00000010c0)=ANY=[@ANYRES8=r1, @ANYRESOCT, @ANYRES64, @ANYRESHEX=0x0, @ANYBLOB="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"], 0xff, 0x1501, &(0x7f0000003240)="$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")
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2090422, &(0x7f0000000380)={[{@prjquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x400000}}], [{@smackfsroot={'smackfsroot', 0x3d, '/Bev/kvm\x00'}}, {@subj_user={'subj_user', 0x3d, 'k\\{'}}]}, 0x6, 0x529, &(0x7f0000000780)="$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")
capset(&(0x7f0000000100), 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xa00010, &(0x7f0000001f80)=ANY=[@ANYBLOB='iocharset=iso8859-1,nostrict,iocharset=default,anchor=00000000000000000145,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c706172746974696f6e3d30303030303030303030303030303030303030322c756e64656c6574652c706172746974696f6e3d30303030303030303030303030303030303030312c756e686964652c001e066340c987db28915dbe6892bc3dce41ae76eaf528dc889820692d753009e30e567403a6c30e933de68a0a923eec1dccf226b58adb7d968bafe76628bceade8672fb893f87dc88"], 0x1, 0xc5a, &(0x7f0000001040)="$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")

14.300361941s ago: executing program 2 (id=2012):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"/306], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0xa}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)

14.121389256s ago: executing program 2 (id=2013):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00003f9000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000040)=@filename='./file0\x00', 0xee00, &(0x7f0000000240))
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, 0x0, 0x0, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
inotify_init1(0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
poll(&(0x7f0000000140)=[{r4}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
syz_open_dev$ttys(0xc, 0x2, 0x1)
syz_emit_vhci(0x0, 0x7)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20}, {}, {0xfc01, 0x0, 0x0, 0x401}]}, 0x10)
sendto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400050000000000000000000000000000010c00028005000100000000000800074000000000040006"], 0x98}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000580)={0xc0, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x2c, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @empty}]}]}, 0xc0}}, 0x0)
ioctl$sock_bt_hci(r5, 0x400448e2, &(0x7f0000000300))
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x4b52, &(0x7f0000000000))

13.152189245s ago: executing program 2 (id=2022):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da97e22f4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ad0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bff3b89c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c2ed01faa7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497dad64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6fba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd2310801570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb414c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a000000000000000000000000000000000000000000000000000000a0cc2b89ce1525748ce167cbabb881f060599a6a59f645edca1d5c24b2f6b8c997a8f3e1b7679984a566d98d4d31198ee4c5ea7be0d99cf89bba4a6fd0bec12e7792bec3c5038e13b1982f80cdecd07f8908a983a7c9fb81c2ba7f7e87c991f30e50d1b3bbe4cf2a2f5d4571b6568ada51bc121c9139d2a8e0638c84066b1759081802"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x3014490, &(0x7f0000000200)={[{@nombcache}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@max_batch_time={'max_batch_time', 0x3d, 0x5}}, {@mblk_io_submit}, {@minixdf}, {@barrier_val}, {@grpjquota}, {@auto_da_alloc}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000c80)=@sg0, 0x0, &(0x7f00000000c0)='efs\x00', 0x0, 0x0)
mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1000, 0x0)
pivot_root(0x0, &(0x7f0000000640)='./file0\x00')
unshare(0x4a060480)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
ioctl$FIBMAP(r1, 0x660c, 0x0)

10.751945551s ago: executing program 2 (id=2034):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x35, 0x4, 0x0, 0x0, 0xd4, 0x64, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x14, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1}, {@remote}, {@dev, 0x65c}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote, 0x1}, {@multicast2}, {@private=0xa0100fe}, {@rand_addr=0x64010100}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0xf, {"a2e3ad21e08eeb661b3d090987f70e03d038e7ff7fc6e5539b0d650e8b089b3f353b68090890e0878f0e1ac6e7049b3b46959b649a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31070d07420936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c554336909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f6777478bc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15ffffffffffffffff1243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5dc29a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f6435f7590000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9a53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f423500c7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02da93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d0300000000000000b378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d678746383074c6bc1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b3c7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0da42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9cc8036cbd65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f90000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000400", 0x104d}}, 0x1006)

10.27637621s ago: executing program 0 (id=2037):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"/306], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)

10.270147391s ago: executing program 0 (id=2038):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/diskstats\x00', 0x0, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x14}}, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r0 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000000)='posixacl\x00', 0x0, 0x0)
ioperm(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
sendmmsg$sock(r4, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0xffffff80, 0x10040)

10.03456552s ago: executing program 2 (id=2039):
lstat(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
syz_open_procfs(0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4)
socket$igmp(0x2, 0x3, 0x2)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002f80)=[{{&(0x7f0000000300)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000580)=[@ip_ttl={{0x14, 0x0, 0x34, 0x4}}], 0x18}}], 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e999000000000000000000000000000000000000000000000000ac1414bb0000000000000000000000004e220000000000000a008080"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x188}}, 0x0)
ioctl$TIOCSBRK(r0, 0x5427)
write$P9_RGETATTR(0xffffffffffffffff, &(0x7f00000002c0)={0xa0, 0x19, 0x1, {0x28c0, {0x0, 0x3, 0x7}, 0x102, 0x0, 0x0, 0xfffffffffffffffa, 0xdd6b, 0x9, 0x4, 0x7ff, 0x6, 0x1, 0xfffffffffffff257, 0x4, 0x0, 0x0, 0xffffffff, 0x3ff, 0x4000000000, 0x5}}, 0xa0)
r6 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$TCXONC(r0, 0x540a, 0x2)

9.146852862s ago: executing program 0 (id=2041):
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000400000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000240)=0x1, 0x4)
connect$inet(r0, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f0000003b40)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="1a", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000003480)=[{&(0x7f0000003200)='.', 0x1}], 0x1}}], 0x2, 0x2404881c)

9.062056299s ago: executing program 0 (id=2044):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x3014490, &(0x7f0000000200)={[{@nombcache}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@max_batch_time={'max_batch_time', 0x3d, 0x5}}, {@mblk_io_submit}, {@minixdf}, {@barrier_val}, {@grpjquota}, {@auto_da_alloc}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$eJzs3c9rHNcdAPDvrFY/7VYqFFr3JCi0BuNV5ap2C4Wq9FAKNRjaUw+1xWotHK20RrsylhCJTQjkEkhCbsnF5/y8hFzz45BL8n8EGyeRTRxyCAqzP6SVtCvvOtKuHX8+MNZ7M2/2ve+82TfPmtFuAE+tyfSfTMSJiHg5iRivr08iYrCaykbM1so92NzIp0sSW1v/+Sqplrm/uZGPpn1Sx+qZX0fExy9EnMrsr7e8tr44VywWVur5qcrS1any2vrpK0tzC4WFwvLZ6ZmZM+f+dO7s4cX6zefrx++88s/fvzP73fO/evelT5KYjeP1bc1xHJbJmKwfk8H0EO7yj8OurG/ef7aDQk1nQPYoG0OX0o4ZqPfKiRiPgYP6Z7SXLQMAjspzEbHVzkDbLQDAEy2pXf//1u92AAC90vg9wP3NjXxj6e9vJHrr7t8jYqQWf+P+Zm1Ltn7PbqR6H3TsfrLrzkgSEROHUP9kRLzxwf/fSpc4ovuQAK3cuBkRlyYm94//yb5nFrr1h9arF5ozk3s2Gv+gdz5M5z9/bjX/y2zPf6LF/Ge4xXv3UTz8/Z+5fQjVtJXO//7a9Gzbg6b46yYG6rmfVed8g8nlK8VCOrb9PCJOxuBwmp8+oI6T976/125b8/zv61efeTOtP/25UyJzOzu8e5/5ucrcj4m52d2bEb/Jtoo/Hf+Hq/2ftJn/Xuiwjn/95cXX221L40/jbSz74z9aW7ciftey/5PtMsmBzydOVU+HqcZJ0cJ7szHWrv7J7E7/p0taf+P/Ar2Q9v/YwfFPJM3Pa5Y7funtp8U+uzX+UbtCzed/6/hbn/9DyX+r6aH6uutzlcrKdMRQ8u/968/s7NvIN8qn8Z/8bev3f2P8a3H+/y99/UsdHojsnS/ffvT4j1Ya/3xX/d91IkYeLA60q7+z/p/ZtU8n41+nDXzU4wYAAAAAAAAAAAAAAAAAAAAAAAAA3chExPFIMrntdCaTy9W+w/uXMZYplsqVU5dLq8vzUf2u7IkYzDQ+6nK86fNQp+ufh9/In9mT/2NE/CIiXhsereZz+VJxvt/BAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDdsTbf/5/6YnhP4YF+tBAAOBIjLuwA8LRJstl+NwEA6LWRrkqPHlk7AIDe6e76DwD8FLj+A8DT5yHX/71/BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADdunD+fLpsfbu5kU/z89fWVhdL107PF8qLuaXVfC5fWrmaWyiVFoqFXL601PaFbtR+FEulqzOxvHp9qlIoV6bKa+sXl0qry5WLV5bmFgoXC4M9iwwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOldeW1+cKxYLKxJ9SSx+WuuHx6U9Et0l4kat/x6X9hxeIoZ2RonR/gxOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAE+AHwIAAP//4VQjgA==")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000c80)=@sg0, 0x0, &(0x7f00000000c0)='efs\x00', 0x0, 0x0)
mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1000, 0x0)
pivot_root(0x0, &(0x7f0000000640)='./file0\x00')
unshare(0x4a060480)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
ioctl$FIBMAP(r1, 0x660c, 0x0)

6.835133822s ago: executing program 0 (id=2054):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x25, 0x4b6, &(0x7f0000000540)="$eJzs3c9vVFsdAPDvvW1pKYUWJfFHVBBRNISZdoCGsMKNxhASI3HlAmo7NE1nOk1nirSyKP+DiSSu9E9wYeLChJV7d7pzgwsTVOILfclbzMudmZZSOm3fo8x96Xw+ycm9555hvt/D9J4zPW3nBNC3LkTERkSciIgHETHeuZ50Stxul+xxr189md189WQ2iWbz3n+TVnt2LXb8m8ypznOORMTPfhzxy+TduPW19cWZSqW80qkXG9XlYn1t/epCdWa+PF9eKpWmp6Ynb167UTqyvp6v/vHljxbu/Pwvf/7mi79t/ODXWVpjnbad/ThK7a4PbcfJDEbEnQ8RLAcDnf6cyDsRPpc0Ir4UERez+7+ZdzYAQC80m+PRHN9ZBwCOu7S1Bpakhc5awFikaaHQXsM7F6NppVZvXHlYW12aa6+VTcRQ+nChUp7srBVOxFCS1ada52/qpV31axFxNiJ+M3yyVS/M1ipzeb7xAYA+dmrX/P/RcHv+BwCOuZG8EwAAes78DwD9x/wPAP3H/A8A/cf8DwD9x/wPAP3H/A8AfeWnd+9mpbnZ+fzruUdrq4u1R1fnyvXFQnV1tjBbW1kuzNdq863P7Kke9HyVWm156nqsPi42yvVGsb62fr9aW11q3G99rvf98lBPegUA7Ofs+ef/SCJi49bJVokdezmYq+F4S/NOAMjNQN4JALkZzDsBIDe+xwf22KL3LV1/RejZ0ecC9Mblr1n/h35l/R/6l/V/6F/W/6F/NZuJPf8BoM9Y4wf8/B8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+u7FWSdJCZy/wsUjTQiHidERMxFDycKFSnoyIMxHx9+Gh4aw+lXfSAMB7Sv+ddPb/ujx+aWx364nk4+HWMSJ+9bt7v30802isTGXX/7d9vfGsc72UR/4AwEG25umteXzL61dPZrdKL/N5+cP25qJZ3M1OabcMxmDrOBJDETH6/6RTb8verwwcQfyNpxHx1b36n7TWRiY6O5/ujp/FPt3T+Olb8dNWW/uY/V98+QhygX7zPBt/bu91/6VxoXXc+/4faY1Q729r/Nt8Z/xLt8e/gS7j34XDxrj+1590bXsa8fXBveIn2/GTLvEvHTL+P7/xrYvd2pq/j7gce8ffGavYqC4X62vrVxeqM/Pl+fJSqTQ9NT1589qNUrG1Rl3cWql+139uXTmzX/9Hu8QfOaD/3z1k///wyYNffHuf+N//zt6v/7l94mdz4vcOGX9m9E9dt+/O4s916f9Br/+VQ8Z/8a/1uUM+FADogfra+uJMpVJecdKzk+y92xcgDSe5nWRfAUfxPF/5gKnmPTIBH9qbmz7vTAAAAAAAAAAAAAAAgG568QdPefcRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA4+vTAAAA//+0tdao")
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x200, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000180))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r1, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)

4.988110773s ago: executing program 0 (id=2063):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x36, 0x4, 0x0, 0x0, 0xd8, 0x64, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1}, {@remote}, {@dev, 0x65c}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote, 0x1}, {@multicast2}, {@private=0xa0100fe}, {@rand_addr=0x64010100}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0xf, {"a2e3ad21e08eeb661b3d090987f70e03d038e7ff7fc6e5539b0d650e8b089b3f353b68090890e0878f0e1ac6e7049b3b46959b649a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31070d07420936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c554336909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f6777478bc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15ffffffffffffffff1243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5dc29a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f6435f7590000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9a53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f423500c7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02da93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d0300000000000000b378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d678746383074c6bc1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b3c7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0da42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9cc8036cbd65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f90000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000400", 0x104d}}, 0x1006)

2.394129235s ago: executing program 4 (id=2084):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
socket$inet6(0xa, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x54}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r2, @ANYBLOB="0100000000000000240012000c000100627269646765000e14000200080007004a9a0000080027"], 0x44}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="4c0000001000010400"/18, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b000100677265746170000014000280080004000104000005000a000100000008000a00", @ANYRES32=r4], 0x4c}}, 0x0)

2.176487012s ago: executing program 3 (id=2085):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x25, 0x4b6, &(0x7f0000000540)="$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")
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x200, 0x96)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000180))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)

2.049331293s ago: executing program 4 (id=2086):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x35, 0x4, 0x0, 0x0, 0xd4, 0x64, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x14, 0x0, 0x0, 0x9, [0x401, 0x5, 0x5, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1}, {@remote}, {@dev, 0x65c}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote, 0x1}, {@multicast2}, {@private=0xa0100fe}, {@rand_addr=0x64010100}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0xf, {"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", 0x104d}}, 0x1006)

1.572216012s ago: executing program 1 (id=2087):
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000400000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000240)=0x1, 0x4)
connect$inet(r0, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f0000003b40)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="1a", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000003480)=[{&(0x7f0000003200)='.', 0x1}], 0x1}}], 0x2, 0x2404881c)

1.539731265s ago: executing program 1 (id=2088):
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, &(0x7f0000cab000))
setfsgid(0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
get_robust_list(r1, 0x0, 0x0)

1.485448599s ago: executing program 4 (id=2089):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0xa}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)

1.411333525s ago: executing program 1 (id=2090):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0xf, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x18, 0x1c}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

1.324698852s ago: executing program 1 (id=2091):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001600)={&(0x7f0000000100)='net_dev_xmit\x00', r1}, 0x35)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="b9ff03076844268cb89e14f005dd1be0ffff00fe3a21632f77fbac14141de007031762079f4b4d2f87e5feca6aab845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0x8, 0x60000000}, 0x1e)

1.324219252s ago: executing program 3 (id=2092):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000080), &(0x7f0000000280)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
close(0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x5, 0x1, 0x8e, 0xe7c9, 0x1}, 0x48)
bpf$MAP_DELETE_BATCH(0x18, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x7, r2}, 0x38)

1.248236419s ago: executing program 4 (id=2093):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x4500, &(0x7f0000000140)={[{@init_itable}, {@noquota}, {@nouid32}, {@barrier}, {@noauto_da_alloc}, {@journal_dev={'journal_dev', 0x3d, 0x1ff}}, {@barrier}, {@delalloc}, {@usrquota}]}, 0x10, 0x4d3, &(0x7f0000000ec0)="$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")
creat(&(0x7f0000000080)='./bus\x00', 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
clock_gettime(0x0, &(0x7f0000000280)={0x0, <r0=>0x0})
timer_settime(0x0, 0x0, &(0x7f00000002c0)={{0x77359400}, {0x0, r0+10000000}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
clock_nanosleep(0x2, 0x0, &(0x7f0000000300)={0x0, 0x989680}, 0x0)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x21}, &(0x7f0000000500)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r2 = socket$unix(0x1, 0x0, 0x0)
bind$unix(r2, &(0x7f0000003000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mount$9p_fd(0x0, &(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r4 = open(0x0, 0x14113e, 0x0)
write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f00000001c0)={0x2e, 0x4, 0x0, {0x6, 0x0, 0x6, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x2e)
write$binfmt_script(r4, &(0x7f0000000080), 0x208e24b)
ioctl$FS_IOC_GETFSMAP(r3, 0x6611, 0x0)

1.22518655s ago: executing program 1 (id=2094):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
socket$inet6(0xa, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x54}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r2, @ANYBLOB="0100000000000000240012000c000100627269646765000e14000200080007004a9a0000080027"], 0x44}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="4c0000001000010400"/18, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b000100677265746170000014000280080004000104000005000a000100000008000a00", @ANYRES32=r4], 0x4c}}, 0x0)

876.537539ms ago: executing program 1 (id=2095):
socket$inet6(0xa, 0x80002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180200000000000000000000000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000180)="900000001d001f4d154a817393278bff0a80a578020000000404840014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000766436c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731a", 0x8c, 0x0, 0x0, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_PASTESEL(r3, 0x541c, &(0x7f0000000000))

752.157489ms ago: executing program 3 (id=2096):
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000400000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000240)=0x1, 0x4)
connect$inet(r0, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f0000003b40)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="1a", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000003480)=[{&(0x7f0000003200)='.', 0x1}], 0x1}}], 0x2, 0x2404881c)

727.385081ms ago: executing program 3 (id=2097):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800004e9d00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffcd7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x6, 0x4, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000e27b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r1}, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, 0x0, 0x38}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000002c0)={r3}, 0x69)

607.228451ms ago: executing program 3 (id=2098):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x35, 0x4, 0x0, 0x0, 0xd4, 0x64, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x14, 0x0, 0x0, 0x9, [0x401, 0x5, 0x5, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1}, {@remote}, {@dev, 0x65c}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote, 0x1}, {@multicast2}, {@private=0xa0100fe}, {@rand_addr=0x64010100}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0xf, {"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", 0x104d}}, 0x1006)

356.365921ms ago: executing program 4 (id=2099):
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, &(0x7f0000cab000))
setfsgid(0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
get_robust_list(r1, 0x0, 0x0)

74.695574ms ago: executing program 4 (id=2100):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})
close(r3)

0s ago: executing program 3 (id=2101):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x25, 0x4b6, &(0x7f0000000540)="$eJzs3c9vVFsdAPDvvW1pKYUWJfFHVBBRNISZdoCGsMKNxhASI3HlAmo7NE1nOk1nirSyKP+DiSSu9E9wYeLChJV7d7pzgwsTVOILfclbzMudmZZSOm3fo8x96Xw+ycm9555hvt/D9J4zPW3nBNC3LkTERkSciIgHETHeuZ50Stxul+xxr189md189WQ2iWbz3n+TVnt2LXb8m8ypznOORMTPfhzxy+TduPW19cWZSqW80qkXG9XlYn1t/epCdWa+PF9eKpWmp6Ynb167UTqyvp6v/vHljxbu/Pwvf/7mi79t/ODXWVpjnbad/ThK7a4PbcfJDEbEnQ8RLAcDnf6cyDsRPpc0Ir4UERez+7+ZdzYAQC80m+PRHN9ZBwCOu7S1Bpakhc5awFikaaHQXsM7F6NppVZvXHlYW12aa6+VTcRQ+nChUp7srBVOxFCS1ada52/qpV31axFxNiJ+M3yyVS/M1ipzeb7xAYA+dmrX/P/RcHv+BwCOuZG8EwAAes78DwD9x/wPAP3H/A8A/cf8DwD9x/wPAP3H/A8AfeWnd+9mpbnZ+fzruUdrq4u1R1fnyvXFQnV1tjBbW1kuzNdq863P7Kke9HyVWm156nqsPi42yvVGsb62fr9aW11q3G99rvf98lBPegUA7Ofs+ef/SCJi49bJVokdezmYq+F4S/NOAMjNQN4JALkZzDsBIDe+xwf22KL3LV1/RejZ0ecC9Mblr1n/h35l/R/6l/V/6F/W/6F/NZuJPf8BoM9Y4wf8/B8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+u7FWSdJCZy/wsUjTQiHidERMxFDycKFSnoyIMxHx9+Gh4aw+lXfSAMB7Sv+ddPb/ujx+aWx364nk4+HWMSJ+9bt7v30802isTGXX/7d9vfGsc72UR/4AwEG25umteXzL61dPZrdKL/N5+cP25qJZ3M1OabcMxmDrOBJDETH6/6RTb8verwwcQfyNpxHx1b36n7TWRiY6O5/ujp/FPt3T+Olb8dNWW/uY/V98+QhygX7zPBt/bu91/6VxoXXc+/4faY1Q729r/Nt8Z/xLt8e/gS7j34XDxrj+1590bXsa8fXBveIn2/GTLvEvHTL+P7/xrYvd2pq/j7gce8ffGavYqC4X62vrVxeqM/Pl+fJSqTQ9NT1589qNUrG1Rl3cWql+139uXTmzX/9Hu8QfOaD/3z1k///wyYNffHuf+N//zt6v/7l94mdz4vcOGX9m9E9dt+/O4s916f9Br/+VQ8Z/8a/1uUM+FADogfra+uJMpVJecdKzk+y92xcgDSe5nWRfAUfxPF/5gKnmPTIBH9qbmz7vTAAAAAAAAAAAAAAAgG568QdPefcRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA4+vTAAAA//+0tdao")
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x200, 0x96)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000180))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)

kernel console output (not intermixed with test programs):

ort 2(bridge_slave_1) entered blocking state
[  368.515411][ T9871] bridge0: port 2(bridge_slave_1) entered disabled state
[  368.542773][ T9871] device bridge_slave_1 entered promiscuous mode
[  368.605476][ T7133] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  368.635806][ T9914] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1493'.
[  368.651727][ T9928] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1498'.
[  368.664166][ T9928] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1498'.
[  368.703761][ T9871] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  368.757127][ T9871] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  368.970760][ T9932] loop2: detected capacity change from 0 to 512
[  368.983900][ T9871] team0: Port device team_slave_0 added
[  369.001571][ T9871] team0: Port device team_slave_1 added
[  369.040286][ T3587] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  369.131658][ T9932] EXT4-fs error (device loop2): ext4_ext_check_inode:501: inode #16: comm syz.2.1501: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  369.191893][ T9938] netlink: 'syz.1.1502': attribute type 7 has an invalid length.
[  369.204821][ T9938] netlink: 'syz.1.1502': attribute type 39 has an invalid length.
[  369.206410][ T9932] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.1501: couldn't read orphan inode 16 (err -117)
[  369.263730][ T9932] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  369.274298][ T9942] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1502'.
[  369.296797][ T3587] usb 1-1: Using ep0 maxpacket: 8
[  369.318326][ T9871] batman_adv: batadv0: Adding interface: batadv_slave_0
[  369.332984][ T9871] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  369.338910][ T9932] ext4 filesystem being mounted at /211/file1 supports timestamps until 2038 (0x7fffffff)
[  369.448860][ T3587] usb 1-1: config 0 has no interfaces?
[  369.454471][ T3587] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  369.611391][ T9871] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  370.303811][ T3550] Bluetooth: hci3: command 0x041b tx timeout
[  370.365575][ T3587] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  370.377248][ T3587] usb 1-1: config 0 descriptor??
[  370.437087][ T9871] batman_adv: batadv0: Adding interface: batadv_slave_1
[  370.466664][ T9871] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  370.478805][ T3587] usb 1-1: can't set config #0, error -71
[  370.558788][ T9871] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  370.626710][ T3587] usb 1-1: USB disconnect, device number 20
[  371.084388][ T9968] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1506'.
[  371.135894][ T9871] device hsr_slave_0 entered promiscuous mode
[  371.203532][ T9871] device hsr_slave_1 entered promiscuous mode
[  371.288926][ T9871] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  371.296487][ T9871] Cannot create hsr debugfs directory
[  371.346425][ T9975] netlink: 'syz.2.1507': attribute type 7 has an invalid length.
[  371.386132][ T9975] netlink: 'syz.2.1507': attribute type 39 has an invalid length.
[  371.598534][ T9996] netlink: 'syz.2.1514': attribute type 7 has an invalid length.
[  371.616821][ T9996] netlink: 'syz.2.1514': attribute type 39 has an invalid length.
[  371.672453][ T9997] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1514'.
[  372.389400][ T3552] Bluetooth: hci3: command 0x040f tx timeout
[  372.675124][T10017] loop1: detected capacity change from 0 to 512
[  372.980316][T10031] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1519'.
[  373.465101][T10017] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #16: comm syz.1.1517: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  373.486687][T10017] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.1517: couldn't read orphan inode 16 (err -117)
[  373.612875][T10017] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  373.700924][T10017] ext4 filesystem being mounted at /183/file1 supports timestamps until 2038 (0x7fffffff)
[  373.725911][ T7133] device hsr_slave_0 left promiscuous mode
[  373.737152][ T7133] device hsr_slave_1 left promiscuous mode
[  373.816291][ T7133] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  373.868382][ T7133] batman_adv: batadv0: Removing interface: batadv_slave_0
[  373.888301][ T7133] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  373.907246][ T7133] batman_adv: batadv0: Removing interface: batadv_slave_1
[  373.933525][ T7133] device bridge_slave_1 left promiscuous mode
[  373.966224][ T7133] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.998177][ T7133] device bridge_slave_0 left promiscuous mode
[  374.018811][ T7133] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.060658][ T7133] device veth1_macvtap left promiscuous mode
[  374.067497][ T7133] device veth0_macvtap left promiscuous mode
[  374.076617][ T7133] device veth1_vlan left promiscuous mode
[  374.086605][ T7133] device veth0_vlan left promiscuous mode
[  374.396612][    T9] tipc: Subscription rejected, illegal request
[  374.478788][ T3550] Bluetooth: hci3: command 0x0419 tx timeout
[  374.709477][ T3552] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  374.725896][ T7133] team0 (unregistering): Port device team_slave_1 removed
[  374.750742][ T7133] team0 (unregistering): Port device team_slave_0 removed
[  374.771865][ T7133] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  374.786147][ T7133] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  374.930599][ T7133] bond0 (unregistering): Released all slaves
[  375.008736][ T3552] usb 1-1: Using ep0 maxpacket: 8
[  375.046058][T10045] netlink: 'syz.3.1523': attribute type 7 has an invalid length.
[  375.062724][T10045] netlink: 'syz.3.1523': attribute type 39 has an invalid length.
[  375.085627][T10033] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1520'.
[  375.182404][ T3552] usb 1-1: config 0 has no interfaces?
[  375.188391][ T3552] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  375.256978][ T3552] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.310531][ T9871] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  375.339629][ T3552] usb 1-1: config 0 descriptor??
[  375.379862][ T9871] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  375.468382][ T9871] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  375.487596][T10065] netlink: 'syz.3.1528': attribute type 7 has an invalid length.
[  375.499031][T10065] netlink: 'syz.3.1528': attribute type 39 has an invalid length.
[  375.525549][ T9871] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  375.915235][ T9871] 8021q: adding VLAN 0 to HW filter on device bond0
[  376.686080][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  376.699327][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  376.811882][ T9871] 8021q: adding VLAN 0 to HW filter on device team0
[  376.866774][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  376.899332][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  377.012805][ T3587] bridge0: port 1(bridge_slave_0) entered blocking state
[  377.019897][ T3587] bridge0: port 1(bridge_slave_0) entered forwarding state
[  377.818350][ T4419] usb 1-1: USB disconnect, device number 21
[  377.842221][ T4039] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  377.869832][ T4039] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  377.914403][ T4039] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  377.949072][ T4039] bridge0: port 2(bridge_slave_1) entered blocking state
[  377.956135][ T4039] bridge0: port 2(bridge_slave_1) entered forwarding state
[  377.959893][T10101] loop1: detected capacity change from 0 to 512
[  378.009004][ T4039] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  378.037519][ T4039] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  378.152484][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  378.175316][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  378.188085][T10101] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #16: comm syz.1.1535: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  378.239275][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  378.296516][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  378.317675][T10101] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.1535: couldn't read orphan inode 16 (err -117)
[  378.357462][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  378.389882][ T1376] ieee802154 phy0 wpan0: encryption failed: -22
[  378.396165][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[  378.408968][T10101] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  378.444682][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  378.447003][T10101] ext4 filesystem being mounted at /187/file1 supports timestamps until 2038 (0x7fffffff)
[  378.494814][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  378.558442][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  378.605137][T10109] netlink: 'syz.0.1536': attribute type 7 has an invalid length.
[  378.640460][T10109] netlink: 'syz.0.1536': attribute type 39 has an invalid length.
[  378.705759][ T9871] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  378.726016][ T3915] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  379.022258][T10140] netlink: 'syz.1.1540': attribute type 7 has an invalid length.
[  379.689340][T10140] netlink: 'syz.1.1540': attribute type 39 has an invalid length.
[  380.878146][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  380.878236][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  380.898816][ T9871] 8021q: adding VLAN 0 to HW filter on device batadv0
[  381.501731][T10198] netlink: 'syz.1.1549': attribute type 7 has an invalid length.
[  381.530289][T10198] netlink: 'syz.1.1549': attribute type 39 has an invalid length.
[  382.252373][ T4039] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  382.271277][ T4039] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  382.282479][T10204] loop2: detected capacity change from 0 to 512
[  382.369447][ T9871] device veth0_vlan entered promiscuous mode
[  382.391402][ T3921] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  382.414580][ T3921] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  382.464285][ T9871] device veth1_vlan entered promiscuous mode
[  382.536301][ T3915] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  382.539941][T10204] EXT4-fs error (device loop2): ext4_ext_check_inode:501: inode #16: comm syz.2.1551: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  382.549212][ T3915] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  382.573904][ T3915] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  382.646075][T10223] netlink: 'syz.1.1556': attribute type 7 has an invalid length.
[  382.678026][T10204] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.1551: couldn't read orphan inode 16 (err -117)
[  382.700125][T10204] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  382.742141][T10223] netlink: 'syz.1.1556': attribute type 39 has an invalid length.
[  382.767068][T10204] ext4 filesystem being mounted at /223/file1 supports timestamps until 2038 (0x7fffffff)
[  382.889901][ T9871] device veth0_macvtap entered promiscuous mode
[  382.899999][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  382.917088][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  382.997324][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  383.016491][ T9871] device veth1_macvtap entered promiscuous mode
[  383.035324][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  383.667552][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  383.686622][ T9871] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  383.844924][ T9871] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  383.893775][ T9871] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  383.928837][ T9871] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  383.960439][ T9871] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  383.990631][ T9871] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  384.108904][ T9871] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  384.119568][ T9871] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  384.131158][ T9871] batman_adv: batadv0: Interface activated: batadv_slave_0
[  384.139475][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  384.798816][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  384.836777][ T9871] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  384.866287][ T9871] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  384.980176][ T9871] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  384.997293][ T9871] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  385.047954][ T9871] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  385.088630][ T9871] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  385.125156][ T9871] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  385.157332][ T9871] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  385.203915][ T9871] batman_adv: batadv0: Interface activated: batadv_slave_1
[  385.236991][T10264] netlink: 'syz.1.1564': attribute type 7 has an invalid length.
[  385.269215][T10264] netlink: 'syz.1.1564': attribute type 39 has an invalid length.
[  385.385319][T10270] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1564'.
[  385.434160][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  385.443411][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  386.255859][ T9871] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  386.261279][T10294] loop0: detected capacity change from 0 to 512
[  386.271278][ T9871] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  386.280415][ T9871] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  386.289429][ T9871] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  386.292765][T10296] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1572'.
[  386.329663][T10284] netlink: 'syz.1.1569': attribute type 7 has an invalid length.
[  386.355948][T10284] netlink: 'syz.1.1569': attribute type 39 has an invalid length.
[  386.366851][T10294] EXT4-fs error (device loop0): ext4_ext_check_inode:501: inode #16: comm syz.0.1571: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  386.488573][T10294] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.1571: couldn't read orphan inode 16 (err -117)
[  386.522572][T10294] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  386.549736][T10294] ext4 filesystem being mounted at /330/file1 supports timestamps until 2038 (0x7fffffff)
[  386.661462][ T1236] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  386.948028][ T8209] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  386.992017][ T8209] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  387.250441][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  387.390306][ T1236] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  387.450280][ T3917] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  387.702049][T10330] netlink: 'syz.0.1578': attribute type 7 has an invalid length.
[  387.730110][T10330] netlink: 'syz.0.1578': attribute type 39 has an invalid length.
[  387.805443][T10332] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1578'.
[  388.762172][T10343] netlink: 'syz.4.1583': attribute type 7 has an invalid length.
[  388.778947][T10343] netlink: 'syz.4.1583': attribute type 39 has an invalid length.
[  389.255397][T10355] loop3: detected capacity change from 0 to 512
[  389.768065][T10355] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #16: comm syz.3.1588: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  389.890977][T10355] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.1588: couldn't read orphan inode 16 (err -117)
[  389.906992][T10355] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  390.112194][T10355] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038 (0x7fffffff)
[  391.051058][T10390] netlink: 'syz.1.1598': attribute type 7 has an invalid length.
[  391.088757][T10390] netlink: 'syz.1.1598': attribute type 39 has an invalid length.
[  391.114361][T10393] netlink: 'syz.2.1595': attribute type 7 has an invalid length.
[  391.123330][T10393] netlink: 'syz.2.1595': attribute type 39 has an invalid length.
[  391.170845][T10386] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1595'.
[  391.590964][ T3917] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  392.362301][T10426] loop1: detected capacity change from 0 to 512
[  392.425757][T10432] netlink: 'syz.0.1613': attribute type 7 has an invalid length.
[  392.434197][T10432] netlink: 'syz.0.1613': attribute type 39 has an invalid length.
[  392.466609][T10426] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #16: comm syz.1.1611: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  392.488786][T10432] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1613'.
[  392.499290][T10426] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.1611: couldn't read orphan inode 16 (err -117)
[  392.512048][T10426] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  392.524273][T10434] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1615'.
[  392.533292][T10426] ext4 filesystem being mounted at /204/file1 supports timestamps until 2038 (0x7fffffff)
[  392.838963][ T3917] usb 5-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  392.895473][ T3917] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  392.932199][ T3917] usb 5-1: Product: syz
[  392.940874][ T3917] usb 5-1: Manufacturer: syz
[  392.950985][ T3917] usb 5-1: SerialNumber: syz
[  392.988404][ T3917] usb 5-1: config 0 descriptor??
[  393.102266][T10467] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1623'.
[  393.269273][ T3917] cx82310_eth: probe of 5-1:0.0 failed with error -22
[  393.770611][ T3917] cxacru 5-1:0.0: usbatm_usb_probe: bind failed: -19!
[  394.175836][T10476] validate_nla: 2 callbacks suppressed
[  394.175847][T10476] netlink: 'syz.1.1627': attribute type 7 has an invalid length.
[  394.200966][T10476] netlink: 'syz.1.1627': attribute type 39 has an invalid length.
[  394.220125][ T3917] usb 5-1: USB disconnect, device number 12
[  394.364145][T10482] netlink: 'syz.2.1628': attribute type 7 has an invalid length.
[  394.408740][T10482] netlink: 'syz.2.1628': attribute type 39 has an invalid length.
[  394.462040][T10494] loop4: detected capacity change from 0 to 512
[  394.477976][T10491] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1628'.
[  394.644223][T10494] EXT4-fs error (device loop4): ext4_ext_check_inode:501: inode #16: comm syz.4.1632: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  394.680060][T10494] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1632: couldn't read orphan inode 16 (err -117)
[  394.702161][T10494] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  394.723614][T10494] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038 (0x7fffffff)
[  396.072691][T10534] netlink: 'syz.2.1645': attribute type 7 has an invalid length.
[  396.075000][T10531] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1644'.
[  396.096130][T10534] netlink: 'syz.2.1645': attribute type 39 has an invalid length.
[  396.163897][T10537] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1645'.
[  396.210884][T10542] netlink: 'syz.1.1646': attribute type 7 has an invalid length.
[  396.238770][ T3587] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  396.273570][T10542] netlink: 'syz.1.1646': attribute type 39 has an invalid length.
[  396.315393][T10543] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1646'.
[  396.478780][T10549] loop1: detected capacity change from 0 to 2048
[  396.568490][T10549] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1649: bad orphan inode 8192
[  396.599345][T10549] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  396.624321][   T25] audit: type=1800 audit(1721787389.312:40): pid=10549 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1649" name="bus" dev="loop1" ino=18 res=0 errno=0
[  396.768835][ T3587] usb 4-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  396.809758][ T3587] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  396.860740][ T3587] usb 4-1: Product: syz
[  396.907487][ T3587] usb 4-1: Manufacturer: syz
[  396.952922][ T3587] usb 4-1: SerialNumber: syz
[  396.986347][ T3587] usb 4-1: config 0 descriptor??
[  397.248838][ T3587] cx82310_eth: probe of 4-1:0.0 failed with error -22
[  397.419840][T10559] loop4: detected capacity change from 0 to 512
[  397.534193][T10559] EXT4-fs error (device loop4): ext4_ext_check_inode:501: inode #16: comm syz.4.1651: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  397.589827][T10559] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1651: couldn't read orphan inode 16 (err -117)
[  397.603301][T10559] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  397.626032][T10559] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038 (0x7fffffff)
[  397.688944][ T3587] cxacru 4-1:0.0: usbatm_usb_probe: bind failed: -19!
[  397.708767][ T3587] usb 4-1: USB disconnect, device number 15
[  399.289193][T10578] netlink: 'syz.4.1658': attribute type 7 has an invalid length.
[  399.298811][T10578] netlink: 'syz.4.1658': attribute type 39 has an invalid length.
[  399.417176][T10579] loop1: detected capacity change from 0 to 2048
[  399.507815][T10579] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1657: bad orphan inode 8192
[  399.525110][T10588] netlink: 'syz.4.1659': attribute type 7 has an invalid length.
[  399.551187][T10588] netlink: 'syz.4.1659': attribute type 39 has an invalid length.
[  399.587835][T10579] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  399.614135][T10581] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1659'.
[  399.695957][T10581] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1659'.
[  400.483432][T10602] loop4: detected capacity change from 0 to 512
[  400.721207][T10602] EXT4-fs error (device loop4): ext4_ext_check_inode:501: inode #16: comm syz.4.1663: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  400.769231][T10602] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1663: couldn't read orphan inode 16 (err -117)
[  400.828134][T10602] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  400.938781][T10602] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038 (0x7fffffff)
[  401.401708][ T4419] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  402.004279][ T4419] usb 2-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  402.023637][ T4419] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  402.047702][ T4419] usb 2-1: Product: syz
[  402.088198][ T4419] usb 2-1: Manufacturer: syz
[  402.116118][ T4419] usb 2-1: SerialNumber: syz
[  402.141874][ T4419] usb 2-1: config 0 descriptor??
[  402.165838][T10616] loop2: detected capacity change from 0 to 2048
[  402.277402][T10616] EXT4-fs error (device loop2): ext4_orphan_get:1423: comm syz.2.1667: bad orphan inode 8192
[  402.296510][T10616] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  402.404494][ T4419] cx82310_eth: probe of 2-1:0.0 failed with error -22
[  402.419374][   T25] audit: type=1800 audit(1721787395.112:41): pid=10616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1667" name="bus" dev="loop2" ino=18 res=0 errno=0
[  402.439854][   T26] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  402.533669][T10620] loop3: detected capacity change from 0 to 512
[  402.624229][T10620] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  402.657104][T10620] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038 (0x7fffffff)
[  402.702467][T10620] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  402.735758][   T25] audit: type=1804 audit(1721787395.422:42): pid=10620 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1668" name="/newroot/46/file0/file1" dev="loop3" ino=15 res=1 errno=0
[  402.769927][T10620] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  402.796161][T10620] EXT4-fs (loop3): This should not happen!! Data will be lost
[  402.796161][T10620] 
[  402.808012][T10620] EXT4-fs (loop3): Total free blocks count 0
[  402.819727][T10620] EXT4-fs (loop3): Free/Dirty block details
[  402.825759][T10620] EXT4-fs (loop3): free_blocks=65281
[  402.837755][T10620] EXT4-fs (loop3): dirty_blocks=23
[  402.844533][T10620] EXT4-fs (loop3): Block reservation details
[  402.851346][   T26] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  402.869656][   T26] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  402.881038][ T4419] cxacru 2-1:0.0: usbatm_usb_probe: bind failed: -19!
[  402.912673][T10620] EXT4-fs (loop3): i_reserved_data_blocks=23
[  402.925941][ T4419] usb 2-1: USB disconnect, device number 23
[  403.058181][T10627] netlink: 'syz.3.1670': attribute type 7 has an invalid length.
[  403.081425][T10627] netlink: 'syz.3.1670': attribute type 39 has an invalid length.
[  403.129108][   T26] usb 5-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  403.153075][   T26] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  403.195089][   T26] usb 5-1: Product: syz
[  403.215536][   T26] usb 5-1: Manufacturer: syz
[  403.232276][   T26] usb 5-1: SerialNumber: syz
[  403.274807][   T26] usb 5-1: config 0 descriptor??
[  403.299672][T10615] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  403.307810][T10615] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  403.336972][T10639] netlink: 'syz.3.1672': attribute type 7 has an invalid length.
[  403.347109][T10639] netlink: 'syz.3.1672': attribute type 39 has an invalid length.
[  403.413662][T10640] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1672'.
[  403.424153][T10640] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1672'.
[  403.571953][T10615] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  403.610609][T10615] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  403.644872][T10648] loop1: detected capacity change from 0 to 512
[  403.766491][T10648] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #16: comm syz.1.1677: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  403.940545][T10648] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.1677: couldn't read orphan inode 16 (err -117)
[  404.028804][   T26] Error reading MAC address
[  404.045254][   T26] usb 5-1: USB disconnect, device number 13
[  404.160065][T10648] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  404.210415][T10648] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038 (0x7fffffff)
[  405.004422][T10662] loop0: detected capacity change from 0 to 512
[  405.081841][T10665] loop2: detected capacity change from 0 to 512
[  405.098098][T10667] loop4: detected capacity change from 0 to 512
[  405.162135][T10662] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  405.174804][T10667] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  405.194151][T10662] ext4 filesystem being mounted at /348/file0 supports timestamps until 2038 (0x7fffffff)
[  405.255743][T10665] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  405.288914][T10665] ext4 filesystem being mounted at /252/file0 supports timestamps until 2038 (0x7fffffff)
[  405.324678][T10677] netlink: 'syz.3.1683': attribute type 7 has an invalid length.
[  405.334134][T10677] netlink: 'syz.3.1683': attribute type 39 has an invalid length.
[  405.347955][T10667] EXT4-fs (loop4): 1 truncate cleaned up
[  405.358735][T10667] EXT4-fs (loop4): mounted filesystem without journal. Opts: resuid=0x0000000000000000,init_itable,stripe=0x0000000000000000,noblock_validity,,errors=continue. Quota mode: none.
[  405.387697][T10662] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  405.413172][T10667] syz.4.1681 (pid 10667) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  405.453707][T10665] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  405.493702][   T25] audit: type=1804 audit(1721787398.182:43): pid=10665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1680" name="/newroot/252/file0/file1" dev="loop2" ino=15 res=1 errno=0
[  405.520255][T10665] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  405.550494][   T25] audit: type=1804 audit(1721787398.202:44): pid=10678 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1679" name="/newroot/348/file0/file1" dev="loop0" ino=15 res=1 errno=0
[  405.578777][T10665] EXT4-fs (loop2): This should not happen!! Data will be lost
[  405.578777][T10665] 
[  405.596597][T10665] EXT4-fs (loop2): Total free blocks count 0
[  405.614748][T10665] EXT4-fs (loop2): Free/Dirty block details
[  405.624559][T10665] EXT4-fs (loop2): free_blocks=65281
[  405.644297][T10665] EXT4-fs (loop2): dirty_blocks=23
[  405.665427][T10665] EXT4-fs (loop2): Block reservation details
[  405.672728][T10665] EXT4-fs (loop2): i_reserved_data_blocks=23
[  405.712381][T10689] loop1: detected capacity change from 0 to 1024
[  405.812998][T10695] netlink: 'syz.0.1686': attribute type 7 has an invalid length.
[  405.829589][T10695] netlink: 'syz.0.1686': attribute type 39 has an invalid length.
[  405.875300][T10691] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1686'.
[  405.901150][ T3758] hfsplus: b-tree write err: -5, ino 8
[  405.930539][T10691] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1686'.
[  405.954039][ T6493] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  406.023504][T10703] loop0: detected capacity change from 0 to 2048
[  406.149488][T10703] EXT4-fs error (device loop0): ext4_orphan_get:1423: comm syz.0.1691: bad orphan inode 8192
[  406.182881][T10703] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  406.208277][   T25] audit: type=1800 audit(1721787398.892:45): pid=10703 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1691" name="bus" dev="loop0" ino=18 res=0 errno=0
[  407.076902][T10720] loop1: detected capacity change from 0 to 512
[  407.174491][T10720] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #16: comm syz.1.1695: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  407.193997][ T6493] usb 4-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  407.219517][ T6493] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  407.238696][   T26] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  407.256384][ T6493] usb 4-1: Product: syz
[  407.263694][ T6493] usb 4-1: Manufacturer: syz
[  407.278756][T10720] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.1695: couldn't read orphan inode 16 (err -117)
[  407.317627][ T6493] usb 4-1: SerialNumber: syz
[  407.323434][T10720] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  407.366349][ T6493] usb 4-1: config 0 descriptor??
[  407.385773][T10720] ext4 filesystem being mounted at /227/file1 supports timestamps until 2038 (0x7fffffff)
[  407.620394][   T26] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  407.643995][   T26] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  407.654491][ T6493] cx82310_eth: probe of 4-1:0.0 failed with error -22
[  407.870651][   T26] usb 5-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  407.888890][   T26] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  407.908752][   T26] usb 5-1: Product: syz
[  407.913017][   T26] usb 5-1: Manufacturer: syz
[  407.933248][   T26] usb 5-1: SerialNumber: syz
[  407.975410][   T26] usb 5-1: config 0 descriptor??
[  408.028971][T10713] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  408.043590][T10726] netlink: 'syz.1.1696': attribute type 7 has an invalid length.
[  408.056260][T10726] netlink: 'syz.1.1696': attribute type 39 has an invalid length.
[  408.056459][T10713] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  408.108925][ T6493] cxacru 4-1:0.0: usbatm_usb_probe: bind failed: -19!
[  408.142797][ T6493] usb 4-1: USB disconnect, device number 16
[  408.342143][T10713] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  408.366470][T10713] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  408.583411][T10734] loop0: detected capacity change from 0 to 128
[  408.619612][T10735] loop2: detected capacity change from 0 to 512
[  408.690708][T10743] netlink: 'syz.3.1701': attribute type 7 has an invalid length.
[  408.708736][   T26] Error reading MAC address
[  408.728896][T10743] netlink: 'syz.3.1701': attribute type 39 has an invalid length.
[  408.734478][   T26] usb 5-1: USB disconnect, device number 14
[  408.793845][T10735] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  408.812277][T10738] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1701'.
[  408.816785][T10735] ext4 filesystem being mounted at /256/file0 supports timestamps until 2038 (0x7fffffff)
[  408.851654][T10747] loop0: detected capacity change from 0 to 512
[  408.858399][T10738] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1701'.
[  408.884655][T10735] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  408.916683][T10747] EXT4-fs (loop0): Test dummy encryption mode enabled
[  408.969198][T10747] EXT4-fs (loop0): Ignoring removed oldalloc option
[  408.988724][T10747] EXT4-fs (loop0): Ignoring removed nobh option
[  409.021053][   T25] audit: type=1804 audit(1721787401.712:46): pid=10735 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1700" name="/newroot/256/file0/file1" dev="loop2" ino=15 res=1 errno=0
[  409.050897][T10747] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  409.091287][T10735] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  409.108195][T10747] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  409.123569][T10735] EXT4-fs (loop2): This should not happen!! Data will be lost
[  409.123569][T10735] 
[  409.150372][T10735] EXT4-fs (loop2): Total free blocks count 0
[  409.158279][T10735] EXT4-fs (loop2): Free/Dirty block details
[  409.164692][T10735] EXT4-fs (loop2): free_blocks=65281
[  409.172456][T10735] EXT4-fs (loop2): dirty_blocks=23
[  409.177646][T10735] EXT4-fs (loop2): Block reservation details
[  409.183896][T10735] EXT4-fs (loop2): i_reserved_data_blocks=23
[  409.185080][T10747] EXT4-fs (loop0): Remounting filesystem read-only
[  409.251384][T10747] EXT4-fs (loop0): 1 truncate cleaned up
[  409.257293][T10747] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,quota,debug_want_extra_isize=0x000000000000002e,oldalloc,errors=remount-ro,nobh,. Quota mode: writeback.
[  409.278805][T10759] loop1: detected capacity change from 0 to 256
[  409.298116][T10761] loop4: detected capacity change from 0 to 512
[  409.336580][T10759] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  409.413096][T10766] netlink: 'syz.0.1708': attribute type 7 has an invalid length.
[  409.425051][T10761] EXT4-fs error (device loop4): ext4_ext_check_inode:501: inode #16: comm syz.4.1707: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  409.450226][T10766] netlink: 'syz.0.1708': attribute type 39 has an invalid length.
[  409.533447][T10771] loop0: detected capacity change from 0 to 2048
[  409.540230][T10761] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1707: couldn't read orphan inode 16 (err -117)
[  409.555974][T10761] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  409.584916][T10761] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038 (0x7fffffff)
[  409.670363][T10771] EXT4-fs error (device loop0): ext4_orphan_get:1423: comm syz.0.1711: bad orphan inode 8192
[  409.700636][T10771] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  409.905137][   T25] audit: type=1800 audit(1721787402.592:47): pid=10771 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1711" name="bus" dev="loop0" ino=18 res=0 errno=0
[  410.043144][T10788] loop1: detected capacity change from 0 to 256
[  410.089024][T10793] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1714'.
[  410.123633][T10793] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1714'.
[  410.168262][T10788] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  410.425248][T10799] loop1: detected capacity change from 0 to 512
[  410.552584][T10799] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  410.574045][T10799] ext4 filesystem being mounted at /235/file0 supports timestamps until 2038 (0x7fffffff)
[  410.630618][T10799] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  410.671163][T10799] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  410.672033][   T25] audit: type=1804 audit(1721787403.362:48): pid=10799 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1718" name="/newroot/235/file0/file1" dev="loop1" ino=15 res=1 errno=0
[  410.683909][T10799] EXT4-fs (loop1): This should not happen!! Data will be lost
[  410.683909][T10799] 
[  410.715790][T10799] EXT4-fs (loop1): Total free blocks count 0
[  410.722882][T10799] EXT4-fs (loop1): Free/Dirty block details
[  410.730884][T10799] EXT4-fs (loop1): free_blocks=65281
[  410.757575][T10809] validate_nla: 2 callbacks suppressed
[  410.757588][T10809] netlink: 'syz.2.1722': attribute type 7 has an invalid length.
[  410.771798][T10799] EXT4-fs (loop1): dirty_blocks=23
[  410.777655][T10799] EXT4-fs (loop1): Block reservation details
[  410.784474][T10799] EXT4-fs (loop1): i_reserved_data_blocks=23
[  410.790986][T10809] netlink: 'syz.2.1722': attribute type 39 has an invalid length.
[  410.808977][ T6493] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  411.017214][T10814] loop2: detected capacity change from 0 to 512
[  411.100683][T10814] EXT4-fs error (device loop2): ext4_ext_check_inode:501: inode #16: comm syz.2.1725: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  411.185201][T10814] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.1725: couldn't read orphan inode 16 (err -117)
[  411.238735][ T6493] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  411.249304][ T6493] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  411.254580][T10814] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  411.342529][T10814] ext4 filesystem being mounted at /260/file1 supports timestamps until 2038 (0x7fffffff)
[  411.360846][T10827] netlink: 'syz.1.1728': attribute type 7 has an invalid length.
[  411.401573][T10827] netlink: 'syz.1.1728': attribute type 39 has an invalid length.
[  411.488858][ T6493] usb 5-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  411.497043][T10825] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1728'.
[  411.511071][ T6493] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  411.511218][T10825] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1728'.
[  411.535430][ T6493] usb 5-1: Product: syz
[  411.539780][ T6493] usb 5-1: Manufacturer: syz
[  411.544521][ T6493] usb 5-1: SerialNumber: syz
[  411.565904][ T6493] usb 5-1: config 0 descriptor??
[  411.589010][T10803] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  411.596618][T10803] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  411.825629][T10803] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  411.846769][T10803] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  411.883693][T10838] loop2: detected capacity change from 0 to 512
[  411.991459][T10838] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  412.080277][T10838] EXT4-fs (loop2): 1 truncate cleaned up
[  412.085940][T10838] EXT4-fs (loop2): mounted filesystem without journal. Opts: resuid=0x0000000000000000,init_itable,stripe=0x0000000000000000,noblock_validity,,errors=continue. Quota mode: none.
[  412.158895][T10844] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1733'.
[  412.168421][T10844] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1733'.
[  412.183588][T10846] loop0: detected capacity change from 0 to 128
[  412.190317][ T6493] Error reading MAC address
[  412.217758][ T6493] usb 5-1: USB disconnect, device number 15
[  412.232168][T10844] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1733'.
[  412.324609][T10846] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  412.356631][T10846] ext4 filesystem being mounted at /355/mnt supports timestamps until 2038 (0x7fffffff)
[  412.367385][T10854] netlink: 'syz.1.1736': attribute type 7 has an invalid length.
[  412.387937][T10854] netlink: 'syz.1.1736': attribute type 39 has an invalid length.
[  412.406304][T10854] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1736'.
[  412.458491][T10857] loop2: detected capacity change from 0 to 512
[  412.554891][T10864] netlink: 'syz.1.1739': attribute type 7 has an invalid length.
[  412.581074][T10864] netlink: 'syz.1.1739': attribute type 39 has an invalid length.
[  412.634585][T10857] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  412.655600][T10871] loop3: detected capacity change from 0 to 512
[  412.662458][T10857] ext4 filesystem being mounted at /262/file0 supports timestamps until 2038 (0x7fffffff)
[  412.683936][T10857] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  412.761066][T10871] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #16: comm syz.3.1741: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  412.847046][T10871] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.1741: couldn't read orphan inode 16 (err -117)
[  412.860104][T10871] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  412.880911][T10871] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038 (0x7fffffff)
[  413.317086][T10897] 9pnet: Insufficient options for proto=fd
[  413.379211][T10899] netlink: 'syz.3.1750': attribute type 7 has an invalid length.
[  413.387601][T10899] netlink: 'syz.3.1750': attribute type 39 has an invalid length.
[  413.597966][T10912] loop4: detected capacity change from 0 to 256
[  413.615813][T10914] loop2: detected capacity change from 0 to 512
[  413.663168][T10912] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  413.711063][T10914] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  413.748121][T10914] ext4 filesystem being mounted at /267/file0 supports timestamps until 2038 (0x7fffffff)
[  413.790405][T10926] loop1: detected capacity change from 0 to 512
[  413.808045][T10914] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  413.840520][T10927] loop3: detected capacity change from 0 to 128
[  413.888872][T10926] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #16: comm syz.1.1759: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  413.924662][T10926] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.1759: couldn't read orphan inode 16 (err -117)
[  413.959821][T10927] FAT-fs (loop3): Unrecognized mount option "hash" or missing value
[  413.965988][T10933] loop4: detected capacity change from 0 to 256
[  413.984774][T10926] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  414.005548][T10926] ext4 filesystem being mounted at /245/file1 supports timestamps until 2038 (0x7fffffff)
[  414.007720][T10935] __nla_validate_parse: 6 callbacks suppressed
[  414.007733][T10935] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1764'.
[  414.065705][T10933] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  414.438733][   T26] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  414.446360][ T3552] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  414.718701][ T3552] usb 1-1: Using ep0 maxpacket: 16
[  414.724028][   T26] usb 4-1: Using ep0 maxpacket: 8
[  414.838747][ T3552] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  414.848681][ T4039] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  414.849005][ T3552] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  414.856448][ T3921] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  414.867802][ T3552] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  414.885044][   T26] usb 4-1: config 0 has an invalid interface number: 52 but max is 0
[  414.893154][   T26] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  414.903866][ T3552] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  414.913555][   T26] usb 4-1: config 0 has no interface number 0
[  414.919684][   T26] usb 4-1: config 0 interface 52 has no altsetting 0
[  414.926410][ T3552] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  415.038930][ T3552] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  415.048099][ T3552] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  415.062044][ T3552] usb 1-1: Manufacturer: syz
[  415.071775][ T3552] usb 1-1: config 0 descriptor??
[  415.117017][   T26] usb 4-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[  415.129056][   T26] usb 4-1: New USB device strings: Mfr=22, Product=149, SerialNumber=35
[  415.137458][   T26] usb 4-1: Product: syz
[  415.138668][ T3921] usb 2-1: Using ep0 maxpacket: 8
[  415.146721][ T4039] usb 3-1: Using ep0 maxpacket: 16
[  415.146970][   T26] usb 4-1: Manufacturer: syz
[  415.157000][   T26] usb 4-1: SerialNumber: syz
[  415.169919][   T26] usb 4-1: config 0 descriptor??
[  415.177678][T10955] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1771'.
[  415.216479][T10960] loop4: detected capacity change from 0 to 512
[  415.269040][ T4039] usb 3-1: config 0 interface 0 altsetting 2 has an invalid endpoint with address 0x0, skipping
[  415.279558][T10960] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  415.279649][T10960] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038 (0x7fffffff)
[  415.290773][ T3921] usb 2-1: config 0 has an invalid interface number: 52 but max is 0
[  415.290798][ T3921] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  415.290818][ T3921] usb 2-1: config 0 has no interface number 0
[  415.290846][ T3921] usb 2-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  415.329980][T10960] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  415.338077][ T4039] usb 3-1: config 0 interface 0 altsetting 2 has an invalid endpoint with address 0x0, skipping
[  415.364479][ T4039] usb 3-1: config 0 interface 0 has no altsetting 0
[  415.372679][ T3921] usb 2-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  415.386201][ T3921] usb 2-1: config 0 interface 52 has no altsetting 0
[  415.418832][ T3552] rc_core: IR keymap rc-hauppauge not found
[  415.426404][ T3552] Registered IR keymap rc-empty
[  415.432399][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.468872][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.512408][ T3552] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[  415.526272][ T3552] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input9
[  415.539017][ T4039] usb 3-1: New USB device found, idVendor=0572, idProduct=cb02, bcdDevice=c2.2b
[  415.541946][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.548357][ T4039] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  415.563645][ T3921] usb 2-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[  415.566513][T10941] udc-core: couldn't find an available UDC or it's busy
[  415.572697][ T3921] usb 2-1: New USB device strings: Mfr=22, Product=149, SerialNumber=35
[  415.572722][ T3921] usb 2-1: Product: syz
[  415.572737][ T3921] usb 2-1: Manufacturer: syz
[  415.572752][ T3921] usb 2-1: SerialNumber: syz
[  415.573492][ T4039] usb 3-1: Product: syz
[  415.580085][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.589598][ T3921] usb 2-1: config 0 descriptor??
[  415.605345][T10941] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  415.606335][ T4039] usb 3-1: Manufacturer: syz
[  415.616874][T10941] udc-core: couldn't find an available UDC or it's busy
[  415.621076][ T4039] usb 3-1: SerialNumber: syz
[  415.628485][T10941] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  415.633532][ T4039] usb 3-1: config 0 descriptor??
[  415.637368][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.677973][ T3917] usb 4-1: USB disconnect, device number 17
[  415.689676][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.728737][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.768822][ T6493] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  415.777097][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.819049][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.848688][T10953] udc-core: couldn't find an available UDC or it's busy
[  415.855623][T10953] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  415.863375][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.908967][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.948791][ T3552] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  415.979893][ T3552] mceusb 1-1:0.0: Registered 3 with mce emulator interface version 1
[  415.988026][ T3552] mceusb 1-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  416.008804][ T3552] usb 1-1: USB disconnect, device number 22
[  416.038671][ T6493] usb 5-1: Using ep0 maxpacket: 8
[  416.091219][ T4419] usb 2-1: USB disconnect, device number 24
[  416.188775][ T6493] usb 5-1: config 0 has an invalid interface number: 52 but max is 0
[  416.206572][ T6493] usb 5-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config
[  416.210988][ T4039] cxacru 3-1:0.0: usbatm_usb_probe: bind failed: -19!
[  416.227066][ T6493] usb 5-1: config 0 has no interface number 0
[  416.240582][T10970] device pim6reg1 entered promiscuous mode
[  416.246564][ T6493] usb 5-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 48, changing to 9
[  416.260797][ T6493] usb 5-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid maxpacket 24624, setting to 1024
[  416.266983][ T4039] usb 3-1: USB disconnect, device number 20
[  416.286414][ T6493] usb 5-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  416.305361][ T6493] usb 5-1: config 0 interface 52 has no altsetting 0
[  416.390642][T10975] validate_nla: 6 callbacks suppressed
[  416.390658][T10975] netlink: 'syz.0.1777': attribute type 7 has an invalid length.
[  416.411207][T10975] netlink: 'syz.0.1777': attribute type 39 has an invalid length.
[  416.432391][T10975] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1777'.
[  416.442132][T10977] device pim6reg1 entered promiscuous mode
[  416.475654][ T6493] usb 5-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[  416.482349][T10979] loop0: detected capacity change from 0 to 512
[  416.488563][ T6493] usb 5-1: New USB device strings: Mfr=22, Product=149, SerialNumber=35
[  416.502771][ T6493] usb 5-1: Product: syz
[  416.506964][ T6493] usb 5-1: Manufacturer: syz
[  416.512023][ T6493] usb 5-1: SerialNumber: syz
[  416.517979][ T6493] usb 5-1: config 0 descriptor??
[  416.558398][T10979] EXT4-fs error (device loop0): ext4_ext_check_inode:501: inode #16: comm syz.0.1779: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  416.577477][T10979] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.1779: couldn't read orphan inode 16 (err -117)
[  416.591030][T10979] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  416.613200][T10979] ext4 filesystem being mounted at /367/file1 supports timestamps until 2038 (0x7fffffff)
[  416.780892][T10966] udc-core: couldn't find an available UDC or it's busy
[  416.833813][T10966] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  416.897008][ T6493] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.52/input/input10
[  416.945581][T10996] netlink: 'syz.3.1783': attribute type 7 has an invalid length.
[  416.964045][T10996] netlink: 'syz.3.1783': attribute type 39 has an invalid length.
[  417.032200][T11000] loop0: detected capacity change from 0 to 512
[  417.055024][T10998] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1783'.
[  417.104786][ T4039] usb 5-1: USB disconnect, device number 16
[  417.117575][T11000] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  417.137502][T11000] ext4 filesystem being mounted at /368/file0 supports timestamps until 2038 (0x7fffffff)
[  417.164197][T11000] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  417.239814][T11009] device pim6reg1 entered promiscuous mode
[  417.253165][   T25] audit: type=1804 audit(1721787409.942:49): pid=11007 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1784" name="/newroot/368/file0/file1" dev="loop0" ino=15 res=1 errno=0
[  417.255339][T11000] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  417.291248][T11000] EXT4-fs (loop0): This should not happen!! Data will be lost
[  417.291248][T11000] 
[  417.301711][T11000] EXT4-fs (loop0): Total free blocks count 0
[  417.307796][T11000] EXT4-fs (loop0): Free/Dirty block details
[  417.316705][T11000] EXT4-fs (loop0): free_blocks=65281
[  417.324417][T11000] EXT4-fs (loop0): dirty_blocks=23
[  417.330308][T11000] EXT4-fs (loop0): Block reservation details
[  417.336464][T11000] EXT4-fs (loop0): i_reserved_data_blocks=23
[  417.422112][T11013] netlink: 'syz.1.1790': attribute type 7 has an invalid length.
[  417.448564][T11013] netlink: 'syz.1.1790': attribute type 39 has an invalid length.
[  417.487527][T11017] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1790'.
[  417.700152][T11031] loop2: detected capacity change from 0 to 512
[  417.741604][T11027] netlink: 'syz.0.1796': attribute type 7 has an invalid length.
[  417.760365][T11027] netlink: 'syz.0.1796': attribute type 39 has an invalid length.
[  417.804846][T11035] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1796'.
[  417.846703][T11031] EXT4-fs error (device loop2): ext4_ext_check_inode:501: inode #16: comm syz.2.1795: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  417.954096][T11031] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.1795: couldn't read orphan inode 16 (err -117)
[  417.968435][T11045] loop4: detected capacity change from 0 to 512
[  417.984931][T11047] bridge0: port 2(bridge_slave_1) entered disabled state
[  417.992192][T11047] bridge0: port 1(bridge_slave_0) entered disabled state
[  418.029858][T11031] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  418.071511][T11050] bridge0: port 2(bridge_slave_1) entered blocking state
[  418.078635][T11050] bridge0: port 2(bridge_slave_1) entered forwarding state
[  418.086000][T11050] bridge0: port 1(bridge_slave_0) entered blocking state
[  418.093077][T11050] bridge0: port 1(bridge_slave_0) entered forwarding state
[  418.108153][T11031] ext4 filesystem being mounted at /271/file1 supports timestamps until 2038 (0x7fffffff)
[  418.129620][T11050] device bridge0 entered promiscuous mode
[  418.172833][T11045] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  418.208034][T11045] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038 (0x7fffffff)
[  418.258027][T11045] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  418.275486][   T25] audit: type=1804 audit(1721787410.962:50): pid=11045 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1800" name="/newroot/37/file0/file1" dev="loop4" ino=15 res=1 errno=0
[  418.301387][T11045] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  418.308971][T11060] netlink: 'syz.0.1805': attribute type 7 has an invalid length.
[  418.321779][T11060] netlink: 'syz.0.1805': attribute type 39 has an invalid length.
[  418.342499][T11060] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1805'.
[  418.358748][T11045] EXT4-fs (loop4): This should not happen!! Data will be lost
[  418.358748][T11045] 
[  418.372980][T11045] EXT4-fs (loop4): Total free blocks count 0
[  418.377675][T11053] device sit0 entered promiscuous mode
[  418.384777][T11045] EXT4-fs (loop4): Free/Dirty block details
[  418.426916][T11045] EXT4-fs (loop4): free_blocks=65281
[  418.441008][T11045] EXT4-fs (loop4): dirty_blocks=23
[  418.446155][T11045] EXT4-fs (loop4): Block reservation details
[  418.452804][T11045] EXT4-fs (loop4): i_reserved_data_blocks=23
[  418.760210][T11082] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1813'.
[  418.956079][T11091] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1816'.
[  419.008120][T11096] loop4: detected capacity change from 0 to 512
[  419.124880][T11096] EXT4-fs error (device loop4): ext4_ext_check_inode:501: inode #16: comm syz.4.1818: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  419.191900][T11102] loop0: detected capacity change from 0 to 512
[  419.230257][T11096] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1818: couldn't read orphan inode 16 (err -117)
[  419.311486][T11102] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  419.327824][T11096] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  419.364501][T11102] ext4 filesystem being mounted at /381/file0 supports timestamps until 2038 (0x7fffffff)
[  419.374921][T11096] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038 (0x7fffffff)
[  419.890409][T11102] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  420.118983][   T25] audit: type=1804 audit(1721787412.812:51): pid=11117 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1820" name="/newroot/381/file0/file1" dev="loop0" ino=15 res=1 errno=0
[  420.249241][T11125] loop3: detected capacity change from 0 to 16
[  420.302030][T11125] erofs: (device loop3): mounted with root inode @ nid 36.
[  420.337920][T11125] erofs: (device loop3): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[  420.400270][T11125] attempt to access beyond end of device
[  420.400270][T11125] loop3: rw=524288, want=34359740336, limit=16
[  420.458821][T11130] attempt to access beyond end of device
[  420.458821][T11130] loop3: rw=0, want=34359739352, limit=16
[  420.513475][T11141] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1830'.
[  421.758568][T11158] loop0: detected capacity change from 0 to 512
[  421.902080][T11167] loop3: detected capacity change from 0 to 512
[  422.032474][T11158] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  422.118762][T11158] ext4 filesystem being mounted at /384/file0 supports timestamps until 2038 (0x7fffffff)
[  422.131822][T11167] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #16: comm syz.3.1840: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  422.191827][T11167] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.1840: couldn't read orphan inode 16 (err -117)
[  422.249738][T11158] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  422.288971][T11167] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  422.313312][T11180] loop2: detected capacity change from 0 to 1024
[  422.338826][T11167] ext4 filesystem being mounted at /86/file1 supports timestamps until 2038 (0x7fffffff)
[  422.353779][T11158] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  422.395276][T11158] EXT4-fs (loop0): This should not happen!! Data will be lost
[  422.395276][T11158] 
[  422.460014][T11158] EXT4-fs (loop0): Total free blocks count 0
[  422.484265][T11158] EXT4-fs (loop0): Free/Dirty block details
[  422.528649][T11158] EXT4-fs (loop0): free_blocks=65280
[  422.543478][T11189] validate_nla: 8 callbacks suppressed
[  422.543492][T11189] netlink: 'syz.1.1846': attribute type 7 has an invalid length.
[  422.544177][T11158] EXT4-fs (loop0): dirty_blocks=23
[  422.600675][T11189] netlink: 'syz.1.1846': attribute type 39 has an invalid length.
[  422.661322][T11158] EXT4-fs (loop0): Block reservation details
[  422.683410][T11158] EXT4-fs (loop0): i_reserved_data_blocks=23
[  422.737696][T11195] netlink: 'syz.3.1848': attribute type 7 has an invalid length.
[  422.786155][T11195] netlink: 'syz.3.1848': attribute type 39 has an invalid length.
[  422.867365][T11195] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1848'.
[  423.227268][T11208] loop1: detected capacity change from 0 to 1764
[  423.298958][T11213] loop0: detected capacity change from 0 to 164
[  423.568240][T11224] loop1: detected capacity change from 0 to 8
[  423.576745][T11225] loop3: detected capacity change from 0 to 512
[  423.696515][T11227] loop2: detected capacity change from 0 to 512
[  423.719005][T11224] SQUASHFS error: Failed to read block 0x4e8: -5
[  423.727602][T11224] SQUASHFS error: Failed to read block 0xed04f1: -5
[  423.758243][   T25] audit: type=1800 audit(1721787416.442:52): pid=11224 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1858" name="file1" dev="loop1" ino=5 res=0 errno=0
[  423.846381][T11225] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #16: comm syz.3.1859: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  423.892001][T11237] netlink: 'syz.4.1861': attribute type 7 has an invalid length.
[  423.911396][T11225] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.1859: couldn't read orphan inode 16 (err -117)
[  423.916262][T11232] loop0: detected capacity change from 0 to 1024
[  423.923718][T11237] netlink: 'syz.4.1861': attribute type 39 has an invalid length.
[  423.947176][T11225] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  423.950201][T11227] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  423.971994][T11225] ext4 filesystem being mounted at /89/file1 supports timestamps until 2038 (0x7fffffff)
[  424.003837][T11227] ext4 filesystem being mounted at /280/file0 supports timestamps until 2038 (0x7fffffff)
[  424.063750][T11232] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5
[  424.063750][T11232] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  424.063750][T11232] 
[  424.102804][T11227] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  424.119316][T11227] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  424.131920][T11227] EXT4-fs (loop2): This should not happen!! Data will be lost
[  424.131920][T11227] 
[  424.142329][T11227] EXT4-fs (loop2): Total free blocks count 0
[  424.148316][T11227] EXT4-fs (loop2): Free/Dirty block details
[  424.158742][T11232] EXT4-fs (loop0): Ignoring removed nobh option
[  424.168979][T11227] EXT4-fs (loop2): free_blocks=65280
[  424.176983][T11227] EXT4-fs (loop2): dirty_blocks=23
[  424.192482][T11232] EXT4-fs (loop0): can't mount with journal_checksum, fs mounted w/o journal
[  424.201514][T11227] EXT4-fs (loop2): Block reservation details
[  424.207501][T11227] EXT4-fs (loop2): i_reserved_data_blocks=23
[  424.384824][T11247] netlink: 'syz.2.1864': attribute type 7 has an invalid length.
[  424.424156][T11247] netlink: 'syz.2.1864': attribute type 39 has an invalid length.
[  424.437575][T11251] loop0: detected capacity change from 0 to 1024
[  424.502863][T11253] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1864'.
[  424.976723][ T3514] Bluetooth: hci3: link tx timeout
[  424.982438][ T3514] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  425.562159][T11276] netlink: 'syz.2.1873': attribute type 7 has an invalid length.
[  425.578893][T11276] netlink: 'syz.2.1873': attribute type 39 has an invalid length.
[  425.948254][T11287] loop4: detected capacity change from 0 to 512
[  426.752585][T11282] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1873'.
[  426.765043][T11290] loop0: detected capacity change from 0 to 512
[  426.787816][T11292] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1878'.
[  426.840442][T11287] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  426.857034][T11287] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038 (0x7fffffff)
[  426.882034][T11290] EXT4-fs error (device loop0): ext4_ext_check_inode:501: inode #16: comm syz.0.1876: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  426.950998][T11305] loop1: detected capacity change from 0 to 256
[  426.959778][T11290] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.1876: couldn't read orphan inode 16 (err -117)
[  426.961026][T11287] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  426.995811][T11311] loop3: detected capacity change from 0 to 1024
[  427.002891][T11290] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  427.003250][T11287] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  427.030389][T11290] ext4 filesystem being mounted at /390/file1 supports timestamps until 2038 (0x7fffffff)
[  427.037176][ T3552] Bluetooth: hci3: command 0x0406 tx timeout
[  427.051543][T11287] EXT4-fs (loop4): This should not happen!! Data will be lost
[  427.051543][T11287] 
[  427.063743][T11287] EXT4-fs (loop4): Total free blocks count 0
[  427.071015][T11287] EXT4-fs (loop4): Free/Dirty block details
[  427.077048][T11287] EXT4-fs (loop4): free_blocks=65280
[  427.082903][T11287] EXT4-fs (loop4): dirty_blocks=23
[  427.088300][T11287] EXT4-fs (loop4): Block reservation details
[  427.094695][T11287] EXT4-fs (loop4): i_reserved_data_blocks=23
[  427.218682][ T3921] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  427.391594][T11315] loop1: detected capacity change from 0 to 164
[  427.509001][ T3552] Bluetooth: hci0: command 0x0c1a tx timeout
[  427.548842][T11317] loop4: detected capacity change from 0 to 2048
[  427.805667][T11317] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  427.812836][ T3921] usb 3-1: Using ep0 maxpacket: 32
[  427.847879][T11317] EXT4-fs (loop4): mounted filesystem without journal. Opts: lazytime,usrjquota=,errors=remount-ro,norecovery,auto_da_alloc,mblk_io_submit,grpquota,barrier=0x0000000000000000,grpjquota=,bsddf,init_itable=0x0000000000000004,usrjquota=,. Quota mode: writeback.
[  427.948991][ T3921] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  427.960892][ T3921] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  427.971092][ T3921] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  427.980516][ T3921] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  427.997089][ T3921] usb 3-1: config 0 descriptor??
[  428.039872][ T3921] hub 3-1:0.0: USB hub found
[  428.215781][T11335] loop1: detected capacity change from 0 to 256
[  428.300876][ T3921] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[  429.188729][ T3921] usbhid 3-1:0.0: can't add hid device: -71
[  429.194736][ T3921] usbhid: probe of 3-1:0.0 failed with error -71
[  429.219006][T11347] validate_nla: 2 callbacks suppressed
[  429.219019][T11347] netlink: 'syz.4.1891': attribute type 7 has an invalid length.
[  429.249232][ T3921] usb 3-1: USB disconnect, device number 21
[  429.262551][T11347] netlink: 'syz.4.1891': attribute type 39 has an invalid length.
[  429.350014][T11349] netlink: 'syz.2.1892': attribute type 7 has an invalid length.
[  429.398313][T11349] netlink: 'syz.2.1892': attribute type 39 has an invalid length.
[  429.497039][T11363] loop3: detected capacity change from 0 to 512
[  429.508719][T11353] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1892'.
[  429.534082][T11361] loop0: detected capacity change from 0 to 1024
[  429.544214][T11351] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1891'.
[  429.841996][T11363] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #16: comm syz.3.1897: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  429.929108][T11363] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.1897: couldn't read orphan inode 16 (err -117)
[  430.212289][T11363] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  430.598826][T11363] ext4 filesystem being mounted at /98/file1 supports timestamps until 2038 (0x7fffffff)
[  430.629797][T11381] loop1: detected capacity change from 0 to 1024
[  430.737060][T11381] EXT4-fs (loop1): Mount option "noacl" will be removed by 3.5
[  430.737060][T11381] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  430.737060][T11381] 
[  430.842394][T11393] loop4: detected capacity change from 0 to 2048
[  430.870189][T11381] EXT4-fs (loop1): Ignoring removed nobh option
[  430.904803][T11381] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[  430.950235][T11393] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  430.972182][T11403] netlink: 'syz.0.1910': attribute type 7 has an invalid length.
[  430.990326][T11403] netlink: 'syz.0.1910': attribute type 39 has an invalid length.
[  431.010382][T11393] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  431.045464][T11407] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1910'.
[  431.110287][T11381] fuse: Bad value for 'fd'
[  431.172347][T11393] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  431.188964][T11393] UDF-fs: Scanning with blocksize 512 failed
[  431.221585][T11410] netlink: 'syz.3.1912': attribute type 7 has an invalid length.
[  431.290460][T11410] netlink: 'syz.3.1912': attribute type 39 has an invalid length.
[  431.311903][T11393] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  431.593849][T11426] loop3: detected capacity change from 0 to 128
[  431.643973][T11428] loop0: detected capacity change from 0 to 1024
[  431.763874][T11426] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  432.046274][T11440] loop2: detected capacity change from 0 to 512
[  432.069486][T11442] 9pnet_virtio: no channels available for device /sys/kernel/rcu_expedited
[  432.374490][T11440] EXT4-fs error (device loop2): ext4_ext_check_inode:501: inode #16: comm syz.2.1922: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  432.587025][T11440] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.1922: couldn't read orphan inode 16 (err -117)
[  432.702696][T11440] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  432.768936][T11440] ext4 filesystem being mounted at /292/file1 supports timestamps until 2038 (0x7fffffff)
[  432.810465][ T9443] UDF-fs: error (device loop3): udf_read_inode: (ino 114) failed !bh
[  432.834927][T11449] netlink: 'syz.1.1924': attribute type 7 has an invalid length.
[  432.870093][ T9443] UDF-fs: error (device loop3): udf_read_inode: (ino 114) failed !bh
[  432.899152][T11449] netlink: 'syz.1.1924': attribute type 39 has an invalid length.
[  433.117148][T11460] loop1: detected capacity change from 0 to 256
[  434.020633][T11485] loop2: detected capacity change from 0 to 1024
[  434.320411][T11505] validate_nla: 2 callbacks suppressed
[  434.320427][T11505] netlink: 'syz.0.1942': attribute type 7 has an invalid length.
[  434.354494][T11505] netlink: 'syz.0.1942': attribute type 39 has an invalid length.
[  434.371684][T11503] loop1: detected capacity change from 0 to 512
[  434.676546][    T9] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.225954][T11503] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #16: comm syz.1.1939: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  435.265003][T11503] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.1939: couldn't read orphan inode 16 (err -117)
[  435.366615][T11503] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  435.413799][    T9] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.442717][T11518] loop2: detected capacity change from 0 to 512
[  435.503560][T11503] ext4 filesystem being mounted at /286/file1 supports timestamps until 2038 (0x7fffffff)
[  435.655775][T11494] chnl_net:caif_netlink_parms(): no params data found
[  435.767301][T11518] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  435.780562][    T9] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.818019][T11518] ext4 filesystem being mounted at /296/file0 supports timestamps until 2038 (0x7fffffff)
[  435.869663][T11518] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  435.896332][T11537] netlink: 'syz.4.1950': attribute type 7 has an invalid length.
[  435.902319][T11518] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  435.912119][T11537] netlink: 'syz.4.1950': attribute type 39 has an invalid length.
[  435.930553][T11518] EXT4-fs (loop2): This should not happen!! Data will be lost
[  435.930553][T11518] 
[  435.960969][    T9] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.963144][T11518] EXT4-fs (loop2): Total free blocks count 0
[  436.032858][T11518] EXT4-fs (loop2): Free/Dirty block details
[  436.042206][T11518] EXT4-fs (loop2): free_blocks=65280
[  436.047647][T11518] EXT4-fs (loop2): dirty_blocks=23
[  436.053162][T11518] EXT4-fs (loop2): Block reservation details
[  436.061134][T11518] EXT4-fs (loop2): i_reserved_data_blocks=23
[  436.130417][T11494] bridge0: port 1(bridge_slave_0) entered blocking state
[  436.149004][T11494] bridge0: port 1(bridge_slave_0) entered disabled state
[  436.179854][T11553] loop1: detected capacity change from 0 to 2048
[  436.205068][T11494] device bridge_slave_0 entered promiscuous mode
[  436.230963][T11494] bridge0: port 2(bridge_slave_1) entered blocking state
[  436.238021][T11494] bridge0: port 2(bridge_slave_1) entered disabled state
[  436.259808][T11553] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  436.260904][T11494] device bridge_slave_1 entered promiscuous mode
[  436.314392][T11553] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  436.366073][T11553] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  436.496603][T11553] UDF-fs: Scanning with blocksize 512 failed
[  436.602110][T11553] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  436.663363][T11494] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  436.672719][ T4419] Bluetooth: hci4: command 0x0409 tx timeout
[  436.684030][T11494] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  436.883153][T11577] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1959'.
[  437.394190][T11494] team0: Port device team_slave_0 added
[  437.575987][T11494] team0: Port device team_slave_1 added
[  437.749028][T11586] loop1: detected capacity change from 0 to 512
[  437.767096][T11494] batman_adv: batadv0: Adding interface: batadv_slave_0
[  437.808748][T11494] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  437.853448][T11596] loop0: detected capacity change from 0 to 512
[  437.872158][T11494] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  437.899747][T11592] netlink: 'syz.2.1963': attribute type 7 has an invalid length.
[  437.907536][T11592] netlink: 'syz.2.1963': attribute type 39 has an invalid length.
[  437.964391][T11586] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #16: comm syz.1.1962: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  437.983869][T11596] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  438.031216][T11494] batman_adv: batadv0: Adding interface: batadv_slave_1
[  438.037099][T11596] ext4 filesystem being mounted at /419/file0 supports timestamps until 2038 (0x7fffffff)
[  438.038160][T11494] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  438.092335][T11494] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  438.138288][T11494] device hsr_slave_0 entered promiscuous mode
[  438.152289][T11494] device hsr_slave_1 entered promiscuous mode
[  438.163070][T11494] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  438.177555][T11586] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.1962: couldn't read orphan inode 16 (err -117)
[  438.204930][T11494] Cannot create hsr debugfs directory
[  438.241353][T11618] loop2: detected capacity change from 0 to 2048
[  438.245315][T11596] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  438.270816][T11596] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  438.283292][T11586] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  438.291604][T11596] EXT4-fs (loop0): This should not happen!! Data will be lost
[  438.291604][T11596] 
[  438.308152][T11586] ext4 filesystem being mounted at /288/file1 supports timestamps until 2038 (0x7fffffff)
[  438.334041][T11596] EXT4-fs (loop0): Total free blocks count 0
[  438.356556][T11618] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  438.377291][T11596] EXT4-fs (loop0): Free/Dirty block details
[  438.408448][T11596] EXT4-fs (loop0): free_blocks=65280
[  438.426289][T11596] EXT4-fs (loop0): dirty_blocks=23
[  438.440817][T11618] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  438.467469][T11596] EXT4-fs (loop0): Block reservation details
[  438.487994][T11618] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  438.491647][T11596] EXT4-fs (loop0): i_reserved_data_blocks=23
[  438.521188][T11618] UDF-fs: Scanning with blocksize 512 failed
[  438.622372][T11618] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  438.709037][ T1065] Bluetooth: hci4: command 0x041b tx timeout
[  439.093190][    T9] device hsr_slave_0 left promiscuous mode
[  439.147763][    T9] device hsr_slave_1 left promiscuous mode
[  439.189381][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  439.198952][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  439.241724][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  439.256214][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  439.275626][    T9] device bridge_slave_1 left promiscuous mode
[  439.298831][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  439.329842][    T9] device bridge_slave_0 left promiscuous mode
[  439.343222][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  439.423660][    T9] device veth1_macvtap left promiscuous mode
[  439.431249][T11651] x_tables: ip_tables: udp match: only valid for protocol 17
[  439.438525][    T9] device veth0_macvtap left promiscuous mode
[  439.461658][    T9] device veth1_vlan left promiscuous mode
[  439.488973][    T9] device veth0_vlan left promiscuous mode
[  439.624721][T11657] loop2: detected capacity change from 0 to 128
[  439.631283][ T4419] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  439.678700][T11657] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  439.730410][   T25] audit: type=1800 audit(1721787432.422:53): pid=11657 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1977" name="bus" dev="loop2" ino=1048669 res=0 errno=0
[  439.838934][ T1376] ieee802154 phy0 wpan0: encryption failed: -22
[  439.845222][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[  439.918885][ T4419] usb 1-1: Using ep0 maxpacket: 32
[  439.920055][T11659] loop1: detected capacity change from 0 to 512
[  440.049502][ T4419] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  440.066855][ T4419] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  440.077534][ T4419] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  440.093797][ T4419] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  440.126805][ T4419] usb 1-1: config 0 descriptor??
[  440.194249][ T4419] hub 1-1:0.0: USB hub found
[  440.205901][T11674] loop4: detected capacity change from 0 to 512
[  440.282201][T11674] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  440.293796][T11674] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038 (0x7fffffff)
[  440.322554][   T25] audit: type=1804 audit(1721787433.012:54): pid=11674 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1982" name="/newroot/73/file0/file1" dev="loop4" ino=15 res=1 errno=0
[  440.346492][T11674] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  440.362168][T11674] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  440.375226][T11674] EXT4-fs (loop4): This should not happen!! Data will be lost
[  440.375226][T11674] 
[  440.385384][T11674] EXT4-fs (loop4): Total free blocks count 0
[  440.392204][T11674] EXT4-fs (loop4): Free/Dirty block details
[  440.399858][T11674] EXT4-fs (loop4): free_blocks=65280
[  440.405162][T11674] EXT4-fs (loop4): dirty_blocks=23
[  440.408703][ T4419] hub 1-1:0.0: 1 port detected
[  440.420778][T11674] EXT4-fs (loop4): Block reservation details
[  440.426743][T11674] EXT4-fs (loop4): i_reserved_data_blocks=23
[  440.613473][T11679] loop1: detected capacity change from 0 to 2048
[  440.629484][T11681] loop4: detected capacity change from 0 to 512
[  440.705807][T11679] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  440.709915][    T9] team0 (unregistering): Port device team_slave_1 removed
[  440.742373][T11681] EXT4-fs error (device loop4): ext4_ext_check_inode:501: inode #16: comm syz.4.1983: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  440.774737][    T9] team0 (unregistering): Port device team_slave_0 removed
[  440.776663][T11679] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  440.792905][ T4419] hub 1-1:0.0: hub_hub_status failed (err = -71)
[  440.793651][T11681] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1983: couldn't read orphan inode 16 (err -117)
[  440.803026][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  440.812809][T11679] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  440.827464][ T4419] hub 1-1:0.0: config failed, can't get hub status (err -71)
[  440.829207][T11679] UDF-fs: Scanning with blocksize 512 failed
[  440.835723][T11681] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  440.868805][ T2924] Bluetooth: hci4: command 0x040f tx timeout
[  440.869653][T11681] ext4 filesystem being mounted at /74/file1 supports timestamps until 2038 (0x7fffffff)
[  440.880888][T11679] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  440.885135][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  440.978930][ T4419] usbhid 1-1:0.0: can't add hid device: -71
[  440.985132][ T4419] usbhid: probe of 1-1:0.0 failed with error -71
[  441.012895][    T9] bond0 (unregistering): Released all slaves
[  441.039725][ T4419] usb 1-1: USB disconnect, device number 23
[  441.093820][T11672] netlink: 'syz.2.1979': attribute type 7 has an invalid length.
[  441.102286][T11672] netlink: 'syz.2.1979': attribute type 39 has an invalid length.
[  441.395572][T11698] loop2: detected capacity change from 0 to 128
[  441.437311][T11494] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  441.498250][T11494] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  441.498846][T11698] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  441.518033][T11494] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  441.538798][T11698] ext4 filesystem being mounted at /306/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  441.627686][T11494] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  441.797554][T11494] 8021q: adding VLAN 0 to HW filter on device bond0
[  441.847580][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  441.894875][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  441.942239][T11494] 8021q: adding VLAN 0 to HW filter on device team0
[  442.640032][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  442.667538][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  442.765075][ T2924] bridge0: port 1(bridge_slave_0) entered blocking state
[  442.772195][ T2924] bridge0: port 1(bridge_slave_0) entered forwarding state
[  442.815395][T11728] loop1: detected capacity change from 0 to 512
[  442.839256][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  442.875912][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  442.905966][ T2924] bridge0: port 2(bridge_slave_1) entered blocking state
[  442.913061][ T2924] bridge0: port 2(bridge_slave_1) entered forwarding state
[  442.921246][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  442.930275][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  442.939361][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  442.948066][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  442.976119][ T3552] Bluetooth: hci4: command 0x0419 tx timeout
[  442.982697][ T6493] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  442.990953][ T6493] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  442.999319][ T6493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  443.007861][ T6493] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  443.016713][ T6493] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  443.026010][T11728] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  443.039190][ T6493] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  443.069810][ T6493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  443.091254][T11728] ext4 filesystem being mounted at /293/file0 supports timestamps until 2038 (0x7fffffff)
[  443.471074][T11739] loop4: detected capacity change from 0 to 512
[  443.639092][   T25] audit: type=1804 audit(1721787436.232:55): pid=11728 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1993" name="/newroot/293/file0/file1" dev="loop1" ino=15 res=1 errno=0
[  443.816946][ T6493] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  443.829345][T11494] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  443.960109][T11739] EXT4-fs error (device loop4): ext4_ext_check_inode:501: inode #16: comm syz.4.1995: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  444.069149][T11739] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1995: couldn't read orphan inode 16 (err -117)
[  444.086825][T11764] netlink: 'syz.1.1996': attribute type 7 has an invalid length.
[  444.086996][T11752] loop0: detected capacity change from 0 to 2048
[  444.127776][T11764] netlink: 'syz.1.1996': attribute type 39 has an invalid length.
[  444.133958][T11739] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  444.159447][T11760] loop2: detected capacity change from 0 to 2048
[  444.172571][T11739] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038 (0x7fffffff)
[  444.221168][T11760] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  444.266801][T11760] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  444.302088][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  444.305551][T11752] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  444.315604][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  444.339151][T11760] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  444.347525][T11760] UDF-fs: Scanning with blocksize 512 failed
[  444.390278][T11760] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  444.404411][T11494] 8021q: adding VLAN 0 to HW filter on device batadv0
[  444.462239][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  444.485429][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  444.581434][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  444.604658][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  444.657244][T11494] device veth0_vlan entered promiscuous mode
[  444.675605][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  444.720428][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  444.767323][T11494] device veth1_vlan entered promiscuous mode
[  445.037748][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  445.347228][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  445.399007][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  445.442232][T11494] device veth0_macvtap entered promiscuous mode
[  445.454757][T11799] loop1: detected capacity change from 0 to 512
[  445.471529][T11494] device veth1_macvtap entered promiscuous mode
[  445.530778][T11799] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  445.545200][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  445.576207][T11799] ext4 filesystem being mounted at /296/file0 supports timestamps until 2038 (0x7fffffff)
[  445.601059][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  445.611244][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  445.624417][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  445.634780][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  445.645365][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  445.655227][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  445.665875][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  445.677648][T11494] batman_adv: batadv0: Interface activated: batadv_slave_0
[  445.686991][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  445.695944][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  445.704123][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  445.712846][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  445.723519][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  445.760212][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  445.800379][   T25] audit: type=1804 audit(1721787438.492:56): pid=11807 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2005" name="/newroot/296/file0/file1" dev="loop1" ino=15 res=1 errno=0
[  445.815211][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  445.832880][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  445.842802][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  445.853322][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  445.863627][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  445.874084][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  445.900525][T11494] batman_adv: batadv0: Interface activated: batadv_slave_1
[  446.189170][T11494] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  446.630444][T11494] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  446.711372][T11494] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  446.759485][T11494] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  446.849372][T11824] loop2: detected capacity change from 0 to 128
[  446.859200][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  446.883274][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  446.907872][T11820] netlink: 'syz.0.2009': attribute type 7 has an invalid length.
[  446.938702][T11820] netlink: 'syz.0.2009': attribute type 39 has an invalid length.
[  446.967463][T11817] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2009'.
[  447.006783][T11824] EXT4-fs (loop2): mounted filesystem without journal. Opts: minixdf,nodelalloc,,errors=continue. Quota mode: none.
[  447.044910][T11824] ext4 filesystem being mounted at /312/mnt supports timestamps until 2038 (0x7fffffff)
[  447.193479][T11831] loop0: detected capacity change from 0 to 512
[  447.276772][ T3591] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  447.313835][ T3591] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  447.349335][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  447.367116][ T3591] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  447.409062][ T3591] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  447.409524][T11831] EXT4-fs error (device loop0): ext4_ext_check_inode:501: inode #16: comm syz.0.2011: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  447.440032][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  447.489725][T11831] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.2011: couldn't read orphan inode 16 (err -117)
[  447.602693][T11831] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  447.715475][T11847] loop3: detected capacity change from 0 to 256
[  447.765199][T11831] ext4 filesystem being mounted at /428/file1 supports timestamps until 2038 (0x7fffffff)
[  448.589783][T11870] loop1: detected capacity change from 0 to 512
[  448.753257][T11870] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  448.763848][T11884] netlink: 'syz.3.2020': attribute type 7 has an invalid length.
[  448.801296][T11870] ext4 filesystem being mounted at /300/file0 supports timestamps until 2038 (0x7fffffff)
[  448.808068][T11884] netlink: 'syz.3.2020': attribute type 39 has an invalid length.
[  448.889628][T11884] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2020'.
[  448.961201][T11870] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  449.028237][   T25] audit: type=1804 audit(1721787441.712:57): pid=11889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2017" name="/newroot/300/file0/file1" dev="loop1" ino=15 res=1 errno=0
[  449.036338][T11886] loop2: detected capacity change from 0 to 2048
[  450.522779][T11886] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  450.720214][T11886] EXT4-fs (loop2): mounted filesystem without journal. Opts: nombcache,usrjquota=,errors=remount-ro,norecovery,max_batch_time=0x0000000000000005,mblk_io_submit,minixdf,barrier=0x0000000000000000,grpjquota=,auto_da_alloc,. Quota mode: none.
[  450.782705][T11910] loop1: detected capacity change from 0 to 512
[  450.983482][T11921] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2022: bg 0: block 234: padding at end of block bitmap is not set
[  451.072505][T11910] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #16: comm syz.1.2025: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  451.114173][T11910] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.2025: couldn't read orphan inode 16 (err -117)
[  451.129184][T11921] EXT4-fs (loop2): Remounting filesystem read-only
[  451.187758][T11910] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  451.211556][ T6003] EXT4-fs error (device loop2): ext4_readdir:260: inode #11: block 34: comm syz-executor: path /315/file0/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1025, size=2048 fake=0
[  451.213730][T11910] ext4 filesystem being mounted at /301/file1 supports timestamps until 2038 (0x7fffffff)
[  451.251254][ T6003] EXT4-fs error (device loop2): ext4_lookup:1855: inode #14: comm syz-executor: iget: bad extra_isize 1056 (inode size 256)
[  451.271688][ T6003] EXT4-fs error (device loop2): ext4_lookup:1855: inode #14: comm syz-executor: iget: bad extra_isize 1056 (inode size 256)
[  451.285069][T11928] device pim6reg1 entered promiscuous mode
[  451.517943][T11932] loop4: detected capacity change from 0 to 512
[  451.630650][T11932] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  451.654429][T11932] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038 (0x7fffffff)
[  451.690518][T11932] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  451.802527][T11932] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  451.829974][   T25] audit: type=1804 audit(1721787444.492:58): pid=11932 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2035" name="/newroot/89/file0/file1" dev="loop4" ino=15 res=1 errno=0
[  451.870150][T11944] netlink: 'syz.1.2036': attribute type 7 has an invalid length.
[  451.896287][T11932] EXT4-fs (loop4): This should not happen!! Data will be lost
[  451.896287][T11932] 
[  451.903916][T11944] netlink: 'syz.1.2036': attribute type 39 has an invalid length.
[  451.942201][T11932] EXT4-fs (loop4): Total free blocks count 0
[  451.948942][T11940] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2036'.
[  451.968082][T11932] EXT4-fs (loop4): Free/Dirty block details
[  451.981519][T11932] EXT4-fs (loop4): free_blocks=65281
[  452.013200][T11932] EXT4-fs (loop4): dirty_blocks=23
[  452.268845][T11932] EXT4-fs (loop4): Block reservation details
[  452.307688][T11932] EXT4-fs (loop4): i_reserved_data_blocks=23
[  453.106293][T11958] loop0: detected capacity change from 0 to 2048
[  453.266895][T11958] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  453.383795][T11967] loop3: detected capacity change from 0 to 512
[  453.414624][T11958] EXT4-fs (loop0): mounted filesystem without journal. Opts: nombcache,usrjquota=,errors=remount-ro,norecovery,max_batch_time=0x0000000000000005,mblk_io_submit,minixdf,barrier=0x0000000000000000,grpjquota=,auto_da_alloc,. Quota mode: none.
[  453.529078][T11968] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  453.560160][T11968] EXT4-fs (loop0): Remounting filesystem read-only
[  453.660255][T11967] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #16: comm syz.3.2047: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  453.772119][T11967] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.2047: couldn't read orphan inode 16 (err -117)
[  453.823654][T11967] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  453.894367][T11967] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038 (0x7fffffff)
[  453.986009][T11960] chnl_net:caif_netlink_parms(): no params data found
[  454.338212][T11989] netlink: 'syz.1.2051': attribute type 7 has an invalid length.
[  454.356380][T11989] netlink: 'syz.1.2051': attribute type 39 has an invalid length.
[  454.377932][T11991] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2051'.
[  454.539092][T11960] bridge0: port 1(bridge_slave_0) entered blocking state
[  454.573373][T11960] bridge0: port 1(bridge_slave_0) entered disabled state
[  454.737411][T11960] device bridge_slave_0 entered promiscuous mode
[  454.941232][T11960] bridge0: port 2(bridge_slave_1) entered blocking state
[  455.104547][T11960] bridge0: port 2(bridge_slave_1) entered disabled state
[  455.112826][T11960] device bridge_slave_1 entered promiscuous mode
[  455.167787][ T3504] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 34: comm syz-executor: path /436/file0/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1025, size=2048 fake=0
[  455.190345][ T1193] Bluetooth: hci0: command 0x0409 tx timeout
[  455.221940][T11960] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  455.255958][T11960] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  455.356782][ T3504] EXT4-fs error (device loop0): ext4_lookup:1855: inode #14: comm syz-executor: iget: bad extra_isize 1056 (inode size 256)
[  455.441066][ T3504] EXT4-fs error (device loop0): ext4_lookup:1855: inode #14: comm syz-executor: iget: bad extra_isize 1056 (inode size 256)
[  456.303000][T11960] team0: Port device team_slave_0 added
[  456.413001][T11960] team0: Port device team_slave_1 added
[  456.517714][T12018] loop3: detected capacity change from 0 to 512
[  456.591287][T11960] batman_adv: batadv0: Adding interface: batadv_slave_0
[  456.600908][T11960] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  456.668850][T11960] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  456.682532][T11960] batman_adv: batadv0: Adding interface: batadv_slave_1
[  456.691906][T11960] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  456.733193][T12018] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #16: comm syz.3.2060: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  456.759429][T12018] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.2060: couldn't read orphan inode 16 (err -117)
[  456.777626][T12018] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  456.790847][T11960] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  456.806499][T12018] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038 (0x7fffffff)
[  456.861066][T12026] netlink: 'syz.1.2062': attribute type 7 has an invalid length.
[  456.878225][T12026] netlink: 'syz.1.2062': attribute type 39 has an invalid length.
[  456.927539][T12029] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2062'.
[  456.985109][T11960] device hsr_slave_0 entered promiscuous mode
[  457.011517][T11960] device hsr_slave_1 entered promiscuous mode
[  457.043261][T11960] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  457.064222][T11960] Cannot create hsr debugfs directory
[  457.273364][ T3921] Bluetooth: hci0: command 0x041b tx timeout
[  457.397980][T11960] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.188430][T11960] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.300800][T11960] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.347441][T12054] loop1: detected capacity change from 0 to 512
[  458.401873][T12052] device pim6reg1 entered promiscuous mode
[  458.432820][T11960] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.460591][T12054] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  458.499077][T12054] ext4 filesystem being mounted at /315/file0 supports timestamps until 2038 (0x7fffffff)
[  458.546314][T12054] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  458.607651][   T25] audit: type=1804 audit(1721787451.292:59): pid=12054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2072" name="/newroot/315/file0/file1" dev="loop1" ino=15 res=1 errno=0
[  458.609294][T12054] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  458.642036][T12054] EXT4-fs (loop1): This should not happen!! Data will be lost
[  458.642036][T12054] 
[  458.658618][T12054] EXT4-fs (loop1): Total free blocks count 0
[  458.682559][T12054] EXT4-fs (loop1): Free/Dirty block details
[  458.700620][T12054] EXT4-fs (loop1): free_blocks=65281
[  458.705980][T12054] EXT4-fs (loop1): dirty_blocks=23
[  458.711570][T12054] EXT4-fs (loop1): Block reservation details
[  458.717617][T12054] EXT4-fs (loop1): i_reserved_data_blocks=23
[  458.780958][T12067] netlink: 'syz.3.2074': attribute type 7 has an invalid length.
[  458.789914][T12067] netlink: 'syz.3.2074': attribute type 39 has an invalid length.
[  458.803764][T12065] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2074'.
[  458.861948][    T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.943390][T12073] loop3: detected capacity change from 0 to 512
[  458.953152][T12039] chnl_net:caif_netlink_parms(): no params data found
[  459.024011][    T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.162441][    T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.195311][T12039] bridge0: port 1(bridge_slave_0) entered blocking state
[  459.206760][T12039] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.215553][T12039] device bridge_slave_0 entered promiscuous mode
[  459.231089][T12073] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #16: comm syz.3.2076: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  459.252060][T12073] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.2076: couldn't read orphan inode 16 (err -117)
[  459.252371][T12039] bridge0: port 2(bridge_slave_1) entered blocking state
[  459.271648][T12039] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.283182][T12039] device bridge_slave_1 entered promiscuous mode
[  459.307636][    T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.326914][T12073] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  459.358782][ T3921] Bluetooth: hci0: command 0x040f tx timeout
[  459.395818][T12073] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038 (0x7fffffff)
[  459.497791][T12039] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  459.524268][T12039] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  459.662902][T11960] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  459.716422][T11960] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  459.746930][T12039] team0: Port device team_slave_0 added
[  459.762165][T12104] netlink: 'syz.4.2084': attribute type 7 has an invalid length.
[  459.775818][T12104] netlink: 'syz.4.2084': attribute type 39 has an invalid length.
[  459.805107][T11960] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  459.819770][T11960] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  459.844413][T12105] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2084'.
[  459.875023][T12039] team0: Port device team_slave_1 added
[  459.936757][T12112] loop3: detected capacity change from 0 to 512
[  460.053770][T12112] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  460.138139][T12112] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038 (0x7fffffff)
[  460.159097][ T2924] Bluetooth: hci2: command 0x0409 tx timeout
[  460.166311][T12039] batman_adv: batadv0: Adding interface: batadv_slave_0
[  460.198611][T12039] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  460.252749][T12112] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  460.319748][T12039] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  460.339975][   T25] audit: type=1804 audit(1721787453.032:60): pid=12127 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2085" name="/newroot/13/file0/file1" dev="loop3" ino=15 res=1 errno=0
[  460.344372][T12112] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  460.418087][T12112] EXT4-fs (loop3): This should not happen!! Data will be lost
[  460.418087][T12112] 
[  460.445310][T12112] EXT4-fs (loop3): Total free blocks count 0
[  460.460591][T12112] EXT4-fs (loop3): Free/Dirty block details
[  460.487030][T12112] EXT4-fs (loop3): free_blocks=65281
[  460.492488][T12039] batman_adv: batadv0: Adding interface: batadv_slave_1
[  460.513731][T12039] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  460.517480][T12112] EXT4-fs (loop3): dirty_blocks=23
[  460.548147][T12039] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  460.593633][T12112] EXT4-fs (loop3): Block reservation details
[  460.609179][T12112] EXT4-fs (loop3): i_reserved_data_blocks=23
[  460.751203][T12142] loop4: detected capacity change from 0 to 512
[  460.789323][T11960] 8021q: adding VLAN 0 to HW filter on device bond0
[  460.838324][T12039] device hsr_slave_0 entered promiscuous mode
[  460.850754][T12142] EXT4-fs error (device loop4): ext4_ext_check_inode:501: inode #16: comm syz.4.2093: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 19200(19200)
[  460.872883][T12039] device hsr_slave_1 entered promiscuous mode
[  460.884409][T12039] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  460.892250][T12039] Cannot create hsr debugfs directory
[  460.924666][T12154] netlink: 'syz.1.2094': attribute type 7 has an invalid length.
[  460.943457][T12154] netlink: 'syz.1.2094': attribute type 39 has an invalid length.
[  460.955470][T12142] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.2093: couldn't read orphan inode 16 (err -117)
[  460.980216][T12142] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable,noquota,nouid32,barrier,noauto_da_alloc,journal_dev=0x00000000000001ff,barrier,delalloc,usrquota,,errors=continue. Quota mode: writeback.
[  461.012914][T11960] 8021q: adding VLAN 0 to HW filter on device team0
[  461.056031][T12157] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2094'.
[  461.077658][ T3921] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  461.086569][ T3921] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  461.157255][T12142] ext4 filesystem being mounted at /107/file1 supports timestamps until 2038 (0x7fffffff)
[  461.247804][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  461.285604][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  461.305681][ T2924] bridge0: port 1(bridge_slave_0) entered blocking state
[  461.312781][ T2924] bridge0: port 1(bridge_slave_0) entered forwarding state
[  461.333159][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  461.342808][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  461.351917][ T2924] bridge0: port 2(bridge_slave_1) entered blocking state
[  461.359021][ T2924] bridge0: port 2(bridge_slave_1) entered forwarding state
[  461.367584][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  461.397365][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  461.407463][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  461.419207][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  461.429052][ T1193] Bluetooth: hci0: command 0x0419 tx timeout
[  461.439519][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  461.458390][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  461.500012][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  461.518941][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  461.526827][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  461.545047][ T4419] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  461.641338][    T9] bond0: (slave gretap1): Releasing backup interface
[  461.662791][T11960] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  461.674782][T11960] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  461.698546][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  461.707293][ T2924] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  462.038704][    C0] ------------[ cut here ]------------
[  462.038756][    C0] 
[  462.038762][    C0] ======================================================
[  462.038768][    C0] WARNING: possible circular locking dependency detected
[  462.038774][    C0] 5.15.163-syzkaller #0 Not tainted
[  462.038782][    C0] ------------------------------------------------------
[  462.038787][    C0] syz.1.2095/12178 is trying to acquire lock:
[  462.038797][    C0] ffffffff8c7fc378 ((console_sem).lock){-.-.}-{2:2}, at: down_trylock+0x1c/0xa0
[  462.038861][    C0] 
[  462.038861][    C0] but task is already holding lock:
[  462.038866][    C0] ffff8880b9a28098 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x120/0x260
[  462.038898][    C0] 
[  462.038898][    C0] which lock already depends on the new lock.
[  462.038898][    C0] 
[  462.038903][    C0] 
[  462.038903][    C0] the existing dependency chain (in reverse order) is:
[  462.038908][    C0] 
[  462.038908][    C0] -> #3 (&base->lock){-.-.}-{2:2}:
[  462.038928][    C0]        lock_acquire+0x1db/0x4f0
[  462.038943][    C0]        _raw_spin_lock_irqsave+0xd1/0x120
[  462.038963][    C0]        lock_timer_base+0x120/0x260
[  462.038978][    C0]        __mod_timer+0x1d6/0xeb0
[  462.038993][    C0]        queue_delayed_work_on+0x156/0x250
[  462.039009][    C0]        enqueue_task+0x2fe/0x3a0
[  462.039023][    C0]        wake_up_new_task+0x515/0xb60
[  462.039040][    C0]        kernel_clone+0x44e/0x960
[  462.039056][    C0]        kernel_thread+0x168/0x1e0
[  462.039070][    C0]        rest_init+0x21/0x330
[  462.039087][    C0]        start_kernel+0x48c/0x540
[  462.039104][    C0]        secondary_startup_64_no_verify+0xb1/0xbb
[  462.039122][    C0] 
[  462.039122][    C0] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  462.039145][    C0]        lock_acquire+0x1db/0x4f0
[  462.039159][    C0]        _raw_spin_lock_nested+0x2d/0x40
[  462.039174][    C0]        raw_spin_rq_lock_nested+0x26/0x140
[  462.039190][    C0]        task_fork_fair+0x5d/0x350
[  462.039206][    C0]        sched_cgroup_fork+0x2d3/0x330
[  462.039222][    C0]        copy_process+0x224a/0x3ef0
[  462.039237][    C0]        kernel_clone+0x210/0x960
[  462.039252][    C0]        kernel_thread+0x168/0x1e0
[  462.039266][    C0]        rest_init+0x21/0x330
[  462.039282][    C0]        start_kernel+0x48c/0x540
[  462.039297][    C0]        secondary_startup_64_no_verify+0xb1/0xbb
[  462.039314][    C0] 
[  462.039314][    C0] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  462.039337][    C0]        lock_acquire+0x1db/0x4f0
[  462.039350][    C0]        _raw_spin_lock_irqsave+0xd1/0x120
[  462.039367][    C0]        try_to_wake_up+0xae/0x1300
[  462.039383][    C0]        up+0x6e/0x90
[  462.039397][    C0]        __up_console_sem+0x11a/0x1e0
[  462.039413][    C0]        console_unlock+0x1145/0x12b0
[  462.039428][    C0]        vprintk_emit+0xbf/0x150
[  462.039442][    C0]        _printk+0xd1/0x120
[  462.039459][    C0]        bt_err+0x123/0x170
[  462.039490][    C0]        hci_cmd_timeout+0x10f/0x230
[  462.039507][    C0]        process_one_work+0x8a1/0x10c0
[  462.039523][    C0]        worker_thread+0xaca/0x1280
[  462.039538][    C0]        kthread+0x3f6/0x4f0
[  462.039552][    C0]        ret_from_fork+0x1f/0x30
[  462.039567][    C0] 
[  462.039567][    C0] -> #0 ((console_sem).lock){-.-.}-{2:2}:
[  462.039589][    C0]        validate_chain+0x1649/0x5930
[  462.039604][    C0]        __lock_acquire+0x1295/0x1ff0
[  462.039618][    C0]        lock_acquire+0x1db/0x4f0
[  462.039632][    C0]        _raw_spin_lock_irqsave+0xd1/0x120
[  462.039649][    C0]        down_trylock+0x1c/0xa0
[  462.039665][    C0]        __down_trylock_console_sem+0x105/0x250
[  462.039681][    C0]        console_trylock_spinning+0x8a/0x3f0
[  462.039696][    C0]        vprintk_emit+0xa6/0x150
[  462.039710][    C0]        _printk+0xd1/0x120
[  462.039725][    C0]        report_bug+0x1e5/0x2e0
[  462.039742][    C0]        handle_bug+0x3d/0x70
[  462.039757][    C0]        exc_invalid_op+0x16/0x40
[  462.039772][    C0]        asm_exc_invalid_op+0x16/0x20
[  462.039787][    C0]        copy_from_user_nofault+0x15c/0x1c0
[  462.039802][    C0]        bpf_probe_read_user+0x26/0x70
[  462.039818][    C0]        bpf_prog_02073d59a3c0f06f+0x3d/0x7f8
[  462.039832][    C0]        bpf_trace_run3+0x1d1/0x380
[  462.039852][    C0]        enqueue_timer+0x3ae/0x540
[  462.039868][    C0]        __mod_timer+0xa60/0xeb0
[  462.039883][    C0]        dsp_cmx_send+0x21bb/0x2240
[  462.039899][    C0]        call_timer_fn+0x16d/0x560
[  462.039911][    C0]        __run_timers+0x67c/0x890
[  462.039925][    C0]        run_timer_softirq+0x63/0xf0
[  462.039941][    C0]        handle_softirqs+0x3a7/0x930
[  462.039956][    C0]        __irq_exit_rcu+0x157/0x240
[  462.039970][    C0]        irq_exit_rcu+0x5/0x20
[  462.039984][    C0]        sysvec_apic_timer_interrupt+0x91/0xb0
[  462.040002][    C0]        asm_sysvec_apic_timer_interrupt+0x16/0x20
[  462.040018][    C0]        __sanitizer_cov_trace_const_cmp8+0x4/0x80
[  462.040035][    C0]        _copy_from_user+0xcb/0x170
[  462.040050][    C0]        ___sys_recvmsg+0x150/0x690
[  462.040068][    C0]        do_recvmmsg+0x36f/0x8f0
[  462.040084][    C0]        __x64_sys_recvmmsg+0x195/0x240
[  462.040100][    C0]        do_syscall_64+0x3b/0xb0
[  462.040115][    C0]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  462.040131][    C0] 
[  462.040131][    C0] other info that might help us debug this:
[  462.040131][    C0] 
[  462.040137][    C0] Chain exists of:
[  462.040137][    C0]   (console_sem).lock --> &rq->__lock --> &base->lock
[  462.040137][    C0] 
[  462.040163][    C0]  Possible unsafe locking scenario:
[  462.040163][    C0] 
[  462.040168][    C0]        CPU0                    CPU1
[  462.040172][    C0]        ----                    ----
[  462.040177][    C0]   lock(&base->lock);
[  462.040187][    C0]                                lock(&rq->__lock);
[  462.040199][    C0]                                lock(&base->lock);
[  462.040210][    C0]   lock((console_sem).lock);
[  462.040220][    C0] 
[  462.040220][    C0]  *** DEADLOCK ***
[  462.040220][    C0] 
[  462.040224][    C0] 4 locks held by syz.1.2095/12178:
[  462.040235][    C0]  #0: ffffc90000007be0 ((&dsp_spl_tl)){+.-.}-{0:0}, at: call_timer_fn+0xbe/0x560
[  462.040273][    C0]  #1: ffffffff8d7a57b8 (dsp_lock){..-.}-{2:2}, at: dsp_cmx_send+0x22/0x2240
[  462.040312][    C0]  #2: ffff8880b9a28098 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x120/0x260
[  462.040353][    C0]  #3: ffffffff8c91fb20 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30
[  462.040392][    C0] 
[  462.040392][    C0] stack backtrace:
[  462.040397][    C0] CPU: 0 PID: 12178 Comm: syz.1.2095 Not tainted 5.15.163-syzkaller #0
[  462.040415][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  462.040425][    C0] Call Trace:
[  462.040431][    C0]  <IRQ>
[  462.040438][    C0]  dump_stack_lvl+0x1e3/0x2d0
[  462.040457][    C0]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  462.040479][    C0]  ? print_circular_bug+0x12b/0x1a0
[  462.040497][    C0]  check_noncircular+0x2f8/0x3b0
[  462.040516][    C0]  ? add_chain_block+0x850/0x850
[  462.040533][    C0]  ? lockdep_lock+0x11f/0x2a0
[  462.040550][    C0]  ? validate_chain+0x112/0x5930
[  462.040567][    C0]  ? _find_first_zero_bit+0xcf/0xf0
[  462.040588][    C0]  validate_chain+0x1649/0x5930
[  462.040612][    C0]  ? reacquire_held_locks+0x660/0x660
[  462.040629][    C0]  ? data_push_tail+0x693/0x700
[  462.040650][    C0]  ? desc_read+0x3d0/0x3d0
[  462.040670][    C0]  ? data_push_tail+0x6de/0x700
[  462.040689][    C0]  ? mark_lock+0x98/0x340
[  462.040704][    C0]  __lock_acquire+0x1295/0x1ff0
[  462.040723][    C0]  lock_acquire+0x1db/0x4f0
[  462.040736][    C0]  ? down_trylock+0x1c/0xa0
[  462.040752][    C0]  ? vsnprintf+0x1c70/0x1c70
[  462.040770][    C0]  ? read_lock_is_recursive+0x10/0x10
[  462.040783][    C0]  ? memcpy+0x3c/0x60
[  462.040799][    C0]  ? vsnprintf+0x1b96/0x1c70
[  462.040816][    C0]  ? _prb_commit+0x30a/0x3e0
[  462.040832][    C0]  ? prb_reserve+0x1240/0x1240
[  462.040853][    C0]  _raw_spin_lock_irqsave+0xd1/0x120
[  462.040870][    C0]  ? down_trylock+0x1c/0xa0
[  462.040885][    C0]  ? _raw_spin_lock+0x40/0x40
[  462.040903][    C0]  ? vprintk_store+0xf1b/0x1300
[  462.040920][    C0]  down_trylock+0x1c/0xa0
[  462.040938][    C0]  __down_trylock_console_sem+0x105/0x250
[  462.040954][    C0]  ? printk_parse_prefix+0x2c0/0x2c0
[  462.040968][    C0]  ? vprintk_emit+0xa6/0x150
[  462.040983][    C0]  ? console_trylock+0x70/0x70
[  462.040999][    C0]  ? ieee80211_rx_handlers+0x915a/0x91c0
[  462.041020][    C0]  ? vprintk_emit+0xa6/0x150
[  462.041034][    C0]  console_trylock_spinning+0x8a/0x3f0
[  462.041049][    C0]  ? vprintk_emit+0x150/0x150
[  462.041062][    C0]  ? validate_chain+0x112/0x5930
[  462.041077][    C0]  ? reacquire_held_locks+0x660/0x660
[  462.041091][    C0]  ? validate_chain+0x112/0x5930
[  462.041110][    C0]  ? validate_chain+0x112/0x5930
[  462.041125][    C0]  vprintk_emit+0xa6/0x150
[  462.041142][    C0]  _printk+0xd1/0x120
[  462.041160][    C0]  ? report_bug+0x16e/0x2e0
[  462.041177][    C0]  ? panic+0x860/0x860
[  462.041194][    C0]  ? find_bug+0x9c/0x350
[  462.041211][    C0]  ? copy_from_user_nofault+0x15c/0x1c0
[  462.041225][    C0]  report_bug+0x1e5/0x2e0
[  462.041240][    C0]  handle_bug+0x3d/0x70
[  462.041253][    C0]  exc_invalid_op+0x16/0x40
[  462.041266][    C0]  asm_exc_invalid_op+0x16/0x20
[  462.041286][    C0] RIP: 0010:copy_from_user_nofault+0x15c/0x1c0
[  462.041301][    C0] Code: db 48 c7 c0 f2 ff ff ff 48 0f 44 c5 eb 0c e8 eb ca d5 ff 48 c7 c0 f2 ff ff ff 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 d4 ca d5 ff <0f> 0b e9 1e ff ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c ef fe ff
[  462.041312][    C0] RSP: 0018:ffffc90000007780 EFLAGS: 00010046
[  462.041325][    C0] RAX: ffffffff81aa933c RBX: 0000000000000000 RCX: ffff888078c35940
[  462.041335][    C0] RDX: 0000000080000103 RSI: 0000000000000000 RDI: 0000000000000000
[  462.041344][    C0] RBP: dffffc0000000000 R08: ffffffff81aa924d R09: fffffbfff1f7f419
[  462.041354][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[  462.041363][    C0] R13: 0000000000000008 R14: 0000000000000000 R15: ffffc900000077e8
[  462.041374][    C0]  ? copy_from_user_nofault+0x6d/0x1c0
[  462.041387][    C0]  ? copy_from_user_nofault+0x15c/0x1c0
[  462.041402][    C0]  bpf_probe_read_user+0x26/0x70
[  462.041416][    C0]  bpf_prog_02073d59a3c0f06f+0x3d/0x7f8
[  462.041428][    C0]  bpf_trace_run3+0x1d1/0x380
[  462.041442][    C0]  ? bpf_trace_run2+0x340/0x340
[  462.041455][    C0]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  462.041470][    C0]  ? _raw_spin_lock+0x40/0x40
[  462.041486][    C0]  enqueue_timer+0x3ae/0x540
[  462.041502][    C0]  __mod_timer+0xa60/0xeb0
[  462.041515][    C0]  ? seqcount_lockdep_reader_access+0x1bd/0x220
[  462.041531][    C0]  ? mod_timer_pending+0x20/0x20
[  462.041544][    C0]  ? _raw_read_unlock_irqrestore+0xd9/0x130
[  462.041557][    C0]  ? _raw_read_unlock+0x40/0x40
[  462.041568][    C0]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  462.041582][    C0]  ? _raw_spin_lock+0x40/0x40
[  462.041597][    C0]  ? ktime_get+0x242/0x270
[  462.041611][    C0]  dsp_cmx_send+0x21bb/0x2240
[  462.041624][    C0]  ? read_lock_is_recursive+0x10/0x10
[  462.041644][    C0]  call_timer_fn+0x16d/0x560
[  462.041656][    C0]  ? dsp_cmx_receive+0x1370/0x1370
[  462.041669][    C0]  ? __run_timers+0x890/0x890
[  462.041682][    C0]  ? do_raw_spin_unlock+0x137/0x8b0
[  462.041696][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  462.041707][    C0]  ? dsp_cmx_receive+0x1370/0x1370
[  462.041719][    C0]  ? lockdep_hardirqs_on+0x94/0x130
[  462.041734][    C0]  ? dsp_cmx_receive+0x1370/0x1370
[  462.041746][    C0]  __run_timers+0x67c/0x890
[  462.041761][    C0]  ? detach_timer+0x2f0/0x2f0
[  462.041772][    C0]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  462.041787][    C0]  ? ktime_get_real_ts64+0x460/0x460
[  462.041802][    C0]  run_timer_softirq+0x63/0xf0
[  462.041816][    C0]  handle_softirqs+0x3a7/0x930
[  462.041830][    C0]  ? __irq_exit_rcu+0x157/0x240
[  462.041848][    C0]  ? do_softirq+0x240/0x240
[  462.041859][    C0]  ? hrtimer_interrupt+0x76b/0x980
[  462.041872][    C0]  ? irqtime_account_irq+0xd0/0x1e0
[  462.041888][    C0]  __irq_exit_rcu+0x157/0x240
[  462.041901][    C0]  ? irq_exit_rcu+0x20/0x20
[  462.041916][    C0]  irq_exit_rcu+0x5/0x20
[  462.041927][    C0]  sysvec_apic_timer_interrupt+0x91/0xb0
[  462.041942][    C0]  </IRQ>
[  462.041946][    C0]  <TASK>
[  462.041950][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  462.041964][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp8+0x4/0x80
[  462.041979][    C0] Code: 89 f8 89 f6 48 c7 44 0a 08 05 00 00 00 48 89 44 0a 10 48 89 74 0a 18 4c 89 44 0a 20 49 ff c1 4c 89 09 c3 0f 1f 00 4c 8b 04 24 <65> 48 8b 0d c4 0d 82 7e 65 8b 05 c5 0d 82 7e a9 00 01 ff 00 74 10
[  462.041989][    C0] RSP: 0018:ffffc90002e67a48 EFLAGS: 00000297
[  462.042000][    C0] RAX: 0000000000000002 RBX: 00000000203c9878 RCX: ffff888078c35940
[  462.042010][    C0] RDX: ffffc9000bdf9000 RSI: 00000000203c9878 RDI: 00007ffffffff000
[  462.042019][    C0] RBP: ffffc90002e67c70 R08: ffffffff8409014b R09: fffffbfff1bc8ede
[  462.042029][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000038
[  462.042038][    C0] R13: 00007ffffffff000 R14: ffffc90002e67ae0 R15: 00000000203c9840
[  462.042050][    C0]  ? _copy_from_user+0xcb/0x170
[  462.042066][    C0]  _copy_from_user+0xcb/0x170
[  462.042078][    C0]  ___sys_recvmsg+0x150/0x690
[  462.042095][    C0]  ? __sys_recvmsg+0x260/0x260
[  462.042118][    C0]  ? __might_fault+0xb4/0x110
[  462.042134][    C0]  do_recvmmsg+0x36f/0x8f0
[  462.042151][    C0]  ? __sys_recvmmsg+0x270/0x270
[  462.042168][    C0]  ? __lock_acquire+0x1ff0/0x1ff0
[  462.042180][    C0]  ? fd_install+0x2b1/0x4c0
[  462.042197][    C0]  __x64_sys_recvmmsg+0x195/0x240
[  462.042212][    C0]  ? do_recvmmsg+0x8f0/0x8f0
[  462.042226][    C0]  ? syscall_enter_from_user_mode+0x2e/0x240
[  462.042240][    C0]  ? lockdep_hardirqs_on+0x94/0x130
[  462.042254][    C0]  ? syscall_enter_from_user_mode+0x2e/0x240
[  462.042270][    C0]  do_syscall_64+0x3b/0xb0
[  462.042282][    C0]  ? clear_bhb_loop+0x15/0x70
[  462.042294][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  462.042307][    C0] RIP: 0033:0x7f6fec9c8f19
[  462.042318][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  462.042329][    C0] RSP: 002b:00007f6feae28048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  462.042341][    C0] RAX: ffffffffffffffda RBX: 00007f6fecb59038 RCX: 00007f6fec9c8f19
[  462.042351][    C0] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000004
[  462.042360][    C0] RBP: 00007f6feca37e68 R08: 0000000000000000 R09: 0000000000000000
[  462.042368][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  462.042377][    C0] R13: 000000000000006e R14: 00007f6fecb59038 R15: 00007fff2d184b28
[  462.042390][    C0]  </TASK>
[  463.431646][    C0] WARNING: CPU: 0 PID: 12178 at mm/maccess.c:226 copy_from_user_nofault+0x15c/0x1c0
[  463.441005][    C0] Modules linked in:
[  463.444875][    C0] CPU: 0 PID: 12178 Comm: syz.1.2095 Not tainted 5.15.163-syzkaller #0
[  463.453088][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  463.463120][    C0] RIP: 0010:copy_from_user_nofault+0x15c/0x1c0
[  463.469254][    C0] Code: db 48 c7 c0 f2 ff ff ff 48 0f 44 c5 eb 0c e8 eb ca d5 ff 48 c7 c0 f2 ff ff ff 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 d4 ca d5 ff <0f> 0b e9 1e ff ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c ef fe ff
[  463.488835][    C0] RSP: 0018:ffffc90000007780 EFLAGS: 00010046
[  463.494880][    C0] RAX: ffffffff81aa933c RBX: 0000000000000000 RCX: ffff888078c35940
[  463.502829][    C0] RDX: 0000000080000103 RSI: 0000000000000000 RDI: 0000000000000000
[  463.510775][    C0] RBP: dffffc0000000000 R08: ffffffff81aa924d R09: fffffbfff1f7f419
[  463.518725][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[  463.526681][    C0] R13: 0000000000000008 R14: 0000000000000000 R15: ffffc900000077e8
[  463.534639][    C0] FS:  00007f6feae286c0(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
[  463.543552][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  463.550113][    C0] CR2: 00007f9265607178 CR3: 0000000076156000 CR4: 00000000003506f0
[  463.558064][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  463.566014][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  463.573966][    C0] Call Trace:
[  463.577228][    C0]  <IRQ>
[  463.580052][    C0]  ? __warn+0x15b/0x300
[  463.584194][    C0]  ? copy_from_user_nofault+0x15c/0x1c0
[  463.589717][    C0]  ? report_bug+0x1b7/0x2e0
[  463.594203][    C0]  ? handle_bug+0x3d/0x70
[  463.598512][    C0]  ? exc_invalid_op+0x16/0x40
[  463.603168][    C0]  ? asm_exc_invalid_op+0x16/0x20
[  463.608180][    C0]  ? copy_from_user_nofault+0x6d/0x1c0
[  463.613614][    C0]  ? copy_from_user_nofault+0x15c/0x1c0
[  463.619138][    C0]  ? copy_from_user_nofault+0x15c/0x1c0
[  463.624668][    C0]  bpf_probe_read_user+0x26/0x70
[  463.629584][    C0]  bpf_prog_02073d59a3c0f06f+0x3d/0x7f8
[  463.635108][    C0]  bpf_trace_run3+0x1d1/0x380
[  463.639765][    C0]  ? bpf_trace_run2+0x340/0x340
[  463.644592][    C0]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  463.650030][    C0]  ? _raw_spin_lock+0x40/0x40
[  463.654690][    C0]  enqueue_timer+0x3ae/0x540
[  463.659261][    C0]  __mod_timer+0xa60/0xeb0
[  463.663668][    C0]  ? seqcount_lockdep_reader_access+0x1bd/0x220
[  463.669887][    C0]  ? mod_timer_pending+0x20/0x20
[  463.674801][    C0]  ? _raw_read_unlock_irqrestore+0xd9/0x130
[  463.680672][    C0]  ? _raw_read_unlock+0x40/0x40
[  463.685503][    C0]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  463.690939][    C0]  ? _raw_spin_lock+0x40/0x40
[  463.695594][    C0]  ? ktime_get+0x242/0x270
[  463.699990][    C0]  dsp_cmx_send+0x21bb/0x2240
[  463.704647][    C0]  ? read_lock_is_recursive+0x10/0x10
[  463.710002][    C0]  call_timer_fn+0x16d/0x560
[  463.714567][    C0]  ? dsp_cmx_receive+0x1370/0x1370
[  463.719655][    C0]  ? __run_timers+0x890/0x890
[  463.724309][    C0]  ? do_raw_spin_unlock+0x137/0x8b0
[  463.729487][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  463.734659][    C0]  ? dsp_cmx_receive+0x1370/0x1370
[  463.739747][    C0]  ? lockdep_hardirqs_on+0x94/0x130
[  463.744924][    C0]  ? dsp_cmx_receive+0x1370/0x1370
[  463.750013][    C0]  __run_timers+0x67c/0x890
[  463.754495][    C0]  ? detach_timer+0x2f0/0x2f0
[  463.759148][    C0]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  463.765107][    C0]  ? ktime_get_real_ts64+0x460/0x460
[  463.770372][    C0]  run_timer_softirq+0x63/0xf0
[  463.775122][    C0]  handle_softirqs+0x3a7/0x930
[  463.779867][    C0]  ? __irq_exit_rcu+0x157/0x240
[  463.784698][    C0]  ? do_softirq+0x240/0x240
[  463.789176][    C0]  ? hrtimer_interrupt+0x76b/0x980
[  463.794266][    C0]  ? irqtime_account_irq+0xd0/0x1e0
[  463.799444][    C0]  __irq_exit_rcu+0x157/0x240
[  463.804098][    C0]  ? irq_exit_rcu+0x20/0x20
[  463.808582][    C0]  irq_exit_rcu+0x5/0x20
[  463.812799][    C0]  sysvec_apic_timer_interrupt+0x91/0xb0
[  463.818415][    C0]  </IRQ>
[  463.821327][    C0]  <TASK>
[  463.824237][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  463.830194][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp8+0x4/0x80
[  463.836936][    C0] Code: 89 f8 89 f6 48 c7 44 0a 08 05 00 00 00 48 89 44 0a 10 48 89 74 0a 18 4c 89 44 0a 20 49 ff c1 4c 89 09 c3 0f 1f 00 4c 8b 04 24 <65> 48 8b 0d c4 0d 82 7e 65 8b 05 c5 0d 82 7e a9 00 01 ff 00 74 10
[  463.856521][    C0] RSP: 0018:ffffc90002e67a48 EFLAGS: 00000297
[  463.862572][    C0] RAX: 0000000000000002 RBX: 00000000203c9878 RCX: ffff888078c35940
[  463.870523][    C0] RDX: ffffc9000bdf9000 RSI: 00000000203c9878 RDI: 00007ffffffff000
[  463.878472][    C0] RBP: ffffc90002e67c70 R08: ffffffff8409014b R09: fffffbfff1bc8ede
[  463.886418][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000038
[  463.894375][    C0] R13: 00007ffffffff000 R14: ffffc90002e67ae0 R15: 00000000203c9840
[  463.902325][    C0]  ? _copy_from_user+0xcb/0x170
[  463.907168][    C0]  _copy_from_user+0xcb/0x170
[  463.911840][    C0]  ___sys_recvmsg+0x150/0x690
[  463.916502][    C0]  ? __sys_recvmsg+0x260/0x260
[  463.921257][    C0]  ? __might_fault+0xb4/0x110
[  463.925917][    C0]  do_recvmmsg+0x36f/0x8f0
[  463.930315][    C0]  ? __sys_recvmmsg+0x270/0x270
[  463.935149][    C0]  ? __lock_acquire+0x1ff0/0x1ff0
[  463.940150][    C0]  ? fd_install+0x2b1/0x4c0
[  463.944637][    C0]  __x64_sys_recvmmsg+0x195/0x240
[  463.949640][    C0]  ? do_recvmmsg+0x8f0/0x8f0
[  463.954208][    C0]  ? syscall_enter_from_user_mode+0x2e/0x240
[  463.960168][    C0]  ? lockdep_hardirqs_on+0x94/0x130
[  463.965358][    C0]  ? syscall_enter_from_user_mode+0x2e/0x240
[  463.971335][    C0]  do_syscall_64+0x3b/0xb0
[  463.975734][    C0]  ? clear_bhb_loop+0x15/0x70
[  463.980390][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  463.986270][    C0] RIP: 0033:0x7f6fec9c8f19
[  463.990677][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  464.010260][    C0] RSP: 002b:00007f6feae28048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  464.018656][    C0] RAX: ffffffffffffffda RBX: 00007f6fecb59038 RCX: 00007f6fec9c8f19
[  464.026607][    C0] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000004
[  464.034558][    C0] RBP: 00007f6feca37e68 R08: 0000000000000000 R09: 0000000000000000
[  464.042506][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  464.050458][    C0] R13: 000000000000006e R14: 00007f6fecb59038 R15: 00007fff2d184b28
[  464.058416][    C0]  </TASK>
[  464.061429][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  464.068691][    C0] CPU: 0 PID: 12178 Comm: syz.1.2095 Not tainted 5.15.163-syzkaller #0
[  464.076911][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  464.086944][    C0] Call Trace:
[  464.090203][    C0]  <IRQ>
[  464.093030][    C0]  dump_stack_lvl+0x1e3/0x2d0
[  464.097692][    C0]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  464.103305][    C0]  ? panic+0x860/0x860
[  464.107356][    C0]  ? panic+0x860/0x860
[  464.111401][    C0]  ? copy_from_user_nofault+0x120/0x1c0
[  464.116923][    C0]  ? copy_from_user_nofault+0x120/0x1c0
[  464.122444][    C0]  panic+0x318/0x860
[  464.126317][    C0]  ? __warn+0x16a/0x300
[  464.130449][    C0]  ? fb_is_primary_device+0xd0/0xd0
[  464.135629][    C0]  ? copy_from_user_nofault+0x15c/0x1c0
[  464.141150][    C0]  __warn+0x2b2/0x300
[  464.145106][    C0]  ? copy_from_user_nofault+0x15c/0x1c0
[  464.150629][    C0]  report_bug+0x1b7/0x2e0
[  464.154938][    C0]  handle_bug+0x3d/0x70
[  464.159070][    C0]  exc_invalid_op+0x16/0x40
[  464.163551][    C0]  asm_exc_invalid_op+0x16/0x20
[  464.168378][    C0] RIP: 0010:copy_from_user_nofault+0x15c/0x1c0
[  464.174507][    C0] Code: db 48 c7 c0 f2 ff ff ff 48 0f 44 c5 eb 0c e8 eb ca d5 ff 48 c7 c0 f2 ff ff ff 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 d4 ca d5 ff <0f> 0b e9 1e ff ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c ef fe ff
[  464.194090][    C0] RSP: 0018:ffffc90000007780 EFLAGS: 00010046
[  464.200134][    C0] RAX: ffffffff81aa933c RBX: 0000000000000000 RCX: ffff888078c35940
[  464.208092][    C0] RDX: 0000000080000103 RSI: 0000000000000000 RDI: 0000000000000000
[  464.216038][    C0] RBP: dffffc0000000000 R08: ffffffff81aa924d R09: fffffbfff1f7f419
[  464.223985][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[  464.231931][    C0] R13: 0000000000000008 R14: 0000000000000000 R15: ffffc900000077e8
[  464.239883][    C0]  ? copy_from_user_nofault+0x6d/0x1c0
[  464.245318][    C0]  ? copy_from_user_nofault+0x15c/0x1c0
[  464.250846][    C0]  bpf_probe_read_user+0x26/0x70
[  464.255762][    C0]  bpf_prog_02073d59a3c0f06f+0x3d/0x7f8
[  464.261286][    C0]  bpf_trace_run3+0x1d1/0x380
[  464.265942][    C0]  ? bpf_trace_run2+0x340/0x340
[  464.270769][    C0]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  464.276206][    C0]  ? _raw_spin_lock+0x40/0x40
[  464.280865][    C0]  enqueue_timer+0x3ae/0x540
[  464.285439][    C0]  __mod_timer+0xa60/0xeb0
[  464.289833][    C0]  ? seqcount_lockdep_reader_access+0x1bd/0x220
[  464.296053][    C0]  ? mod_timer_pending+0x20/0x20
[  464.300967][    C0]  ? _raw_read_unlock_irqrestore+0xd9/0x130
[  464.306837][    C0]  ? _raw_read_unlock+0x40/0x40
[  464.311660][    C0]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  464.317103][    C0]  ? _raw_spin_lock+0x40/0x40
[  464.321758][    C0]  ? ktime_get+0x242/0x270
[  464.326153][    C0]  dsp_cmx_send+0x21bb/0x2240
[  464.330808][    C0]  ? read_lock_is_recursive+0x10/0x10
[  464.336165][    C0]  call_timer_fn+0x16d/0x560
[  464.340733][    C0]  ? dsp_cmx_receive+0x1370/0x1370
[  464.345821][    C0]  ? __run_timers+0x890/0x890
[  464.350472][    C0]  ? do_raw_spin_unlock+0x137/0x8b0
[  464.355649][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  464.360823][    C0]  ? dsp_cmx_receive+0x1370/0x1370
[  464.365916][    C0]  ? lockdep_hardirqs_on+0x94/0x130
[  464.371097][    C0]  ? dsp_cmx_receive+0x1370/0x1370
[  464.376183][    C0]  __run_timers+0x67c/0x890
[  464.380670][    C0]  ? detach_timer+0x2f0/0x2f0
[  464.385324][    C0]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  464.391280][    C0]  ? ktime_get_real_ts64+0x460/0x460
[  464.396978][    C0]  run_timer_softirq+0x63/0xf0
[  464.401724][    C0]  handle_softirqs+0x3a7/0x930
[  464.406467][    C0]  ? __irq_exit_rcu+0x157/0x240
[  464.411294][    C0]  ? do_softirq+0x240/0x240
[  464.415771][    C0]  ? hrtimer_interrupt+0x76b/0x980
[  464.420859][    C0]  ? irqtime_account_irq+0xd0/0x1e0
[  464.426036][    C0]  __irq_exit_rcu+0x157/0x240
[  464.430689][    C0]  ? irq_exit_rcu+0x20/0x20
[  464.435170][    C0]  irq_exit_rcu+0x5/0x20
[  464.439393][    C0]  sysvec_apic_timer_interrupt+0x91/0xb0
[  464.445005][    C0]  </IRQ>
[  464.447913][    C0]  <TASK>
[  464.450821][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  464.456780][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp8+0x4/0x80
[  464.463522][    C0] Code: 89 f8 89 f6 48 c7 44 0a 08 05 00 00 00 48 89 44 0a 10 48 89 74 0a 18 4c 89 44 0a 20 49 ff c1 4c 89 09 c3 0f 1f 00 4c 8b 04 24 <65> 48 8b 0d c4 0d 82 7e 65 8b 05 c5 0d 82 7e a9 00 01 ff 00 74 10
[  464.483108][    C0] RSP: 0018:ffffc90002e67a48 EFLAGS: 00000297
[  464.489152][    C0] RAX: 0000000000000002 RBX: 00000000203c9878 RCX: ffff888078c35940
[  464.497100][    C0] RDX: ffffc9000bdf9000 RSI: 00000000203c9878 RDI: 00007ffffffff000
[  464.505049][    C0] RBP: ffffc90002e67c70 R08: ffffffff8409014b R09: fffffbfff1bc8ede
[  464.512997][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000038
[  464.520944][    C0] R13: 00007ffffffff000 R14: ffffc90002e67ae0 R15: 00000000203c9840
[  464.528896][    C0]  ? _copy_from_user+0xcb/0x170
[  464.533730][    C0]  _copy_from_user+0xcb/0x170
[  464.538384][    C0]  ___sys_recvmsg+0x150/0x690
[  464.543041][    C0]  ? __sys_recvmsg+0x260/0x260
[  464.547802][    C0]  ? __might_fault+0xb4/0x110
[  464.552481][    C0]  do_recvmmsg+0x36f/0x8f0
[  464.556889][    C0]  ? __sys_recvmmsg+0x270/0x270
[  464.561721][    C0]  ? __lock_acquire+0x1ff0/0x1ff0
[  464.566725][    C0]  ? fd_install+0x2b1/0x4c0
[  464.571211][    C0]  __x64_sys_recvmmsg+0x195/0x240
[  464.576219][    C0]  ? do_recvmmsg+0x8f0/0x8f0
[  464.580789][    C0]  ? syscall_enter_from_user_mode+0x2e/0x240
[  464.586751][    C0]  ? lockdep_hardirqs_on+0x94/0x130
[  464.591928][    C0]  ? syscall_enter_from_user_mode+0x2e/0x240
[  464.597885][    C0]  do_syscall_64+0x3b/0xb0
[  464.602280][    C0]  ? clear_bhb_loop+0x15/0x70
[  464.606938][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  464.612807][    C0] RIP: 0033:0x7f6fec9c8f19
[  464.617203][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  464.636786][    C0] RSP: 002b:00007f6feae28048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  464.645180][    C0] RAX: ffffffffffffffda RBX: 00007f6fecb59038 RCX: 00007f6fec9c8f19
[  464.653132][    C0] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000004
[  464.661081][    C0] RBP: 00007f6feca37e68 R08: 0000000000000000 R09: 0000000000000000
[  464.669031][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  464.676977][    C0] R13: 000000000000006e R14: 00007f6fecb59038 R15: 00007fff2d184b28
[  464.684931][    C0]  </TASK>
[  464.688106][    C0] Kernel Offset: disabled
[  464.692415][    C0] Rebooting in 86400 seconds..