last executing test programs:

2.717429961s ago: executing program 3 (id=1314):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffc4, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r2, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r2, &(0x7f0000000cc0)=[{{0x0, 0x0, 0x0}, 0x275a}], 0x1, 0x60010000, 0x0)
sendto$inet(r2, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)

2.631445144s ago: executing program 3 (id=1317):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0xf5)
socket$caif_stream(0x25, 0x1, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
close(0x4)

2.472204161s ago: executing program 3 (id=1319):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000008e80)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x820b, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x4d, &(0x7f0000000180)=0x8, 0x4)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x2409c8c1, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
sendto$inet6(r1, &(0x7f0000000e80)="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", 0x5c6, 0x6d91fb6102d8910c, 0x0, 0xfffffffffffffe38)
sendto$inet6(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

2.333605557s ago: executing program 2 (id=1323):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r2}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

2.203987613s ago: executing program 2 (id=1328):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r1, &(0x7f0000000200)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0xffffffff}}, 0xe8)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)

1.668769987s ago: executing program 3 (id=1346):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xffffffff, 0x3, 0x1cc0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3f, 0x0, 0x0, 0x0, 0xb}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000008c0)=ANY=[@ANYBLOB="54000000000801010000ffffe00000000a000000050003002f0000000600024000000000240004800800024000000000080001400000fcff07000140800000010800014080000001090001"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x28040000)

1.627040289s ago: executing program 3 (id=1347):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={0x0, 0x30}}, 0x80)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
pipe(&(0x7f0000000200)={<r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000080)=[{&(0x7f0000000500)='|', 0x1}], 0x1, 0x0)

1.58967028s ago: executing program 0 (id=1349):
r0 = socket$tipc(0x1e, 0x5, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10)
bind$tipc(r1, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x3}}}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x4}}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r3, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4)

1.520876163s ago: executing program 0 (id=1351):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000880)=ANY=[@ANYBLOB="600000001000ff"], 0x60}, 0x1, 0x0, 0x0, 0x91}, 0xc010)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000)=0x1000, 0x4)
sendto(r2, &(0x7f00000005c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x20000090, 0x0, 0x0)
recvmmsg(r2, &(0x7f000000a340)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x40002020, 0x0)

1.520078223s ago: executing program 0 (id=1353):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x42, 0x61)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x1)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00"/13], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x18)
fcntl$getown(r0, 0x9)
sendfile(r1, r0, 0x0, 0x7ffff000)

737.285198ms ago: executing program 3 (id=1358):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
r2 = socket$netlink(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000200), 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r2)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c232000, 0x3, 0x2})
timer_settime(r1, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

736.836098ms ago: executing program 4 (id=1359):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x5, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = fsopen(&(0x7f0000000080)='mqueue\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000001d40)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xaei\xb6\xb7\xc1Y\xd5YG\xf9\xc2\xf1\xa4\xdb$\xf6]\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\x03\x00\x00\x00\x00\x00\x00\x00\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^W\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fB\x91\x15\x83\xec(B\xc5\x05\x9d\xd6\x02|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sA\xad\xa6\xb6P\xa3\xf7\xc3q\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\x00\x00\x00\x00\x00\x00\x00\x00\x00\xef\xcd\xd3\t\x01A\xd5\x81\xc1;9\xeez\xba\x00\x00\x00\xdc\x94\xff)\xa4\xe6\xfb]\x90bG\x11\b\x98#\xaa99ez|\x8b5\x92\xa5\xba\x96\xb3\xb26I\xbb\xdeb\x95?\xc0\x81', &(0x7f0000000200)='sockfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000040)='\x00', &(0x7f00000001c0)='dE\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000280)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fB\x91\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\x8cU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sA\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^', &(0x7f00000000c0)='dE\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f00000007c0)='\xd5@=\b\a:\x993\x00', &(0x7f0000000600)='dU|\xcbM\xe6\x91q\b', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000001ec0)='\\$#[8V\x89\xeb}\f\xc1\x9f\xcfp\x8a\x01\\/\x00\xd5\xd4^\xa7\xe4\xd4\x1f.yh\x18\xb8s\xe6\f\xaf*4\xe1\xa1e\x04%f\x8f\xde\x91\x04\xbb\xc8\x17\x15\xa4\xf0\x00\x15w\x00\x00\xed\xdd}\x00\x18\xf3\xde\n\xbe\x91\xc4\xc5\xe6\xd3o\xaau\x900\x10\xaf\x1f\x02Bl\x93\xcb\xf83S\xaf`]\xf34\t\x9d\x80rg\xbc\xee\x96p\x18\x9e(h\xeb\xd9\xde\xa6\xfc\x8e\xe3,\xae\xa8\xf0\x82y\x91\x1c{\x85 \xc7P\xa3\x9c\x06\xc1\xd3\x92\xcd\xcc\x17\xb2}\x13:\xbbh\"%;\b\x7f\x91\x8a\xa5Z\x92~<\xfe3\x19\xdcVJ\f\xd1\x89d\xf9N\xbd\x92\x86\xa2\xa8\xc0:\x1f\n\xc9\x8eUO\x8e\xea\x99\xe1\xbe%Y\x9eH#\xa4\x9d5\xa88m6\x89kE\xce\xc3\aBW\xec_\xea_\x81\xbe\x86~\x84F\xa9\xcd\xbb\x13\xd8\x8f\x01\x81~\x9c#\r\x87\xcf\x19\xb9\xbd \xcb\xff\x88io\xb0\xb1\xa0B\x8cI\x82+\xc4\xcf\xf4!+\x16v', &(0x7f0000000640)='\xbd\x10\xe2\n\xc4\xa8\xa8?\a\x9ew\xc2A\xd6WP@O<\xf4s\x85~X\x85\xdc\xa3\xad\xe5`\xfd\x03p\xaeS^\x04\x11\x04a\xf8\xa6f\x96nB\x02\x10+C$\f\xb3\xcc\xed\"M\xb6 V\xc5\x9a\x11o^\xda\xc87\xaaV\xd88\x93\xd3\x85\x9a?\x8fY\xd1\x1a@;\x1a=@\x7f.7\x00\xc7\xf0\x97\xfe\xa1\xba\x80\xbb\xdas\x1c\x10\xac\xbf\x05\x9f\x86\v\x17\x82;s>#\xa7\xdb\xca\xabY\x87$Ug\xf0\x91\x86\x19\xd8\x886\xd0Y\xbf~\xf2\xd9@\x0f\xc5\xb4\xdb\x15\xa7\xee\xc3H<(\x95\xaa1y\xbf\x10\x1fq**', 0x0)
close(r1)

700.982299ms ago: executing program 4 (id=1360):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000008e80)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x820b, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x4d, &(0x7f0000000180)=0x8, 0x4)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x2409c8c1, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
sendto$inet6(r1, &(0x7f0000000e80)="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", 0x5c6, 0x6d91fb6102d8910c, 0x0, 0xfffffffffffffe38)
sendto$inet6(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

630.191452ms ago: executing program 0 (id=1361):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0xf5)
socket$caif_stream(0x25, 0x1, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
close(0x4)

615.101993ms ago: executing program 4 (id=1362):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000003"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000500)='page_pool_state_release\x00', r3}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

574.676354ms ago: executing program 4 (id=1363):
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x6, 0x40, 0x3, 0x0, 0x4000000000, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x8}, 0x100882, 0x7ff, 0x6, 0x3, 0xb, 0x2, 0x3ff, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x100000a, 0x4082172, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))

532.919686ms ago: executing program 4 (id=1365):
perf_event_open(&(0x7f0000000300)={0x1, 0xab, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x29404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x9, 0x7}, 0x100, 0xa88, 0x0, 0x5, 0x0, 0x3c, 0xffff, 0x0, 0x0, 0x0, 0x46}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x1)
ioperm(0x4, 0x1, 0x6)
msgrcv(0x0, 0x0, 0x0, 0x3, 0x2000)
msgctl$IPC_RMID(0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_procfs(0x0, 0x0)
name_to_handle_at(r0, 0x0, 0x0, 0x0, 0x200)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000180), 0xfc, 0x58f, &(0x7f0000002d00)="$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")
creat(0x0, 0x14c)

521.625227ms ago: executing program 2 (id=1366):
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
set_robust_list(&(0x7f0000000140)={0x0, 0x4}, 0x18)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x6c)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0x9800, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf22}, 0x48)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0x1, 0x8470bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x74614, 0x36a01}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0xc, 0x5, 0x0, 0x1, [@IFLA_BRPORT_STATE={0x5, 0x1, 0x33}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2400c081}, 0x8002)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

517.954277ms ago: executing program 0 (id=1367):
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x20081e, &(0x7f0000000840)={[{@grpjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x10}}, {@grpquota}]}, 0x1, 0x52a, &(0x7f0000001440)="$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")
r1 = creat(&(0x7f0000000340)='./bus\x00', 0x182)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x80642, 0x150)
pwrite64(r2, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r1, 0x0, 0xbf5, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0xc, r1, 0x0, 0x0, 0x0, 0xfffffffffdffffff})

500.494318ms ago: executing program 2 (id=1368):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xb9)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="12000000070000000800000022"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)=ANY=[@ANYRES32=r1, @ANYRES32=r0, @ANYBLOB="05"], 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
close(r2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r1}, &(0x7f0000000080), &(0x7f0000000840)=r2}, 0x20)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000002180)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r3, 0xffffffffffffffff, 0x0)

486.568588ms ago: executing program 2 (id=1369):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x20002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
brk(0x200000ffc000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'ip6gretap0\x00', <r1=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r1, {0x14, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x7fff, 0x80, 0x240}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@gettaction={0x1c, 0x32, 0x0, 0x70bd28, 0x25dfdbfb, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0xffffffff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x2, &(0x7f00000001c0)=[{0x6, 0xf, 0x0, 0x7fff8000}, {0x3, 0x0, 0x6, 0xfffffff9}]})
close_range(r2, 0xffffffffffffffff, 0x0)

418.680601ms ago: executing program 0 (id=1370):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={0x0, 0x30}}, 0x80)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
pipe(&(0x7f0000000200)={<r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000080)=[{&(0x7f0000000500)='|', 0x1}], 0x1, 0x0)

418.351871ms ago: executing program 1 (id=1371):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
close(0xffffffffffffffff)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWSETELEM={0x5c, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x30, 0x3, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x2df31ab3}]}, {0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}, {0x4}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

418.080931ms ago: executing program 2 (id=1372):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x42, 0x61)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x1)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00"/13], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x18)
fcntl$getown(r0, 0x9)
sendfile(r1, r0, 0x0, 0x7ffff000)

382.625543ms ago: executing program 1 (id=1373):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000008e80)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x820b, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x4d, &(0x7f0000000180)=0x8, 0x4)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x2409c8c1, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
sendto$inet6(r1, &(0x7f0000000e80)="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", 0x5c6, 0x6d91fb6102d8910c, 0x0, 0xfffffffffffffe38)
sendto$inet6(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

312.688006ms ago: executing program 1 (id=1374):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000880)={0x1c, 0x2, 0x3, 0x201, 0x0, 0x0, {0x0, 0x0, 0x1}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x1a}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x80)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x2, 0x3, 0x101, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x5}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x8}}]}, 0x28}, 0x1, 0x0, 0x0, 0x20004891}, 0x40084)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000001400), 0xfffffffffffffffb, 0x5480)
ioctl$BLKDISCARDZEROES(r1, 0x127c, &(0x7f0000001440))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x4, 0x17, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}, {}, {0x85, 0x0, 0x0, 0x17}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r3, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

174.171282ms ago: executing program 4 (id=1375):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={0xffffffffffffffff, &(0x7f0000000180), 0x0}, 0x20)
r0 = syz_io_uring_setup(0x10d4, &(0x7f0000000000)={0x0, 0xa377, 0x0, 0x3, 0x310}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000200)=[{0x32, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

172.879002ms ago: executing program 1 (id=1385):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
pwritev2(r3, 0x0, 0x0, 0x7a00, 0x0, 0x3)

125.005755ms ago: executing program 1 (id=1376):
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x6, 0x40, 0x3, 0x0, 0x4000000000, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x8}, 0x100882, 0x7ff, 0x6, 0x3, 0xb, 0x2, 0x3ff, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x100000a, 0x4082172, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))

0s ago: executing program 1 (id=1377):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r1, &(0x7f0000000200)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0xffffffff}}, 0xe8)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)

kernel console output (not intermixed with test programs):

will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   27.153544][ T3323] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   27.177779][ T3320] hsr_slave_0: entered promiscuous mode
[   27.183620][ T3320] hsr_slave_1: entered promiscuous mode
[   27.189803][ T3313] batman_adv: batadv0: Adding interface: batadv_slave_1
[   27.196731][ T3313] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   27.222613][ T3313] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   27.233545][ T3323] batman_adv: batadv0: Adding interface: batadv_slave_1
[   27.240522][ T3323] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   27.266604][ T3323] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   27.292606][ T3317] hsr_slave_0: entered promiscuous mode
[   27.298460][ T3317] hsr_slave_1: entered promiscuous mode
[   27.304358][ T3317] debugfs: 'hsr0' already exists in 'hsr'
[   27.310074][ T3317] Cannot create hsr debugfs directory
[   27.329371][ T3314] hsr_slave_0: entered promiscuous mode
[   27.335604][ T3314] hsr_slave_1: entered promiscuous mode
[   27.341440][ T3314] debugfs: 'hsr0' already exists in 'hsr'
[   27.347136][ T3314] Cannot create hsr debugfs directory
[   27.383022][ T3323] hsr_slave_0: entered promiscuous mode
[   27.389022][ T3323] hsr_slave_1: entered promiscuous mode
[   27.394879][ T3323] debugfs: 'hsr0' already exists in 'hsr'
[   27.400663][ T3323] Cannot create hsr debugfs directory
[   27.418923][ T3313] hsr_slave_0: entered promiscuous mode
[   27.425195][ T3313] hsr_slave_1: entered promiscuous mode
[   27.431009][ T3313] debugfs: 'hsr0' already exists in 'hsr'
[   27.436721][ T3313] Cannot create hsr debugfs directory
[   27.597172][ T3320] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   27.609462][ T3320] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   27.618110][ T3320] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   27.629369][ T3320] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   27.651632][ T3314] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   27.664221][ T3314] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   27.676488][ T3314] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   27.685223][ T3314] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   27.708008][ T3323] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   27.716872][ T3323] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   27.731123][ T3323] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   27.740967][ T3323] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   27.768680][ T3317] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   27.779084][ T3317] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   27.788356][ T3317] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   27.796810][ T3317] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   27.843657][ T3320] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.856427][ T3313] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   27.867288][ T3313] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   27.881573][ T3313] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   27.891577][ T3320] 8021q: adding VLAN 0 to HW filter on device team0
[   27.898497][ T3313] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   27.907945][ T3314] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.921644][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.928736][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.946868][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.953964][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.966331][ T3323] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.979286][ T3314] 8021q: adding VLAN 0 to HW filter on device team0
[   27.998763][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[   28.005813][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[   28.025619][ T3323] 8021q: adding VLAN 0 to HW filter on device team0
[   28.035401][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[   28.042515][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[   28.062470][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[   28.069512][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[   28.087087][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[   28.094257][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[   28.117558][ T3314] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   28.128024][ T3314] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   28.141883][ T3317] 8021q: adding VLAN 0 to HW filter on device bond0
[   28.158870][ T3323] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   28.169257][ T3323] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   28.212320][ T3320] 8021q: adding VLAN 0 to HW filter on device batadv0
[   28.227671][ T3313] 8021q: adding VLAN 0 to HW filter on device bond0
[   28.236108][ T3317] 8021q: adding VLAN 0 to HW filter on device team0
[   28.249732][ T3313] 8021q: adding VLAN 0 to HW filter on device team0
[   28.276929][ T3314] 8021q: adding VLAN 0 to HW filter on device batadv0
[   28.291264][ T2952] bridge0: port 1(bridge_slave_0) entered blocking state
[   28.298410][ T2952] bridge0: port 1(bridge_slave_0) entered forwarding state
[   28.307119][ T2952] bridge0: port 1(bridge_slave_0) entered blocking state
[   28.314224][ T2952] bridge0: port 1(bridge_slave_0) entered forwarding state
[   28.330640][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[   28.337710][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[   28.346921][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[   28.353996][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[   28.375287][ T3323] 8021q: adding VLAN 0 to HW filter on device batadv0
[   28.486984][ T3314] veth0_vlan: entered promiscuous mode
[   28.516330][ T3317] 8021q: adding VLAN 0 to HW filter on device batadv0
[   28.535242][ T3320] veth0_vlan: entered promiscuous mode
[   28.550361][ T3314] veth1_vlan: entered promiscuous mode
[   28.556347][ T3323] veth0_vlan: entered promiscuous mode
[   28.568762][ T3323] veth1_vlan: entered promiscuous mode
[   28.575635][ T3320] veth1_vlan: entered promiscuous mode
[   28.598322][ T3313] 8021q: adding VLAN 0 to HW filter on device batadv0
[   28.622519][ T3323] veth0_macvtap: entered promiscuous mode
[   28.644065][ T3320] veth0_macvtap: entered promiscuous mode
[   28.651274][ T3314] veth0_macvtap: entered promiscuous mode
[   28.658353][ T3320] veth1_macvtap: entered promiscuous mode
[   28.666743][ T3323] veth1_macvtap: entered promiscuous mode
[   28.674235][ T3314] veth1_macvtap: entered promiscuous mode
[   28.708575][ T3323] batman_adv: batadv0: Interface activated: batadv_slave_0
[   28.717376][ T3320] batman_adv: batadv0: Interface activated: batadv_slave_0
[   28.728234][ T3317] veth0_vlan: entered promiscuous mode
[   28.734836][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_0
[   28.742985][ T3323] batman_adv: batadv0: Interface activated: batadv_slave_1
[   28.755763][ T3320] batman_adv: batadv0: Interface activated: batadv_slave_1
[   28.769609][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_1
[   28.777143][   T52] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   28.785931][   T52] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   28.799991][ T3317] veth1_vlan: entered promiscuous mode
[   28.806052][   T52] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   28.817928][ T3313] veth0_vlan: entered promiscuous mode
[   28.823961][   T52] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   28.836577][   T52] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   28.850143][   T52] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   28.862529][   T52] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   28.873792][ T3313] veth1_vlan: entered promiscuous mode
[   28.881791][   T52] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   28.894956][   T52] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   28.904147][   T29] kauditd_printk_skb: 10 callbacks suppressed
[   28.904159][   T29] audit: type=1400 audit(1765307533.854:90): avc:  denied  { mounton } for  pid=3314 comm="syz-executor" path="/root/syzkaller.uk0jBC/syz-tmp" dev="sda1" ino=2041 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   28.914786][ T3313] veth0_macvtap: entered promiscuous mode
[   28.940424][   T29] audit: type=1400 audit(1765307533.854:91): avc:  denied  { mount } for  pid=3314 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   28.962371][   T29] audit: type=1400 audit(1765307533.854:92): avc:  denied  { mounton } for  pid=3314 comm="syz-executor" path="/root/syzkaller.uk0jBC/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   28.987567][   T29] audit: type=1400 audit(1765307533.854:93): avc:  denied  { mount } for  pid=3314 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   29.009384][   T29] audit: type=1400 audit(1765307533.854:94): avc:  denied  { mounton } for  pid=3314 comm="syz-executor" path="/root/syzkaller.uk0jBC/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   29.035996][   T29] audit: type=1400 audit(1765307533.854:95): avc:  denied  { mounton } for  pid=3314 comm="syz-executor" path="/root/syzkaller.uk0jBC/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=4385 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   29.063346][   T29] audit: type=1400 audit(1765307533.854:96): avc:  denied  { unmount } for  pid=3314 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   29.084386][   T29] audit: type=1400 audit(1765307533.894:97): avc:  denied  { mounton } for  pid=3314 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   29.107169][   T29] audit: type=1400 audit(1765307533.894:98): avc:  denied  { mount } for  pid=3314 comm="syz-executor" name="/" dev="gadgetfs" ino=4403 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   29.134420][   T52] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   29.146905][ T3314] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   29.167631][   T52] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   29.177613][ T3317] veth0_macvtap: entered promiscuous mode
[   29.185419][ T3313] veth1_macvtap: entered promiscuous mode
[   29.192166][   T52] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   29.206977][   T29] audit: type=1400 audit(1765307534.154:99): avc:  denied  { read write } for  pid=3314 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   29.232952][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_0
[   29.257255][ T3317] veth1_macvtap: entered promiscuous mode
[   29.272866][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_1
[   29.293016][   T52] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   29.310446][   T52] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   29.320955][ T3317] batman_adv: batadv0: Interface activated: batadv_slave_0
[   29.352634][ T3494] netlink: 131740 bytes leftover after parsing attributes in process `syz.0.6'.
[   29.363115][ T3494] netlink: zone id is out of range
[   29.365545][ T3317] batman_adv: batadv0: Interface activated: batadv_slave_1
[   29.368288][ T3494] netlink: zone id is out of range
[   29.387173][ T3494] netlink: zone id is out of range
[   29.392335][ T3494] netlink: zone id is out of range
[   29.397490][ T3494] netlink: zone id is out of range
[   29.404608][   T52] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   29.413797][ T3494] netlink: del zone limit has 8 unknown bytes
[   29.430794][   T52] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   29.456337][ T3501] loop4: detected capacity change from 0 to 512
[   29.470690][   T52] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   29.483479][ T3496] loop3: detected capacity change from 0 to 512
[   29.489831][   T52] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   29.489868][   T52] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   29.524607][ T3501] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   29.537330][ T3496] =======================================================
[   29.537330][ T3496] WARNING: The mand mount option has been deprecated and
[   29.537330][ T3496]          and is ignored by this kernel. Remove the mand
[   29.537330][ T3496]          option from the mount to silence this warning.
[   29.537330][ T3496] =======================================================
[   29.576832][ T3496] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   29.576828][   T52] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   29.598581][ T3496] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   29.612893][ T3501] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   29.642511][ T3508] loop0: detected capacity change from 0 to 4096
[   29.660442][ T3496] EXT4-fs (loop3): 1 truncate cleaned up
[   29.666784][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   29.670168][ T3496] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   29.706212][ T3299] udevd[3299]: failed to send result of seq 7352 to main daemon: Connection refused
[   29.721189][ T3508] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   29.755862][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   29.837927][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   29.892730][ T3530] loop1: detected capacity change from 0 to 512
[   29.915670][ T3530] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   29.947320][ T3530] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   30.019439][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   30.088662][ T3552] Driver unsupported XDP return value 0 on prog  (id 24) dev N/A, expect packet loss!
[   30.133520][ T3558] syz.4.25 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   30.206300][    C0] hrtimer: interrupt took 47382 ns
[   30.320851][ T3579] netlink: 'syz.0.31': attribute type 10 has an invalid length.
[   30.348364][ T3579] team0: Failed to send options change via netlink (err -105)
[   30.355968][ T3579] team0: Port device dummy0 added
[   30.385410][ T3579] netlink: 'syz.0.31': attribute type 10 has an invalid length.
[   30.393920][ T3579] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   30.408223][ T3579] team0: Failed to send options change via netlink (err -105)
[   30.416329][ T3579] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   30.425505][ T3579] team0: Port device dummy0 removed
[   30.432620][ T3579] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   30.458304][ T3579] syz.0.31 (3579) used greatest stack depth: 9968 bytes left
[   30.477136][ T3594] netlink: 12 bytes leftover after parsing attributes in process `syz.0.36'.
[   30.486804][ T3594] netlink: 4 bytes leftover after parsing attributes in process `syz.0.36'.
[   30.505779][ T3594] team0 (unregistering): Port device team_slave_0 removed
[   30.531413][ T3594] team0 (unregistering): Port device team_slave_1 removed
[   30.751853][ T3610] loop1: detected capacity change from 0 to 2048
[   30.776362][ T3610] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   30.865491][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   31.026770][ T3627] netlink: 12 bytes leftover after parsing attributes in process `syz.2.48'.
[   31.087479][ T3632] syzkaller0: entered allmulticast mode
[   31.093632][ T3632] syzkaller0: entered promiscuous mode
[   31.104238][ T3632] syzkaller0 (unregistering): left allmulticast mode
[   31.111277][ T3632] syzkaller0 (unregistering): left promiscuous mode
[   31.145934][ T3637] netlink: 204 bytes leftover after parsing attributes in process `syz.2.52'.
[   31.206310][ T3647] netlink: 8 bytes leftover after parsing attributes in process `syz.3.57'.
[   31.456479][ T3677] netlink: 204 bytes leftover after parsing attributes in process `syz.4.71'.
[   31.692679][ T3705] netlink: 4 bytes leftover after parsing attributes in process `syz.4.82'.
[   31.702028][ T3705] netlink: 4 bytes leftover after parsing attributes in process `syz.4.82'.
[   31.791812][ T3709] netlink: 28 bytes leftover after parsing attributes in process `syz.1.84'.
[   31.800737][ T3709] netlink: 'syz.1.84': attribute type 7 has an invalid length.
[   31.808371][ T3709] netlink: 'syz.1.84': attribute type 8 has an invalid length.
[   31.846531][ T3713] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   31.990141][   T53] nci: nci_ntf_packet: unknown ntf opcode 0x121
[   33.013819][ T3772] loop1: detected capacity change from 0 to 128
[   33.058331][ T3772] syz.1.107: attempt to access beyond end of device
[   33.058331][ T3772] loop1: rw=2049, sector=145, nr_sectors = 896 limit=128
[   33.079402][ T3772] syz.1.107: attempt to access beyond end of device
[   33.079402][ T3772] loop1: rw=524288, sector=145, nr_sectors = 224 limit=128
[   33.093983][ T3772] syz.1.107: attempt to access beyond end of device
[   33.093983][ T3772] loop1: rw=8388608, sector=145, nr_sectors = 8 limit=128
[   33.107777][ T3772] syz.1.107: attempt to access beyond end of device
[   33.107777][ T3772] loop1: rw=8388608, sector=145, nr_sectors = 8 limit=128
[   33.121558][ T3772] syz.1.107: attempt to access beyond end of device
[   33.121558][ T3772] loop1: rw=8388608, sector=145, nr_sectors = 8 limit=128
[   33.135193][ T3772] syz.1.107: attempt to access beyond end of device
[   33.135193][ T3772] loop1: rw=8388608, sector=145, nr_sectors = 8 limit=128
[   33.148783][ T3772] syz.1.107: attempt to access beyond end of device
[   33.148783][ T3772] loop1: rw=8388608, sector=145, nr_sectors = 8 limit=128
[   33.162891][ T3772] syz.1.107: attempt to access beyond end of device
[   33.162891][ T3772] loop1: rw=8388608, sector=145, nr_sectors = 8 limit=128
[   33.176521][ T3772] syz.1.107: attempt to access beyond end of device
[   33.176521][ T3772] loop1: rw=8388608, sector=145, nr_sectors = 8 limit=128
[   33.190233][ T3772] syz.1.107: attempt to access beyond end of device
[   33.190233][ T3772] loop1: rw=8388608, sector=145, nr_sectors = 8 limit=128
[   34.009464][   T29] kauditd_printk_skb: 204 callbacks suppressed
[   34.009479][   T29] audit: type=1400 audit(1765307538.954:304): avc:  denied  { unmount } for  pid=3313 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   34.070507][ T3800] Zero length message leads to an empty skb
[   34.155404][ T3809] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   34.267666][ T3812] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   34.299780][   T29] audit: type=1400 audit(1765307539.244:305): avc:  denied  { bind } for  pid=3813 comm="syz.3.125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   34.319770][   T29] audit: type=1400 audit(1765307539.274:306): avc:  denied  { listen } for  pid=3813 comm="syz.3.125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   34.340430][   T29] audit: type=1400 audit(1765307539.294:307): avc:  denied  { read } for  pid=3813 comm="syz.3.125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   34.477447][   T29] audit: type=1400 audit(1765307539.424:308): avc:  denied  { read write } for  pid=3822 comm="syz.3.128" name="rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   34.503032][   T29] audit: type=1400 audit(1765307539.424:309): avc:  denied  { open } for  pid=3822 comm="syz.3.128" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   34.547648][ T3826] loop3: detected capacity change from 0 to 4096
[   34.558717][ T3826] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.574783][   T29] audit: type=1400 audit(1765307539.524:310): avc:  denied  { write } for  pid=3825 comm="syz.3.129" name="event3" dev="devtmpfs" ino=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   34.622509][   T29] audit: type=1400 audit(1765307539.524:311): avc:  denied  { open } for  pid=3825 comm="syz.3.129" path="/dev/input/event3" dev="devtmpfs" ino=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   34.647221][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.669921][   T29] audit: type=1326 audit(1765307539.624:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3833 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   34.713106][   T29] audit: type=1326 audit(1765307539.654:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3833 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   34.751485][ T3836] ip6gre1: entered allmulticast mode
[   34.905201][ T3852] loop0: detected capacity change from 0 to 512
[   34.908570][ T3854] netlink: 'syz.2.141': attribute type 1 has an invalid length.
[   34.912121][ T3852] EXT4-fs: Ignoring removed i_version option
[   34.925362][ T3852] EXT4-fs: Ignoring removed bh option
[   34.927982][ T3854] bond1: entered promiscuous mode
[   34.936170][ T3854] 8021q: adding VLAN 0 to HW filter on device bond1
[   34.953445][ T3852] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.966918][ T3852] ext4 filesystem being mounted at /27/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   35.006059][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.015901][ T3854] 8021q: adding VLAN 0 to HW filter on device bond2
[   35.040320][ T3854] bond1: (slave bond2): making interface the new active one
[   35.047657][ T3854] bond2: entered promiscuous mode
[   35.053909][ T3854] bond1: (slave bond2): Enslaving as an active interface with an up link
[   35.138928][ T3870] __nla_validate_parse: 1 callbacks suppressed
[   35.138944][ T3870] netlink: 8 bytes leftover after parsing attributes in process `syz.2.145'.
[   35.158583][ T3872] netlink: 12 bytes leftover after parsing attributes in process `syz.0.143'.
[   35.444549][ T3886] netlink: 'syz.1.148': attribute type 1 has an invalid length.
[   35.635431][ T3888] loop2: detected capacity change from 0 to 128
[   36.230333][ T3907] netlink: 'syz.4.156': attribute type 13 has an invalid length.
[   36.287624][ T3909] netlink: 'syz.0.157': attribute type 13 has an invalid length.
[   36.364433][ T3907] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.371632][ T3907] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.395460][ T3914] loop1: detected capacity change from 0 to 1024
[   36.421804][ T3914] EXT4-fs: inline encryption not supported
[   36.427652][ T3914] EXT4-fs: Ignoring removed orlov option
[   36.433401][ T3914] EXT4-fs: Ignoring removed bh option
[   36.452199][ T3914] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   36.491989][ T3914] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a840c019, mo2=0002]
[   36.505225][ T3914] System zones: 0-1, 3-12
[   36.510624][ T3914] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   36.535289][ T3914] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[   36.547723][ T3914] EXT4-fs (loop1): This should not happen!! Data will be lost
[   36.547723][ T3914] 
[   36.557372][ T3914] EXT4-fs (loop1): Total free blocks count 0
[   36.563371][ T3914] EXT4-fs (loop1): Free/Dirty block details
[   36.569264][ T3914] EXT4-fs (loop1): free_blocks=0
[   36.574228][ T3914] EXT4-fs (loop1): dirty_blocks=0
[   36.579315][ T3914] EXT4-fs (loop1): Block reservation details
[   36.585381][ T3914] EXT4-fs (loop1): i_reserved_data_blocks=0
[   36.665959][ T3907] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   36.689032][ T3907] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   36.698766][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.194011][ T3909] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.201211][ T3909] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.272385][ T3949] loop4: detected capacity change from 0 to 164
[   37.273826][ T3909] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   37.289010][ T3909] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   37.289334][ T3950] Set syz1 is full, maxelem 6117 reached
[   37.310515][ T3949] process 'syz.4.165' launched '/dev/fd/3' with NULL argv: empty string added
[   37.429570][ T3915] syz_tun: entered allmulticast mode
[   37.442627][   T53] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.451793][ T3915] syz_tun: left allmulticast mode
[   37.480466][   T53] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.499707][   T53] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.508656][   T53] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.520445][   T53] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.529550][   T53] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.538767][   T53] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.556730][   T53] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.669240][ T3974] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   37.677915][ T3974] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   37.762399][ T3979] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.176'.
[   37.871174][ T3988] loop2: detected capacity change from 0 to 1024
[   37.881791][ T3988] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   37.929621][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.039035][ T3997] ip6gre1: entered promiscuous mode
[   38.253355][ T4006] netlink: 12 bytes leftover after parsing attributes in process `syz.3.187'.
[   38.262314][ T4006] netlink: 'syz.3.187': attribute type 12 has an invalid length.
[   38.286211][ T4008] loop2: detected capacity change from 0 to 128
[   38.294714][ T4008] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   38.307071][ T4008] ext4 filesystem being mounted at /47/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   38.331400][ T4006] netlink: 12 bytes leftover after parsing attributes in process `syz.3.187'.
[   38.331400][   T52] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   38.340372][ T4006] netlink: 'syz.3.187': attribute type 12 has an invalid length.
[   38.391535][   T52] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   38.400521][   T52] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   38.409254][   T52] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   38.432805][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   38.637445][ T4034] netlink: 8 bytes leftover after parsing attributes in process `syz.2.198'.
[   38.646307][ T4034] netlink: 8 bytes leftover after parsing attributes in process `syz.2.198'.
[   38.674750][ T4039] loop0: detected capacity change from 0 to 512
[   38.697076][ T4039] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   38.718858][ T4039] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.733133][ T4039] ext4 filesystem being mounted at /38/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   38.772503][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.847020][ T4051] serio: Serial port ttyS3
[   38.893528][ T4053] xt_recent: hitcount (16777216) is larger than allowed maximum (65535)
[   39.049932][ T4063] ip6gre1: entered allmulticast mode
[   39.080090][ T4065] batman_adv: batadv0: Removing interface: batadv_slave_0
[   39.088310][ T4065] batman_adv: batadv0: Removing interface: batadv_slave_1
[   39.189473][   T29] kauditd_printk_skb: 90 callbacks suppressed
[   39.189557][   T29] audit: type=1400 audit(1765307544.134:404): avc:  denied  { name_bind } for  pid=4066 comm="syz.4.210" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   39.590229][   T29] audit: type=1400 audit(1765307544.544:405): avc:  denied  { block_suspend } for  pid=4083 comm="syz.2.218" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   39.669395][   T29] audit: type=1400 audit(1765307544.614:406): avc:  denied  { bind } for  pid=4089 comm="syz.3.219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   39.691275][   T29] audit: type=1400 audit(1765307544.634:407): avc:  denied  { listen } for  pid=4089 comm="syz.3.219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   39.711255][   T29] audit: type=1400 audit(1765307544.644:408): avc:  denied  { accept } for  pid=4089 comm="syz.3.219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   39.730678][   T29] audit: type=1400 audit(1765307544.644:409): avc:  denied  { write } for  pid=4089 comm="syz.3.219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   39.751336][   T29] audit: type=1400 audit(1765307544.704:410): avc:  denied  { read } for  pid=4089 comm="syz.3.219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   39.838761][   T29] audit: type=1326 audit(1765307544.784:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4104 comm="syz.2.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503975f749 code=0x7ffc0000
[   39.887837][   T29] audit: type=1326 audit(1765307544.784:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4104 comm="syz.2.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f503975f749 code=0x7ffc0000
[   39.911180][   T29] audit: type=1326 audit(1765307544.814:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4104 comm="syz.2.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f503975f749 code=0x7ffc0000
[   40.045815][ T4120] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   40.053174][ T4122] serio: Serial port ttyS3
[   40.185250][ T4127] infiniband syz1: set active
[   40.189997][ T4127] infiniband syz1: added veth0_to_bond
[   40.213969][ T4127] RDS/IB: syz1: added
[   40.218217][ T4127] smc: adding ib device syz1 with port count 1
[   40.224607][ T4127] smc:    ib device syz1 port 1 has no pnetid
[   40.389114][ T4135] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[   40.523590][ T4143] loop3: detected capacity change from 0 to 164
[   40.532482][ T4143] iso9660: Corrupted directory entry in block 2 of inode 1920
[   40.597261][ T4149] loop1: detected capacity change from 0 to 164
[   40.605507][ T4149] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   40.619204][ T4149] netlink: 4 bytes leftover after parsing attributes in process `syz.1.245'.
[   40.669820][ T4149] bridge_slave_1: left allmulticast mode
[   40.675675][ T4149] bridge_slave_1: left promiscuous mode
[   40.682103][ T4149] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.696762][ T4152] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   40.714587][ T4149] bridge_slave_0: left allmulticast mode
[   40.720775][ T4149] bridge_slave_0: left promiscuous mode
[   40.726539][ T4149] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.806823][ T4152] Symlink component flag not implemented
[   40.812559][ T4152] Symlink component flag not implemented
[   40.839496][ T4152] Symlink component flag not implemented (7)
[   40.845781][ T4152] Symlink component flag not implemented (116)
[   40.887795][ T4162] netlink: 'syz.3.261': attribute type 13 has an invalid length.
[   40.983417][ T4162] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.990668][ T4162] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.076254][ T4162] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   41.090627][ T4162] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   41.119990][ T4173] xt_CT: You must specify a L4 protocol and not use inversions on it
[   41.215603][ T4180] netlink: 8 bytes leftover after parsing attributes in process `syz.2.257'.
[   41.249933][   T67] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[   41.258866][   T67] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   41.273454][ T4180] netlink: 36 bytes leftover after parsing attributes in process `syz.2.257'.
[   41.309812][   T67] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[   41.318729][   T67] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   41.339601][ T4184] serio: Serial port ttyS3
[   41.346041][   T67] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[   41.355002][   T67] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   41.364168][   T67] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[   41.373084][   T67] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   41.414987][ T4190] 
@0Ù: renamed from bond_slave_1 (while UP)
[   42.228780][ T4199] loop2: detected capacity change from 0 to 512
[   42.250022][ T4199] EXT4-fs: Ignoring removed i_version option
[   42.256308][ T4199] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   42.270642][ T4199] EXT4-fs (loop2): 1 truncate cleaned up
[   42.276756][ T4199] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.344847][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.554703][ T4196] netlink: 'syz.0.264': attribute type 2 has an invalid length.
[   42.566028][ T4219] netlink: 'syz.2.272': attribute type 13 has an invalid length.
[   42.590772][ T4210] syzkaller0: entered promiscuous mode
[   42.596265][ T4210] syzkaller0: entered allmulticast mode
[   42.671430][ T4219] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.678750][ T4219] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.741712][ T4219] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   42.763305][ T4219] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   42.791840][ T4222] netlink: 20 bytes leftover after parsing attributes in process `syz.3.274'.
[   43.001129][  T585] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   43.010186][   T53] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   43.019125][   T53] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   43.060975][   T53] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   43.082381][ T4226] netlink: 96 bytes leftover after parsing attributes in process `syz.1.276'.
[   43.242702][ T4239] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[   43.318888][ T4248] sch_fq: defrate 0 ignored.
[   43.515703][ T4269] loop0: detected capacity change from 0 to 4096
[   43.529363][ T4265] loop4: detected capacity change from 0 to 8192
[   43.529922][ T4269] EXT4-fs: Ignoring removed nomblk_io_submit option
[   43.550781][ T4269] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.559945][ T4265]  loop4: p1 p2 p3 p4
[   43.574008][ T4265] loop4: p3 start 331777 is beyond EOD, truncated
[   43.580486][ T4265] loop4: p4 size 262144 extends beyond EOD, truncated
[   43.596286][ T4269] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   43.628204][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.753286][ T4287] netlink: 28 bytes leftover after parsing attributes in process `syz.4.303'.
[   43.762343][ T4287] netlink: 196 bytes leftover after parsing attributes in process `syz.4.303'.
[   43.772339][ T4287] netlink: 28 bytes leftover after parsing attributes in process `syz.4.303'.
[   43.781497][ T4287] netlink: 196 bytes leftover after parsing attributes in process `syz.4.303'.
[   43.855275][ T4290] syzkaller0: entered allmulticast mode
[   43.859265][ T4293] loop1: detected capacity change from 0 to 512
[   43.875983][ T4293] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.899838][ T4293] ext4 filesystem being mounted at /58/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   43.911282][ T4290] syzkaller0 (unregistering): left allmulticast mode
[   43.921444][ T4293] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.305: corrupted inode contents
[   43.933990][ T4293] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #2: comm syz.1.305: mark_inode_dirty error
[   43.946795][ T4293] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.305: corrupted inode contents
[   43.963157][ T4293] sctp: [Deprecated]: syz.1.305 (pid 4293) Use of struct sctp_assoc_value in delayed_ack socket option.
[   43.963157][ T4293] Use struct sctp_sack_info instead
[   43.985404][ T4293] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.305: corrupted inode contents
[   43.997587][ T4293] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #2: comm syz.1.305: mark_inode_dirty error
[   44.010430][ T4293] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.305: corrupted inode contents
[   44.022358][ T4293] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.305: mark_inode_dirty error
[   44.034098][ T4293] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.305: corrupted inode contents
[   44.047011][ T4293] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #2: comm syz.1.305: mark_inode_dirty error
[   44.060073][ T4301] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.305: corrupted inode contents
[   44.088509][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.105272][ T4306] loop0: detected capacity change from 0 to 164
[   44.112804][ T4306] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   44.131039][ T4308] netlink: 'syz.1.309': attribute type 13 has an invalid length.
[   44.139271][ T4306] netlink: 4 bytes leftover after parsing attributes in process `syz.0.311'.
[   44.149120][ T4306] bridge_slave_1: left allmulticast mode
[   44.155489][ T4306] bridge_slave_1: left promiscuous mode
[   44.161383][ T4306] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.169468][ T4306] bridge_slave_0: left allmulticast mode
[   44.175190][ T4306] bridge_slave_0: left promiscuous mode
[   44.180909][ T4306] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.190485][ T4314] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   44.199317][ T4314] Symlink component flag not implemented
[   44.205068][ T4314] Symlink component flag not implemented
[   44.211145][ T4314] Symlink component flag not implemented (7)
[   44.217120][ T4314] Symlink component flag not implemented (116)
[   44.473118][ T4308] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   44.493445][ T4308] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   44.656768][ T2273] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   44.666035][ T2273] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   44.675150][ T2273] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   44.686923][ T3509] syz1: Port: 1 Link DOWN
[   44.710977][ T2273] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   44.825438][   T29] kauditd_printk_skb: 65 callbacks suppressed
[   44.825539][   T29] audit: type=1400 audit(1765307549.774:479): avc:  denied  { listen } for  pid=4344 comm="syz.3.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   44.957247][ T4351] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   45.065113][ T4355] netlink: 'syz.4.331': attribute type 30 has an invalid length.
[   45.081015][ T4353] cgroup: fork rejected by pids controller in /syz2
[   45.433383][ T6379] infiniband syz!: set down
[   45.438031][ T6379] infiniband syz!: added team_slave_0
[   45.474179][ T6379] RDS/IB: syz!: added
[   45.478223][ T6379] smc: adding ib device syz! with port count 1
[   45.486621][ T6379] smc:    ib device syz! port 1 has no pnetid
[   45.780163][ T8777] xt_connbytes: Forcing CT accounting to be enabled
[   45.804187][ T8777] Cannot find set identified by id 0 to match
[   45.861755][   T29] audit: type=1326 audit(1765307550.814:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8792 comm="syz.3.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   45.890043][   T29] audit: type=1326 audit(1765307550.814:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8792 comm="syz.3.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   45.913367][   T29] audit: type=1326 audit(1765307550.834:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8792 comm="syz.3.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   45.936674][   T29] audit: type=1326 audit(1765307550.834:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8792 comm="syz.3.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   45.959933][   T29] audit: type=1326 audit(1765307550.834:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8792 comm="syz.3.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   45.983189][   T29] audit: type=1326 audit(1765307550.834:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8792 comm="syz.3.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   45.983537][ T8796] syz.2.342 uses obsolete (PF_INET,SOCK_PACKET)
[   46.006549][   T29] audit: type=1326 audit(1765307550.834:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8792 comm="syz.3.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   46.035857][   T29] audit: type=1326 audit(1765307550.834:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8792 comm="syz.3.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   46.059285][   T29] audit: type=1326 audit(1765307550.834:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8792 comm="syz.3.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   46.231797][ T8809] netlink: 'syz.2.350': attribute type 7 has an invalid length.
[   46.239475][ T8809] netlink: 8 bytes leftover after parsing attributes in process `syz.2.350'.
[   46.310604][ T8815] loop4: detected capacity change from 0 to 256
[   46.370989][ T8819] loop2: detected capacity change from 0 to 128
[   46.388481][ T8819] bio_check_eod: 16473 callbacks suppressed
[   46.388496][ T8819] syz.2.355: attempt to access beyond end of device
[   46.388496][ T8819] loop2: rw=2049, sector=138, nr_sectors = 112 limit=128
[   46.441452][ T8819] syz.2.355: attempt to access beyond end of device
[   46.441452][ T8819] loop2: rw=8390657, sector=142, nr_sectors = 2 limit=128
[   46.455098][ T8819] Buffer I/O error on dev loop2, logical block 71, lost async page write
[   46.489867][ T8819] syz.2.355: attempt to access beyond end of device
[   46.489867][ T8819] loop2: rw=8390657, sector=144, nr_sectors = 2 limit=128
[   46.503529][ T8819] Buffer I/O error on dev loop2, logical block 72, lost async page write
[   46.522875][ T8824] loop1: detected capacity change from 0 to 512
[   46.532403][ T8824] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.564081][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.583780][ T8829] netlink: 'syz.1.359': attribute type 27 has an invalid length.
[   46.848222][ T8889] loop2: detected capacity change from 0 to 128
[   46.860194][ T8889] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   46.873877][ T8889] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.959847][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   47.225153][ T8930] mmap: syz.3.372 (8930) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   48.105254][ T8960] netlink: 12 bytes leftover after parsing attributes in process `syz.3.383'.
[   48.130552][ T8962] loop3: detected capacity change from 0 to 128
[   48.142507][ T8962] syz.3.384: attempt to access beyond end of device
[   48.142507][ T8962] loop3: rw=2049, sector=138, nr_sectors = 112 limit=128
[   48.157736][ T8962] syz.3.384: attempt to access beyond end of device
[   48.157736][ T8962] loop3: rw=8390657, sector=142, nr_sectors = 2 limit=128
[   48.171419][ T8962] Buffer I/O error on dev loop3, logical block 71, lost async page write
[   48.179948][ T8962] syz.3.384: attempt to access beyond end of device
[   48.179948][ T8962] loop3: rw=8390657, sector=144, nr_sectors = 2 limit=128
[   48.193504][ T8962] Buffer I/O error on dev loop3, logical block 72, lost async page write
[   48.320660][ T8966] vhci_hcd vhci_hcd.3: invalid port number 9
[   48.329769][ T8968] netlink: 'syz.3.387': attribute type 1 has an invalid length.
[   48.343274][ T8968] 8021q: adding VLAN 0 to HW filter on device bond1
[   48.361910][ T8968] bond1: (slave geneve2): making interface the new active one
[   48.371094][ T8968] bond1: (slave geneve2): Enslaving as an active interface with an up link
[   48.379812][ T8854] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.397443][ T8854] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.411527][ T8854] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.424008][ T8854] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.443581][ T3509] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.451592][ T3509] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   48.580790][ T8990] xt_hashlimit: max too large, truncated to 1048576
[   48.801154][ T9008] netlink: 'syz.3.404': attribute type 12 has an invalid length.
[   49.148430][ T3931] IPVS: starting estimator thread 0...
[   49.155372][ T9002] IPVS: wlc: FWM 3 0x00000003 - no destination available
[   49.249751][ T9025] IPVS: using max 2448 ests per chain, 122400 per kthread
[   49.344250][ T9038] netlink: 8 bytes leftover after parsing attributes in process `syz.4.416'.
[   49.354939][ T8871] IPVS: stop unused estimator thread 0...
[   49.494667][ T9050] loop0: detected capacity change from 0 to 512
[   49.511603][ T9050] EXT4-fs (loop0): too many log groups per flexible block group
[   49.525867][ T9050] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   49.533076][ T9050] EXT4-fs (loop0): mount failed
[   49.544397][ T9056] loop4: detected capacity change from 0 to 512
[   49.570288][ T9056] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   49.609785][ T9056] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.421: corrupted in-inode xattr: invalid ea_ino
[   49.625521][ T9063] netlink: 4 bytes leftover after parsing attributes in process `syz.3.426'.
[   49.639868][ T9056] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.421: couldn't read orphan inode 15 (err -117)
[   49.652517][ T9056] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.684082][ T9065] netlink: 96 bytes leftover after parsing attributes in process `syz.0.427'.
[   49.704598][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.748684][ T9073] netlink: 'syz.2.432': attribute type 12 has an invalid length.
[   49.805932][ T9079] syzkaller0: entered promiscuous mode
[   49.811491][ T9079] syzkaller0: entered allmulticast mode
[   49.838858][   T29] kauditd_printk_skb: 124 callbacks suppressed
[   49.838873][   T29] audit: type=1400 audit(1765307554.784:613): avc:  denied  { relabelfrom } for  pid=9078 comm="syz.0.434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   49.865085][   T29] audit: type=1400 audit(1765307554.784:614): avc:  denied  { relabelto } for  pid=9078 comm="syz.0.434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   49.885977][ T9081] netlink: 'syz.3.435': attribute type 27 has an invalid length.
[   49.899913][ T9087] loop1: detected capacity change from 0 to 1024
[   49.923415][ T9081] ip6gre1: left allmulticast mode
[   49.936184][ T9087] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.964739][ T8871] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   49.989240][ T9087] netlink: 14 bytes leftover after parsing attributes in process `syz.1.437'.
[   49.995637][ T8871] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   50.007180][ T8871] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   50.016157][ T8871] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   50.086462][ T9106] vlan2: entered allmulticast mode
[   50.091781][ T9106] bridge_slave_0: entered allmulticast mode
[   50.132338][ T9108] ip6gre2: entered allmulticast mode
[   50.140157][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.198598][   T29] audit: type=1400 audit(1765307555.144:615): avc:  denied  { bind } for  pid=9112 comm="syz.0.449" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   50.274189][   T29] audit: type=1326 audit(1765307555.214:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9120 comm="syz.1.452" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f62cbf2f749 code=0x0
[   50.309798][   T29] audit: type=1400 audit(1765307555.254:617): avc:  denied  { read } for  pid=9125 comm="syz.0.454" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   50.331570][ T9128] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   50.440311][   T29] audit: type=1326 audit(1765307555.384:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9130 comm="syz.0.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59510f749 code=0x7ffc0000
[   50.463659][   T29] audit: type=1326 audit(1765307555.384:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9130 comm="syz.0.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59510f749 code=0x7ffc0000
[   50.487026][   T29] audit: type=1326 audit(1765307555.384:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9130 comm="syz.0.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59510f749 code=0x7ffc0000
[   50.592285][   T29] audit: type=1326 audit(1765307555.434:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9130 comm="syz.0.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59510f749 code=0x7ffc0000
[   50.592389][ T9143] netlink: 8 bytes leftover after parsing attributes in process `syz.3.460'.
[   50.615608][   T29] audit: type=1326 audit(1765307555.434:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9130 comm="syz.0.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd595142005 code=0x7ffc0000
[   50.647910][ T9143] netlink: 'syz.3.460': attribute type 30 has an invalid length.
[   50.684951][   T12] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   50.693968][   T12] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   50.708697][   T12] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   50.732145][   T12] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   50.890883][ T9162] ref_ctr_offset mismatch. inode: 0x206 offset: 0x7 ref_ctr_offset(old): 0x2 ref_ctr_offset(new): 0x0
[   51.104220][ T9175] loop2: detected capacity change from 0 to 1024
[   51.111455][ T9175] EXT4-fs: Ignoring removed orlov option
[   51.136514][ T9175] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.233758][ T9197] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9197 comm=syz.3.483
[   51.277914][ T9205] netlink: 28 bytes leftover after parsing attributes in process `syz.4.486'.
[   51.286994][ T9205] netlink: 28 bytes leftover after parsing attributes in process `syz.4.486'.
[   51.299917][ T9206] netlink: 8 bytes leftover after parsing attributes in process `syz.3.485'.
[   51.308739][ T9206] netlink: 12 bytes leftover after parsing attributes in process `syz.3.485'.
[   51.348673][ T9213] netlink: 4 bytes leftover after parsing attributes in process `syz.4.488'.
[   51.430414][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.441360][ T9217] veth1_to_bond: entered allmulticast mode
[   51.447650][ T9217] veth1_to_bond: left allmulticast mode
[   51.453881][ T9219] loop3: detected capacity change from 0 to 512
[   51.508803][ T9230] ip6gre1: entered promiscuous mode
[   51.514384][ T9219] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   51.544234][ T9219] EXT4-fs (loop3): orphan cleanup on readonly fs
[   51.573602][ T9219] EXT4-fs warning (device loop3): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   51.609729][ T9219] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   51.662482][ T9219] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.492: bg 0: block 40: padding at end of block bitmap is not set
[   51.706476][ T9219] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6689: Corrupt filesystem
[   51.725829][ T9219] EXT4-fs (loop3): 1 truncate cleaned up
[   51.732941][ T9219] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   51.746036][ T9219] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.339557][ T9299] loop3: detected capacity change from 0 to 512
[   52.403683][ T9311] netlink: 8 bytes leftover after parsing attributes in process `syz.1.528'.
[   52.417862][ T9299] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.469927][ T9299] ext4 filesystem being mounted at /110/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.515282][ T3935] IPVS: starting estimator thread 0...
[   52.521507][ T9299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.531473][ T9295] IPVS: wlc: FWM 3 0x00000003 - no destination available
[   52.557128][ T9318] netlink: 'syz.1.531': attribute type 30 has an invalid length.
[   52.609781][ T9319] IPVS: using max 2496 ests per chain, 124800 per kthread
[   52.650833][ T9317] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   52.669078][ T9317] vhci_hcd vhci_hcd.2: invalid port number 96
[   52.675267][ T9317] vhci_hcd vhci_hcd.2: default hub control req: 0311 v0005 i0060 l7
[   52.686015][ T9325] netlink: 96 bytes leftover after parsing attributes in process `syz.3.533'.
[   52.826799][ T9341] loop3: detected capacity change from 0 to 256
[   52.833905][ T9341] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   52.847269][ T9341] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   52.868408][ T9340] netlink: 96 bytes leftover after parsing attributes in process `syz.2.539'.
[   52.877822][ T9340] netlink: 96 bytes leftover after parsing attributes in process `syz.2.539'.
[   53.140396][ T3925] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   53.140475][ T3925] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   53.140495][ T3925] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   53.140528][ T3925] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   53.140547][ T3925] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   53.140567][ T3925] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   53.140611][ T3925] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   53.140634][ T3925] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   53.140658][ T3925] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   53.141161][ T3925] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[   53.408680][ T9379] netlink: 8 bytes leftover after parsing attributes in process `syz.0.558'.
[   53.420712][ T9381] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   53.529076][ T9396] loop0: detected capacity change from 0 to 256
[   53.535879][ T9396] vfat: Bad value for 'shortname'
[   53.737885][ T9410] ip6gre1: entered allmulticast mode
[   53.757713][ T9412] openvswitch: netlink: Missing key (keys=40, expected=2000)
[   53.827353][ T9420] loop1: detected capacity change from 0 to 1024
[   53.837873][ T9420] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.842883][ T9420] EXT4-fs error (device loop1): ext4_read_inline_dir:1486: inode #12: block 7: comm syz.1.577: path /115/file1/file0: bad entry in directory: inode out of bounds - offset=24, inode=150994957, rec_len=16, size=80 fake=0
[   53.924002][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.017184][ T9447] batman_adv: batadv0: Removing interface: batadv_slave_0
[   54.027042][ T9447] batman_adv: batadv0: Removing interface: batadv_slave_1
[   54.071131][ T9455] loop1: detected capacity change from 0 to 128
[   54.171586][ T9455] syz.1.590: attempt to access beyond end of device
[   54.171586][ T9455] loop1: rw=2049, sector=145, nr_sectors = 16 limit=128
[   54.188691][ T9455] syz.1.590: attempt to access beyond end of device
[   54.188691][ T9455] loop1: rw=2049, sector=169, nr_sectors = 8 limit=128
[   54.212459][ T9455] syz.1.590: attempt to access beyond end of device
[   54.212459][ T9455] loop1: rw=2049, sector=185, nr_sectors = 8 limit=128
[   54.226518][ T9455] syz.1.590: attempt to access beyond end of device
[   54.226518][ T9455] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[   54.241629][ T9455] syz.1.590: attempt to access beyond end of device
[   54.241629][ T9455] loop1: rw=2049, sector=217, nr_sectors = 8 limit=128
[   54.255670][ T9455] syz.1.590: attempt to access beyond end of device
[   54.255670][ T9455] loop1: rw=2049, sector=233, nr_sectors = 8 limit=128
[   54.269994][ T9455] syz.1.590: attempt to access beyond end of device
[   54.269994][ T9455] loop1: rw=2049, sector=249, nr_sectors = 8 limit=128
[   54.283567][ T9455] syz.1.590: attempt to access beyond end of device
[   54.283567][ T9455] loop1: rw=2049, sector=265, nr_sectors = 8 limit=128
[   54.297184][ T9455] syz.1.590: attempt to access beyond end of device
[   54.297184][ T9455] loop1: rw=2049, sector=281, nr_sectors = 8 limit=128
[   54.316269][ T9455] syz.1.590: attempt to access beyond end of device
[   54.316269][ T9455] loop1: rw=2049, sector=297, nr_sectors = 8 limit=128
[   54.523982][ T9498] loop0: detected capacity change from 0 to 256
[   54.531164][ T9498] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   54.546052][ T9498] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   54.571139][ T9502] macsec0: entered promiscuous mode
[   54.592699][ T9506] loop0: detected capacity change from 0 to 128
[   54.615041][ T9510] netlink: 'syz.3.612': attribute type 21 has an invalid length.
[   54.622954][ T9510] netlink: 'syz.3.612': attribute type 1 has an invalid length.
[   54.708078][ T9516] loop4: detected capacity change from 0 to 512
[   54.720015][ T9520] ------------[ cut here ]------------
[   54.725514][ T9520] verifier bug: REG INVARIANTS VIOLATION (false_reg1): range bounds violation u64=[0x2, 0x0] s64=[0x2, 0x0] u32=[0x2, 0x0] s32=[0x2, 0x0] var_off=(0x0, 0x0)
[   54.741356][ T9520] WARNING: kernel/bpf/verifier.c:2748 at 0x0, CPU#1: syz.2.617/9520
[   54.749775][ T9520] Modules linked in:
[   54.753871][ T9520] CPU: 1 UID: 0 PID: 9520 Comm: syz.2.617 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   54.763574][ T9520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   54.773828][ T9520] RIP: 0010:reg_bounds_sanity_check+0x27d/0x660
[   54.780141][ T9520] Code: 24 78 4c 8b 44 24 70 4c 8b 4c 24 60 41 ff 74 24 20 41 55 53 ff 74 24 68 ff 74 24 78 ff b4 24 90 00 00 00 ff b4 24 b0 00 00 00 <67> 48 0f b9 3a 48 83 c4 38 4c 8b ac 24 98 00 00 00 49 8d 85 80 08
[   54.799866][ T9520] RSP: 0018:ffffc900025fb3a0 EFLAGS: 00010246
[   54.805944][ T9520] RAX: ffff88811bc94c90 RBX: 0000000000000000 RCX: 0000000000000002
[   54.813976][ T9520] RDX: ffffffff865fb489 RSI: ffffffff865cff55 RDI: ffffffff86db69d0
[   54.822005][ T9520] RBP: ffff888119a51b50 R08: 0000000000000000 R09: 0000000000000002
[   54.829980][ T9520] R10: 00000000000000d0 R11: 0000000000000002 R12: ffff888119a51b10
[   54.838080][ T9520] R13: 0000000000000000 R14: ffff888119a51b5c R15: ffff888119a51b48
[   54.846105][ T9520] FS:  00007f50381c76c0(0000) GS:ffff8882aeec3000(0000) knlGS:0000000000000000
[   54.855086][ T9520] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   54.861832][ T9520] CR2: 0000200000001000 CR3: 000000011a088000 CR4: 00000000003506f0
[   54.863828][ T9516] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.870054][ T9520] DR0: fffffffffffffffe DR1: 0000000000000000 DR2: 0000000000000000
[   54.890396][ T9520] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[   54.897305][   T29] kauditd_printk_skb: 257 callbacks suppressed
[   54.897319][   T29] audit: type=1400 audit(1765307559.844:879): avc:  denied  { append } for  pid=9515 comm="syz.4.616" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   54.898359][ T9520] Call Trace:
[   54.898375][ T9520]  <TASK>
[   54.898391][ T9520]  reg_set_min_max+0x21c/0x260
[   54.939092][ T9520]  check_cond_jmp_op+0x1367/0x1a80
[   54.944349][ T9520]  do_check+0x3347/0x81f0
[   54.948681][ T9520]  ? __account_obj_stock+0x211/0x350
[   54.954154][ T9520]  ? __pfx_verbose+0x10/0x10
[   54.958762][ T9520]  ? __pfx_disasm_kfunc_name+0x10/0x10
[   54.964440][ T9520]  do_check_common+0xccf/0x1300
[   54.969484][ T9520]  bpf_check+0x2f98/0xc860
[   54.974154][ T9520]  ? __alloc_frozen_pages_noprof+0x18f/0x360
[   54.980245][ T9520]  ? alloc_pages_bulk_noprof+0x4b9/0x540
[   54.985914][ T9520]  ? __vmap_pages_range_noflush+0xbc4/0xcf0
[   54.991894][ T9520]  ? _find_next_zero_bit+0x64/0xa0
[   54.997076][ T9520]  ? pcpu_block_update+0x232/0x3b0
[   55.002204][ T9520]  ? pcpu_block_refresh_hint+0x157/0x170
[   55.007929][ T9520]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[   55.014016][ T9520]  ? css_rstat_updated+0xb7/0x240
[   55.019075][ T9520]  ? mod_memcg_state+0x182/0x270
[   55.024087][ T9520]  ? __rcu_read_unlock+0x4f/0x70
[   55.029078][ T9520]  ? pcpu_memcg_post_alloc_hook+0xec/0x170
[   55.034905][ T9520]  ? bpf_prog_alloc+0x5b/0x150
[   55.039768][ T9520]  ? pcpu_alloc_noprof+0xd0d/0x1240
[   55.045021][ T9520]  ? should_fail_ex+0x30/0x280
[   55.049829][ T9520]  ? __kmalloc_noprof+0x2b4/0x5a0
[   55.054922][ T9520]  ? security_bpf_prog_load+0x60/0x140
[   55.060521][ T9520]  ? selinux_bpf_prog_load+0xad/0xd0
[   55.065924][ T9520]  ? security_bpf_prog_load+0x9e/0x140
[   55.071406][ T9520]  bpf_prog_load+0xf6e/0x1140
[   55.076087][ T9520]  ? security_bpf+0x2b/0x90
[   55.080618][ T9520]  __sys_bpf+0x469/0x7c0
[   55.084863][ T9520]  __x64_sys_bpf+0x41/0x50
[   55.089259][ T9520]  x64_sys_call+0x28e1/0x3000
[   55.093941][ T9520]  do_syscall_64+0xd8/0x2a0
[   55.098506][ T9520]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.104424][ T9520] RIP: 0033:0x7f503975f749
[   55.108869][ T9520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.128531][ T9520] RSP: 002b:00007f50381c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   55.137033][ T9520] RAX: ffffffffffffffda RBX: 00007f50399b5fa0 RCX: 00007f503975f749
[   55.145051][ T9520] RDX: 0000000000000048 RSI: 0000200000000100 RDI: 0000000000000005
[   55.153069][ T9520] RBP: 00007f50397e3f91 R08: 0000000000000000 R09: 0000000000000000
[   55.161178][ T9520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   55.169191][ T9520] R13: 00007f50399b6038 R14: 00007f50399b5fa0 R15: 00007ffe7a074ea8
[   55.177188][ T9520]  </TASK>
[   55.180277][ T9520] ---[ end trace 0000000000000000 ]---
[   55.187141][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.235102][   T29] audit: type=1400 audit(1765307560.174:880): avc:  denied  { kexec_image_load } for  pid=9538 comm="syz.1.624" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[   55.294703][   T29] audit: type=1326 audit(1765307560.244:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9551 comm="syz.4.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b7a0ff749 code=0x7ffc0000
[   55.318085][ T9555] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   55.326735][   T29] audit: type=1326 audit(1765307560.244:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9551 comm="syz.4.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b7a0ff749 code=0x7ffc0000
[   55.350324][   T29] audit: type=1326 audit(1765307560.274:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9551 comm="syz.4.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b7a0ff749 code=0x7ffc0000
[   55.373600][   T29] audit: type=1326 audit(1765307560.274:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9551 comm="syz.4.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b7a0ff749 code=0x7ffc0000
[   55.396822][   T29] audit: type=1326 audit(1765307560.274:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9551 comm="syz.4.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b7a0ff749 code=0x7ffc0000
[   55.464711][   T29] audit: type=1326 audit(1765307560.374:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9551 comm="syz.4.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b7a0ff749 code=0x7ffc0000
[   55.488004][   T29] audit: type=1326 audit(1765307560.374:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9551 comm="syz.4.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b7a0ff749 code=0x7ffc0000
[   55.511379][   T29] audit: type=1326 audit(1765307560.414:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9551 comm="syz.4.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5b7a0ff749 code=0x7ffc0000
[   55.868136][ T9593] loop4: detected capacity change from 0 to 512
[   55.885016][ T9593] EXT4-fs (loop4): 1 truncate cleaned up
[   55.897622][ T9593] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.974906][ T9594] IPv6: sit1: Disabled Multicast RS
[   56.004370][ T9593] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.648: bg 0: block 465: padding at end of block bitmap is not set
[   56.021619][ T9593] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 544 with error 117
[   56.034145][ T9593] EXT4-fs (loop4): This should not happen!! Data will be lost
[   56.034145][ T9593] 
[   56.123173][ T9618] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.124098][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.236096][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.327750][ T9637] netlink: 'syz.3.663': attribute type 30 has an invalid length.
[   56.370226][ T9639] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   56.380144][ T9639] EXT4-fs (loop4): orphan cleanup on readonly fs
[   56.388531][ T9639] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   56.428730][ T9639] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   56.440302][ T9645] __nla_validate_parse: 9 callbacks suppressed
[   56.440316][ T9645] netlink: 4 bytes leftover after parsing attributes in process `syz.3.666'.
[   56.487875][ T9639] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.664: bg 0: block 40: padding at end of block bitmap is not set
[   56.522944][ T9639] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6689: Corrupt filesystem
[   56.548371][ T9639] EXT4-fs (loop4): 1 truncate cleaned up
[   56.563104][ T9639] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   56.613338][ T9658] netlink: 12 bytes leftover after parsing attributes in process `syz.1.672'.
[   56.614397][ T9664] set_capacity_and_notify: 2 callbacks suppressed
[   56.614410][ T9664] loop3: detected capacity change from 0 to 128
[   56.637232][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.115008][ T9696] netlink: 40 bytes leftover after parsing attributes in process `syz.1.686'.
[   57.124048][ T9696] netlink: 32 bytes leftover after parsing attributes in process `syz.1.686'.
[   57.189951][ T9701] loop3: detected capacity change from 0 to 512
[   57.196719][ T9701] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   57.224929][ T9703] loop2: detected capacity change from 0 to 512
[   57.233094][ T9701] EXT4-fs error (device loop3): ext4_iget_extra_inode:5073: inode #15: comm syz.3.688: corrupted in-inode xattr: invalid ea_ino
[   57.257896][ T9701] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.688: couldn't read orphan inode 15 (err -117)
[   57.276513][ T9701] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.303463][ T9703] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   57.313304][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.355132][ T9703] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.412755][ T9703] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #2: block 18: comm syz.2.690: lblock 23 mapped to illegal pblock 18 (length 1)
[   57.438610][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.595603][ T9735] loop2: detected capacity change from 0 to 512
[   57.640904][ T9735] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.663808][ T9735] ext4 filesystem being mounted at /145/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   57.687271][ T9735] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.711: corrupted inode contents
[   57.712484][ T9735] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #2: comm syz.2.711: mark_inode_dirty error
[   57.741366][ T9735] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.711: corrupted inode contents
[   57.782203][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.850541][ T9744] netlink: 20 bytes leftover after parsing attributes in process `syz.0.704'.
[   57.878487][ T9746] loop0: detected capacity change from 0 to 128
[   57.914855][ T9749] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9749 comm=syz.2.706
[   58.571661][ T9773] loop3: detected capacity change from 0 to 1024
[   58.578581][ T9773] EXT4-fs: Ignoring removed nobh option
[   58.590016][ T9763] loop0: detected capacity change from 0 to 32768
[   58.601607][ T9773] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.638349][ T9763]  loop0: p1 p2 p3 < > p4 < p5 p6 >
[   58.643811][ T9763] loop0: p1 start 460800 is beyond EOD, truncated
[   58.650307][ T9763] loop0: p2 size 83886080 extends beyond EOD, truncated
[   58.660067][ T9763] loop0: p5 start 460800 is beyond EOD, truncated
[   58.666583][ T9763] loop0: p6 size 83886080 extends beyond EOD, truncated
[   58.843737][ T9773] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.716: Allocating blocks 497-513 which overlap fs metadata
[   58.860652][ T9773] EXT4-fs (loop3): pa ffff8881075f10e0: logic 256, phys. 385, len 8
[   58.868812][ T9773] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[   58.890563][ T9795] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   58.932884][ T9799] netlink: 40 bytes leftover after parsing attributes in process `syz.0.724'.
[   58.941889][ T9799] netlink: 32 bytes leftover after parsing attributes in process `syz.0.724'.
[   58.998867][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.013209][ T9803] loop2: detected capacity change from 0 to 1024
[   59.032852][ T9803] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.045343][ T9808] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=9808 comm=syz.1.726
[   59.064856][ T9803] netlink: 14 bytes leftover after parsing attributes in process `syz.2.729'.
[   59.471285][ T9824] netlink: 28 bytes leftover after parsing attributes in process `syz.4.736'.
[   59.480243][ T9824] netlink: 28 bytes leftover after parsing attributes in process `syz.4.736'.
[   59.555282][ T9839] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   59.590971][ T9839] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   59.671464][ T9839] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   59.701888][ T9839] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   59.754754][ T8862] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   59.766112][ T8862] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   59.777034][ T8862] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   59.788107][ T8862] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   59.922752][   T29] kauditd_printk_skb: 97 callbacks suppressed
[   59.922768][   T29] audit: type=1400 audit(1765307564.874:985): avc:  denied  { create } for  pid=9861 comm="syz.1.760" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   59.949267][   T29] audit: type=1400 audit(1765307564.874:986): avc:  denied  { connect } for  pid=9861 comm="syz.1.760" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   59.968827][   T29] audit: type=1400 audit(1765307564.874:987): avc:  denied  { write } for  pid=9861 comm="syz.1.760" path="socket:[11583]" dev="sockfs" ino=11583 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   60.149808][   T29] audit: type=1400 audit(1765307565.094:988): avc:  denied  { create } for  pid=9871 comm="syz.1.753" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   60.169763][   T29] audit: type=1400 audit(1765307565.124:989): avc:  denied  { setopt } for  pid=9871 comm="syz.1.753" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   60.189490][   T29] audit: type=1400 audit(1765307565.124:990): avc:  denied  { write } for  pid=9871 comm="syz.1.753" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   60.224208][   T29] audit: type=1400 audit(1765307565.174:991): avc:  denied  { read } for  pid=9871 comm="syz.1.753" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   60.337010][   T29] audit: type=1400 audit(1765307565.284:992): avc:  denied  { create } for  pid=9882 comm="syz.3.757" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   60.356415][   T29] audit: type=1400 audit(1765307565.284:993): avc:  denied  { connect } for  pid=9882 comm="syz.3.757" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   60.375834][   T29] audit: type=1400 audit(1765307565.284:994): avc:  denied  { bind } for  pid=9882 comm="syz.3.757" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   60.698365][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.728997][ T9918] tipc: Started in network mode
[   60.734081][ T9918] tipc: Node identity e62f47552d3f, cluster identity 4711
[   60.741403][ T9918] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   60.769456][ T9918] tipc: Disabling bearer <eth:syzkaller0>
[   61.106801][ T9943] smc: net device bond0 applied user defined pnetid SYZ0
[   61.114396][ T9943] smc: net device bond0 erased user defined pnetid SYZ0
[   61.152427][ T9947] loop4: detected capacity change from 0 to 1024
[   61.172437][ T9947] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   61.248779][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.258172][ T9955] loop2: detected capacity change from 0 to 512
[   61.265969][ T9955] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   61.277252][ T9955] EXT4-fs error (device loop2): ext4_iget_extra_inode:5073: inode #15: comm syz.2.794: corrupted in-inode xattr: invalid ea_ino
[   61.290853][ T9955] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.794: couldn't read orphan inode 15 (err -117)
[   61.303198][ T9955] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   61.326668][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.697077][ T9985] __nla_validate_parse: 40 callbacks suppressed
[   61.697090][ T9985] netlink: 4 bytes leftover after parsing attributes in process `syz.2.796'.
[   61.960432][ T9994] loop2: detected capacity change from 0 to 32768
[   62.018039][ T9994]  loop2: p1 p2 p3 < > p4 < p5 p6 >
[   62.023387][ T9994] loop2: p1 start 460800 is beyond EOD, truncated
[   62.029924][ T9994] loop2: p2 size 83886080 extends beyond EOD, truncated
[   62.053202][ T9994] loop2: p5 start 460800 is beyond EOD, truncated
[   62.059842][ T9994] loop2: p6 size 83886080 extends beyond EOD, truncated
[   62.282138][T10010] loop1: detected capacity change from 0 to 512
[   62.289385][T10010] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   62.309895][T10010] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2857: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   62.326351][T10010] EXT4-fs (loop1): 1 truncate cleaned up
[   62.332579][T10010] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.365477][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.496390][T10024] loop0: detected capacity change from 0 to 1024
[   62.557570][T10024] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.627823][T10031] loop4: detected capacity change from 0 to 1024
[   62.649602][T10024] netlink: 14 bytes leftover after parsing attributes in process `syz.0.809'.
[   62.666498][T10031] EXT4-fs: Ignoring removed orlov option
[   62.677297][T10024] bond0: (slave dummy0): Releasing backup interface
[   62.688340][T10031] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.771825][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.102884][T10069] netlink: 4 bytes leftover after parsing attributes in process `syz.2.830'.
[   63.284132][T10064] loop3: detected capacity change from 0 to 1024
[   63.325339][T10064] EXT4-fs: inline encryption not supported
[   63.332942][T10064] EXT4-fs: Ignoring removed i_version option
[   63.361658][T10064] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   63.432818][T10064] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 2: comm syz.3.828: lblock 2 mapped to illegal pblock 2 (length 1)
[   63.468384][T10064] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 48: comm syz.3.828: lblock 0 mapped to illegal pblock 48 (length 1)
[   63.508644][T10064] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.828: Failed to acquire dquot type 0
[   63.540502][T10064] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6298: Corrupt filesystem
[   63.570527][T10064] EXT4-fs error (device loop3): ext4_evict_inode:253: inode #11: comm syz.3.828: mark_inode_dirty error
[   63.596788][T10064] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[   63.623760][T10064] EXT4-fs (loop3): 1 orphan inode deleted
[   63.631162][   T52] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[   63.645621][   T52] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:3: Failed to release dquot type 0
[   63.660633][T10064] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.677093][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.726898][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.754068][ T3314] EXT4-fs error (device loop3): __ext4_get_inode_loc:4830: comm syz-executor: Invalid inode table block 1 in block_group 0
[   63.777358][ T3314] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6298: Corrupt filesystem
[   63.798798][ T3314] EXT4-fs error (device loop3): ext4_quota_off:7270: inode #3: comm syz-executor: mark_inode_dirty error
[   63.799250][T10087] netlink: 12 bytes leftover after parsing attributes in process `syz.2.837'.
[   63.867095][T10090] loop3: detected capacity change from 0 to 1024
[   63.905309][T10090] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.927391][T10090] netlink: 14 bytes leftover after parsing attributes in process `syz.3.831'.
[   64.164212][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.305690][T10103] loop3: detected capacity change from 0 to 512
[   64.323251][T10077] Set syz1 is full, maxelem 65536 reached
[   64.328869][T10103] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   64.369802][T10103] EXT4-fs (loop3): 1 truncate cleaned up
[   64.381435][T10103] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.479599][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.547639][T10110] netlink: 96 bytes leftover after parsing attributes in process `syz.1.845'.
[   64.574582][T10110] netlink: 96 bytes leftover after parsing attributes in process `syz.1.845'.
[   64.673842][ T3509] kernel write not supported for file bpf-prog (pid: 3509 comm: kworker/0:8)
[   64.711729][T10131] netlink: 12 bytes leftover after parsing attributes in process `syz.3.853'.
[   64.789892][T10137] capability: warning: `syz.3.856' uses 32-bit capabilities (legacy support in use)
[   64.833945][T10138] netlink: 'syz.0.855': attribute type 4 has an invalid length.
[   64.841749][T10138] netlink: 17 bytes leftover after parsing attributes in process `syz.0.855'.
[   64.887134][T10135] netlink: 'syz.0.855': attribute type 2 has an invalid length.
[   64.936057][   T29] kauditd_printk_skb: 227 callbacks suppressed
[   64.936097][   T29] audit: type=1326 audit(1765307569.884:1219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10127 comm="syz.1.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f62cbf265e7 code=0x7ffc0000
[   64.966251][   T29] audit: type=1326 audit(1765307569.884:1220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10127 comm="syz.1.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f62cbecb829 code=0x7ffc0000
[   64.989685][   T29] audit: type=1326 audit(1765307569.884:1221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10127 comm="syz.1.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f62cbf2f749 code=0x7ffc0000
[   65.013060][   T29] audit: type=1326 audit(1765307569.904:1222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10127 comm="syz.1.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f62cbf265e7 code=0x7ffc0000
[   65.036340][   T29] audit: type=1326 audit(1765307569.904:1223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10127 comm="syz.1.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f62cbecb829 code=0x7ffc0000
[   65.059618][   T29] audit: type=1326 audit(1765307569.904:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10127 comm="syz.1.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f62cbf2f749 code=0x7ffc0000
[   65.083027][   T29] audit: type=1326 audit(1765307569.904:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10127 comm="syz.1.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f62cbf265e7 code=0x7ffc0000
[   65.106331][   T29] audit: type=1326 audit(1765307569.904:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10127 comm="syz.1.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f62cbecb829 code=0x7ffc0000
[   65.129644][   T29] audit: type=1326 audit(1765307569.904:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10127 comm="syz.1.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f62cbf2f749 code=0x7ffc0000
[   65.153131][   T29] audit: type=1326 audit(1765307569.924:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10127 comm="syz.1.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f62cbf265e7 code=0x7ffc0000
[   65.571192][T10150] netlink: 28 bytes leftover after parsing attributes in process `syz.3.861'.
[   65.646243][T10157] loop4: detected capacity change from 0 to 1024
[   65.957795][T10181] SELinux: failed to load policy
[   66.576780][T10201] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   66.632991][T10201] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   66.665981][T10204] loop4: detected capacity change from 0 to 1024
[   66.681395][T10204] EXT4-fs: inline encryption not supported
[   66.687784][T10204] EXT4-fs: Ignoring removed i_version option
[   66.701118][T10201] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   66.748416][T10204] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   66.776196][T10204] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 2: comm syz.4.884: lblock 2 mapped to illegal pblock 2 (length 1)
[   66.791491][T10204] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 48: comm syz.4.884: lblock 0 mapped to illegal pblock 48 (length 1)
[   66.808059][T10204] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.884: Failed to acquire dquot type 0
[   66.820582][T10201] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   66.830971][T10204] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6298: Corrupt filesystem
[   66.844250][T10204] EXT4-fs error (device loop4): ext4_evict_inode:253: inode #11: comm syz.4.884: mark_inode_dirty error
[   66.873615][T10204] EXT4-fs warning (device loop4): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[   66.891621][T10204] EXT4-fs (loop4): 1 orphan inode deleted
[   66.909747][   T31] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1)
[   66.926751][T10204] EXT4-fs mount: 2 callbacks suppressed
[   66.926773][T10204] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.944663][ T8881] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   66.952917][   T31] EXT4-fs error (device loop4): ext4_release_dquot:7022: comm kworker/u8:1: Failed to release dquot type 0
[   66.964491][ T8881] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   66.979755][ T8881] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   66.987951][ T8881] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   67.010884][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.020086][ T3320] EXT4-fs error (device loop4): __ext4_get_inode_loc:4830: comm syz-executor: Invalid inode table block 1 in block_group 0
[   67.052894][ T3320] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6298: Corrupt filesystem
[   67.076783][ T3320] EXT4-fs error (device loop4): ext4_quota_off:7270: inode #3: comm syz-executor: mark_inode_dirty error
[   67.100950][T10216] SELinux: failed to load policy
[   67.264837][T10240] netem: change failed
[   67.477391][T10248] loop0: detected capacity change from 0 to 1024
[   67.490251][T10248] EXT4-fs: inline encryption not supported
[   67.497941][T10248] EXT4-fs: Ignoring removed i_version option
[   67.514932][T10248] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   67.549974][T10248] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 2: comm syz.0.900: lblock 2 mapped to illegal pblock 2 (length 1)
[   67.569479][T10260] SELinux: failed to load policy
[   67.585375][T10248] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 48: comm syz.0.900: lblock 0 mapped to illegal pblock 48 (length 1)
[   67.602182][T10248] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.900: Failed to acquire dquot type 0
[   67.616133][T10248] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Corrupt filesystem
[   67.647333][T10248] EXT4-fs error (device loop0): ext4_evict_inode:253: inode #11: comm syz.0.900: mark_inode_dirty error
[   67.662475][T10248] EXT4-fs warning (device loop0): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[   67.663078][T10270] SELinux: failed to load policy
[   67.680065][T10248] EXT4-fs (loop0): 1 orphan inode deleted
[   67.685737][T10274] __nla_validate_parse: 1 callbacks suppressed
[   67.685820][T10274] netlink: 12 bytes leftover after parsing attributes in process `syz.3.908'.
[   67.690056][T10248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.701344][ T8870] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:37: lblock 1 mapped to illegal pblock 1 (length 1)
[   67.701455][ T8870] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:37: Failed to release dquot type 0
[   67.766466][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.776296][ T3323] EXT4-fs error (device loop0): __ext4_get_inode_loc:4830: comm syz-executor: Invalid inode table block 1 in block_group 0
[   67.789354][ T3323] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Corrupt filesystem
[   67.799573][ T3323] EXT4-fs error (device loop0): ext4_quota_off:7270: inode #3: comm syz-executor: mark_inode_dirty error
[   67.836422][T10286] loop2: detected capacity change from 0 to 164
[   67.847132][T10286] ISOFS: unable to read i-node block
[   67.852504][T10286] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   67.943196][T10294] veth0: entered promiscuous mode
[   67.958653][T10294] netlink: 4 bytes leftover after parsing attributes in process `syz.1.918'.
[   67.980772][T10294] veth0 (unregistering): left promiscuous mode
[   68.092712][T10300] SELinux: failed to load policy
[   68.112229][T10305] loop0: detected capacity change from 0 to 164
[   68.204161][T10318] netlink: 8 bytes leftover after parsing attributes in process `syz.1.930'.
[   68.303337][T10332] netlink: 12 bytes leftover after parsing attributes in process `syz.1.936'.
[   68.422396][T10342] lo speed is unknown, defaulting to 1000
[   68.428676][T10342] lo speed is unknown, defaulting to 1000
[   68.436359][T10342] lo speed is unknown, defaulting to 1000
[   68.445733][T10342] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   68.456968][T10342] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   68.470582][T10342] lo speed is unknown, defaulting to 1000
[   68.486538][T10342] lo speed is unknown, defaulting to 1000
[   68.493836][T10342] lo speed is unknown, defaulting to 1000
[   68.501170][T10342] lo speed is unknown, defaulting to 1000
[   68.507337][T10342] lo speed is unknown, defaulting to 1000
[   69.165365][T10368] netlink: 12 bytes leftover after parsing attributes in process `syz.0.950'.
[   69.323207][T10384] netlink: 8 bytes leftover after parsing attributes in process `syz.3.957'.
[   69.348938][T10387] loop1: detected capacity change from 0 to 128
[   69.370247][T10387] EXT4-fs: Ignoring removed nobh option
[   69.396642][T10387] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   69.421187][T10387] ext4 filesystem being mounted at /182/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   69.473025][ T3313] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   69.488521][T10399] siw: device registration error -23
[   69.638725][T10421] loop4: detected capacity change from 0 to 164
[   69.646338][T10421] ISOFS: unable to read i-node block
[   69.651738][T10421] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   69.932692][T10433] SELinux: failed to load policy
[   69.946208][   T29] kauditd_printk_skb: 573 callbacks suppressed
[   69.946224][   T29] audit: type=1326 audit(1765307574.894:1796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f62cbf265e7 code=0x7ffc0000
[   69.976052][   T29] audit: type=1326 audit(1765307574.924:1797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f62cbecb829 code=0x7ffc0000
[   69.999496][   T29] audit: type=1326 audit(1765307574.924:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f62cbf2f749 code=0x7ffc0000
[   70.022800][   T29] audit: type=1326 audit(1765307574.924:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f62cbf265e7 code=0x7ffc0000
[   70.046260][   T29] audit: type=1326 audit(1765307574.924:1800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f62cbecb829 code=0x7ffc0000
[   70.069912][   T29] audit: type=1326 audit(1765307574.924:1801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f62cbf2f749 code=0x7ffc0000
[   70.102683][T10437] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   70.121324][T10437] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   70.122172][   T29] audit: type=1326 audit(1765307574.984:1802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f62cbf265e7 code=0x7ffc0000
[   70.152377][   T29] audit: type=1326 audit(1765307574.984:1803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f62cbecb829 code=0x7ffc0000
[   70.175687][   T29] audit: type=1326 audit(1765307574.984:1804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f62cbf2f749 code=0x7ffc0000
[   70.199074][   T29] audit: type=1326 audit(1765307574.984:1805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f62cbf265e7 code=0x7ffc0000
[   70.381215][T10456] netlink: 12 bytes leftover after parsing attributes in process `syz.0.982'.
[   70.571014][T10485] netlink: 8 bytes leftover after parsing attributes in process `syz.3.996'.
[   70.644877][T10491] netlink: 12 bytes leftover after parsing attributes in process `syz.3.999'.
[   70.672235][T10496] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1001'.
[   70.720030][   T53] netdevsim netdevsim3 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[   70.736783][   T53] netdevsim netdevsim3 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[   70.745711][   T53] netdevsim netdevsim3 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[   70.754239][   T53] netdevsim netdevsim3 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[   70.992136][T10516] netlink: 'syz.1.1010': attribute type 1 has an invalid length.
[   72.177149][T10572] loop4: detected capacity change from 0 to 128
[   72.272461][T10572] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   72.297815][T10572] ext4 filesystem being mounted at /188/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   72.334079][T10572] EXT4-fs error (device loop4): dx_make_map:1296: inode #2: block 63: comm syz.4.1034: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[   72.352764][T10572] EXT4-fs (loop4): Remounting filesystem read-only
[   72.368804][ T3320] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   72.400670][T10586] loop2: detected capacity change from 0 to 128
[   72.407496][T10586] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   72.431023][T10586] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   72.462881][ T8883] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   72.554361][T10600] SELinux: failed to load policy
[   72.651161][T10614] x_tables: ip6_tables: sctp match: only valid for protocol 132
[   73.203904][T10666] netlink: 'syz.3.1076': attribute type 12 has an invalid length.
[   73.236256][T10669] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   73.602088][T10691] __nla_validate_parse: 9 callbacks suppressed
[   73.602105][T10691] netlink: 12 bytes leftover after parsing attributes in process `wÞ£ÿ'.
[   73.646935][T10693] loop4: detected capacity change from 0 to 2048
[   73.655063][T10693] EXT4-fs: Ignoring removed nomblk_io_submit option
[   73.672653][T10693] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.705560][T10693] EXT4-fs error (device loop4): ext4_read_inline_dir:1486: inode #12: block 5: comm syz.4.1087: path /196/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0
[   73.727766][T10699] loop1: detected capacity change from 0 to 2048
[   73.739642][T10693] EXT4-fs (loop4): Remounting filesystem read-only
[   73.750510][T10699] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.783931][ T3313] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[   73.803421][ T3313] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6689: Corrupt filesystem
[   73.830291][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.840458][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.869476][T10708] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1094'.
[   73.884685][T10712] sctp: [Deprecated]: syz.1.1092 (pid 10712) Use of struct sctp_assoc_value in delayed_ack socket option.
[   73.884685][T10712] Use struct sctp_sack_info instead
[   73.923175][T10714] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1095'.
[   74.047047][T10734] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1103'.
[   74.060708][T10734] 8021q: adding VLAN 0 to HW filter on device bond1
[   74.071260][T10734] macvlan2: entered promiscuous mode
[   74.076563][T10734] macvlan2: entered allmulticast mode
[   74.082848][T10734] bond1: (slave macvlan2): Opening slave failed
[   74.155476][T10740] netlink: 'syz.4.1105': attribute type 30 has an invalid length.
[   74.255659][T10753] IPv6: NLM_F_CREATE should be specified when creating new route
[   74.601110][T10785] loop3: detected capacity change from 0 to 512
[   74.611572][T10785] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.624168][T10785] ext4 filesystem being mounted at /231/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   74.635403][T10785] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #2: comm syz.3.1124: corrupted inode contents
[   74.647351][T10785] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #2: comm syz.3.1124: mark_inode_dirty error
[   74.658978][T10785] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #2: comm syz.3.1124: corrupted inode contents
[   74.678182][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.893068][T10813] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1134'.
[   74.947213][T10820] 9p: Bad value for 'source'
[   74.951985][   T29] kauditd_printk_skb: 660 callbacks suppressed
[   74.951997][   T29] audit: type=1326 audit(1765307579.904:2466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10777 comm="syz.4.1121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b7a0f65e7 code=0x7ffc0000
[   74.982217][   T29] audit: type=1326 audit(1765307579.904:2467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10777 comm="syz.4.1121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b7a09b829 code=0x7ffc0000
[   75.005819][   T29] audit: type=1326 audit(1765307579.904:2468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10777 comm="syz.4.1121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f5b7a0ff749 code=0x7ffc0000
[   75.029208][   T29] audit: type=1326 audit(1765307579.934:2469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10777 comm="syz.4.1121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b7a0f65e7 code=0x7ffc0000
[   75.052618][   T29] audit: type=1326 audit(1765307579.934:2470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10777 comm="syz.4.1121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b7a09b829 code=0x7ffc0000
[   75.076018][   T29] audit: type=1326 audit(1765307579.934:2471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10777 comm="syz.4.1121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f5b7a0ff749 code=0x7ffc0000
[   75.099711][   T29] audit: type=1326 audit(1765307579.934:2472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10777 comm="syz.4.1121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b7a0f65e7 code=0x7ffc0000
[   75.123152][   T29] audit: type=1326 audit(1765307579.934:2473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10777 comm="syz.4.1121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b7a09b829 code=0x7ffc0000
[   75.146580][   T29] audit: type=1326 audit(1765307579.934:2474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10777 comm="syz.4.1121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f5b7a0ff749 code=0x7ffc0000
[   75.170016][   T29] audit: type=1326 audit(1765307579.934:2475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10777 comm="syz.4.1121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b7a0f65e7 code=0x7ffc0000
[   75.194240][T10822] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   75.366171][T10841] loop3: detected capacity change from 0 to 128
[   75.373124][T10841] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   75.385380][T10841] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   75.411446][ T8894] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   75.530490][T10859] SELinux:  Context system_u:object_r:hald_acl_exec_t:s0 is not valid (left unmapped).
[   75.589277][T10869] loop2: detected capacity change from 0 to 512
[   75.605071][T10869] EXT4-fs (loop2): orphan cleanup on readonly fs
[   75.613806][T10869] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.1159: bad orphan inode 13
[   75.624276][T10876] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1163'.
[   75.637062][T10869] ext4_test_bit(bit=12, block=18) = 1
[   75.642553][T10869] is_bad_inode(inode)=0
[   75.646726][T10869] NEXT_ORPHAN(inode)=2130706432
[   75.651590][T10869] max_ino=32
[   75.654784][T10869] i_nlink=1
[   75.656784][T10874] netlink: 'syz.3.1162': attribute type 13 has an invalid length.
[   75.674429][T10869] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.688616][T10869] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   75.731896][T10869] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   75.777734][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.211376][T10941] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1185'.
[   76.308310][T10941] team1: entered promiscuous mode
[   76.313464][T10941] team1: entered allmulticast mode
[   76.325558][T10941] 8021q: adding VLAN 0 to HW filter on device team1
[   76.428481][T10937] lo speed is unknown, defaulting to 1000
[   76.460588][T10964] netlink: 'syz.1.1178': attribute type 298 has an invalid length.
[   76.595068][T10987] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1182'.
[   76.617223][T10987] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1182'.
[   76.843508][T11024] loop1: detected capacity change from 0 to 1024
[   76.860016][T11024] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   76.887986][T11024] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.1186: Invalid block bitmap block 0 in block_group 0
[   76.928157][T11024] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.1186: Failed to acquire dquot type 0
[   76.940085][T11024] EXT4-fs error (device loop1): ext4_free_blocks:6728: comm syz.1.1186: Freeing blocks not in datazone - block = 0, count = 4096
[   76.977040][T11024] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.1186: Invalid inode bitmap blk 0 in block_group 0
[   76.989926][ T8894] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:59: Failed to release dquot type 0
[   77.009104][T11024] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   77.026849][T11024] EXT4-fs (loop1): 1 orphan inode deleted
[   77.046280][T11024] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.088501][T11024] syz.1.1186 (11024) used greatest stack depth: 9216 bytes left
[   77.108971][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.127106][T11056] loop3: detected capacity change from 0 to 512
[   77.143801][T11059] xt_policy: input policy not valid in POSTROUTING and OUTPUT
[   77.146972][T11056] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   77.189709][T11056] EXT4-fs error (device loop3): ext4_init_orphan_info:620: comm syz.3.1193: orphan file block 0: bad magic
[   77.204306][T11056] EXT4-fs (loop3): Remounting filesystem read-only
[   77.211401][T11056] EXT4-fs (loop3): mount failed
[   77.280756][T11089] hsr_slave_0: left promiscuous mode
[   77.290194][T11089] hsr_slave_1: left promiscuous mode
[   77.392941][T11111] loop2: detected capacity change from 0 to 512
[   77.542979][T11132] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   77.642574][ T3931] Process accounting resumed
[   77.918728][T11152] loop1: detected capacity change from 0 to 512
[   77.925808][T11152] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   77.951881][T11152] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.967903][T11152] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #2: block 18: comm syz.1.1218: lblock 23 mapped to illegal pblock 18 (length 1)
[   77.990912][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.034723][T11166] loop1: detected capacity change from 0 to 512
[   78.050782][T11166] EXT4-fs warning (device loop1): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   78.066215][T11166] EXT4-fs (loop1): mount failed
[   78.091449][T11173] netlink: 'syz.3.1225': attribute type 12 has an invalid length.
[   78.179471][T11181] veth0: entered promiscuous mode
[   78.184647][T11181] veth0: entered allmulticast mode
[   78.302484][T11192] netlink: 'syz.3.1235': attribute type 1 has an invalid length.
[   78.337083][T11192] 8021q: adding VLAN 0 to HW filter on device bond2
[   78.357580][T11197] 8021q: adding VLAN 0 to HW filter on device bond1
[   78.374034][T11192] bond2 (unregistering): Released all slaves
[   78.397758][T11197] macsec1: entered allmulticast mode
[   78.403133][T11197] bond1: entered allmulticast mode
[   78.425832][T11197] bond1: left allmulticast mode
[   78.485764][T11209] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   78.504109][T11209] EXT4-fs (loop3): 1 truncate cleaned up
[   78.524045][T11209] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.575026][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.626560][T11226] ip6t_srh: unknown srh match flags  4000
[   78.797024][T11248] tipc: Started in network mode
[   78.801965][T11248] tipc: Node identity ac14140f, cluster identity 4711
[   78.810357][T11248] tipc: New replicast peer: 255.255.255.255
[   78.816452][T11248] tipc: Enabled bearer <udp:syz2>, priority 10
[   78.824688][T11248] __nla_validate_parse: 6 callbacks suppressed
[   78.824702][T11248] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1259'.
[   78.840166][T11248] tipc: Disabling bearer <udp:syz2>
[   78.864263][T11255] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1261'.
[   78.874706][T11255] team0: Port device team_slave_1 removed
[   79.007514][T11273] set_capacity_and_notify: 1 callbacks suppressed
[   79.007553][T11273] loop4: detected capacity change from 0 to 164
[   79.043711][T11273] bio_check_eod: 101 callbacks suppressed
[   79.043727][T11273] syz.4.1268: attempt to access beyond end of device
[   79.043727][T11273] loop4: rw=8912896, sector=263328, nr_sectors = 4 limit=164
[   79.131731][T11273] syz.4.1268: attempt to access beyond end of device
[   79.131731][T11273] loop4: rw=8388608, sector=263328, nr_sectors = 4 limit=164
[   79.258078][T11292] ÿ: renamed from bond_slave_0
[   79.377726][T11294] loop0: detected capacity change from 0 to 8192
[   79.394044][T11277] lo speed is unknown, defaulting to 1000
[   79.511344][T11294]  loop0: p2 p3 p4
[   79.515119][T11294] loop0: p2 start 164919041 is beyond EOD, truncated
[   79.519961][T11303] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1280'.
[   79.521885][T11294] loop0: p3 size 66846464 extends beyond EOD, truncated
[   79.555831][T11294] loop0: p4 size 37048832 extends beyond EOD, truncated
[   79.745233][T11323] loop1: detected capacity change from 0 to 128
[   79.779331][T11323] syz.1.1287: attempt to access beyond end of device
[   79.779331][T11323] loop1: rw=0, sector=121, nr_sectors = 920 limit=128
[   79.962859][   T29] kauditd_printk_skb: 636 callbacks suppressed
[   79.962874][   T29] audit: type=1326 audit(1765307584.914:3108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11320 comm="syz.3.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe392f365e7 code=0x7ffc0000
[   79.993594][   T29] audit: type=1326 audit(1765307584.944:3109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11320 comm="syz.3.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe392edb829 code=0x7ffc0000
[   80.017143][   T29] audit: type=1326 audit(1765307584.944:3110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11320 comm="syz.3.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe392f365e7 code=0x7ffc0000
[   80.040532][   T29] audit: type=1326 audit(1765307584.944:3111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11320 comm="syz.3.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe392edb829 code=0x7ffc0000
[   80.063994][   T29] audit: type=1326 audit(1765307584.944:3112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11320 comm="syz.3.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   80.087732][   T29] audit: type=1326 audit(1765307585.034:3113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11320 comm="syz.3.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe392f365e7 code=0x7ffc0000
[   80.111146][   T29] audit: type=1326 audit(1765307585.034:3114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11320 comm="syz.3.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe392edb829 code=0x7ffc0000
[   80.134656][   T29] audit: type=1326 audit(1765307585.034:3115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11320 comm="syz.3.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fe392f3f749 code=0x7ffc0000
[   80.158871][   T29] audit: type=1326 audit(1765307585.104:3116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11320 comm="syz.3.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe392f365e7 code=0x7ffc0000
[   80.182461][   T29] audit: type=1326 audit(1765307585.104:3117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11320 comm="syz.3.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe392edb829 code=0x7ffc0000
[   80.225689][T11352] loop1: detected capacity change from 0 to 128
[   80.248920][T11352] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   80.261481][T11352] ext4 filesystem being mounted at /256/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   80.307446][ T3313] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   80.345482][T11368] loop1: detected capacity change from 0 to 1024
[   80.352406][T11368] EXT4-fs: Ignoring removed bh option
[   80.361347][T11368] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.382342][T11368] EXT4-fs error (device loop1): mb_free_blocks:2037: group 0, inode 15: block 273:freeing already freed block (bit 17); block bitmap corrupt.
[   80.397184][T11368] EXT4-fs (loop1): Remounting filesystem read-only
[   80.404157][T11368] EXT4-fs warning (device loop1): ext4_convert_unwritten_extents:4984: inode #15: block 64: len 64: ext4_ext_map_blocks returned -30
[   80.427488][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.648121][T11393] loop4: detected capacity change from 0 to 512
[   80.658099][T11393] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   80.671469][T11393] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.684481][T11393] ext4 filesystem being mounted at /259/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   80.727900][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.750975][T11402] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1316'.
[   80.768593][T11402] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1316'.
[   80.821723][T11405] loop2: detected capacity change from 0 to 128
[   80.871133][T11405] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   80.883510][T11405] ext4 filesystem being mounted at /252/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   80.927710][T11405] syzkaller1: entered promiscuous mode
[   80.933256][T11405] syzkaller1: entered allmulticast mode
[   80.956761][T11413] loop4: detected capacity change from 0 to 1024
[   80.966086][T11413] EXT4-fs: Ignoring removed oldalloc option
[   80.972326][T11413] EXT4-fs: Ignoring removed nomblk_io_submit option
[   80.972541][T11415] netlink: 1347 bytes leftover after parsing attributes in process `syz.1.1322'.
[   80.994377][T11413] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.026246][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   81.170715][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.340969][T11463] vlan2: entered allmulticast mode
[   81.381590][T11465] loop0: detected capacity change from 0 to 512
[   81.453344][T11465] EXT4-fs: Ignoring removed oldalloc option
[   81.482195][T11465] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.504947][T11465] ext4 filesystem being mounted at /265/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   81.539538][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.580519][T11500] netlink: 19 bytes leftover after parsing attributes in process `syz.0.1340'.
[   81.702234][T11522] netlink: 'syz.3.1346': attribute type 1 has an invalid length.
[   81.800401][T11541] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1351'.
[   81.839196][T11548] loop0: detected capacity change from 0 to 1024
[   81.849169][T11548] EXT4-fs: Ignoring removed orlov option
[   81.856979][T11548] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.404100][T11625] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1356'.
[   82.594083][T11629] lo speed is unknown, defaulting to 1000
[   82.724916][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.845004][T11654] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   82.872732][T11654] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.885663][T11654] ext4 filesystem being mounted at /272/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   82.938564][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.945597][T11665] EXT4-fs: Ignoring removed orlov option
[   82.980386][T11665] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.148840][T11650] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.181032][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.604422][T11675] ==================================================================
[   83.612538][T11675] BUG: KCSAN: data-race in xas_find_marked / xas_set_mark
[   83.619673][T11675] 
[   83.621987][T11675] write to 0xffff888119df5894 of 4 bytes by task 11665 on cpu 0:
[   83.629714][T11675]  xas_set_mark+0x12b/0x140
[   83.634226][T11675]  __folio_start_writeback+0x155/0x340
[   83.639693][T11675]  ext4_bio_write_folio+0x5ad/0x9f0
[   83.644893][T11675]  mpage_process_page_bufs+0x4a1/0x620
[   83.650354][T11675]  mpage_prepare_extent_to_map+0x7a3/0xc20
[   83.656156][T11675]  ext4_do_writepages+0x6fe/0x27e0
[   83.661265][T11675]  ext4_writepages+0x179/0x300
[   83.666032][T11675]  do_writepages+0x1c6/0x310
[   83.670634][T11675]  file_write_and_wait_range+0x156/0x2c0
[   83.676269][T11675]  generic_buffers_fsync_noflush+0x45/0x130
[   83.682165][T11675]  ext4_sync_file+0x1ab/0x690
[   83.686841][T11675]  vfs_fsync_range+0x10d/0x130
[   83.691606][T11675]  ext4_buffered_write_iter+0x34f/0x3c0
[   83.697163][T11675]  ext4_file_write_iter+0x387/0xf60
[   83.702380][T11675]  iter_file_splice_write+0x66b/0xa20
[   83.707749][T11675]  direct_splice_actor+0x156/0x2a0
[   83.712860][T11675]  splice_direct_to_actor+0x312/0x680
[   83.718230][T11675]  do_splice_direct+0xda/0x150
[   83.722992][T11675]  do_sendfile+0x380/0x650
[   83.727422][T11675]  __x64_sys_sendfile64+0x105/0x150
[   83.732634][T11675]  x64_sys_call+0x2db1/0x3000
[   83.737329][T11675]  do_syscall_64+0xd8/0x2a0
[   83.741920][T11675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.747806][T11675] 
[   83.750117][T11675] read to 0xffff888119df5894 of 4 bytes by task 11675 on cpu 1:
[   83.757733][T11675]  xas_find_marked+0x5dc/0x620
[   83.762509][T11675]  find_get_entry+0x5d/0x380
[   83.767100][T11675]  filemap_get_folios_tag+0x92/0x210
[   83.772387][T11675]  mpage_prepare_extent_to_map+0x308/0xc20
[   83.778194][T11675]  ext4_do_writepages+0x6fe/0x27e0
[   83.783319][T11675]  ext4_writepages+0x179/0x300
[   83.788094][T11675]  do_writepages+0x1c6/0x310
[   83.792698][T11675]  file_write_and_wait_range+0x156/0x2c0
[   83.798333][T11675]  generic_buffers_fsync_noflush+0x45/0x130
[   83.804250][T11675]  ext4_sync_file+0x1ab/0x690
[   83.808948][T11675]  vfs_fsync_range+0x10d/0x130
[   83.813720][T11675]  ext4_buffered_write_iter+0x34f/0x3c0
[   83.819280][T11675]  ext4_file_write_iter+0x387/0xf60
[   83.824480][T11675]  iter_file_splice_write+0x66b/0xa20
[   83.829843][T11675]  direct_splice_actor+0x156/0x2a0
[   83.834944][T11675]  splice_direct_to_actor+0x312/0x680
[   83.840303][T11675]  do_splice_direct+0xda/0x150
[   83.845058][T11675]  do_sendfile+0x380/0x650
[   83.849467][T11675]  __x64_sys_sendfile64+0x105/0x150
[   83.854653][T11675]  x64_sys_call+0x2db1/0x3000
[   83.859756][T11675]  do_syscall_64+0xd8/0x2a0
[   83.864599][T11675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.870488][T11675] 
[   83.872792][T11675] value changed: 0x0a000021 -> 0x04000021
[   83.878486][T11675] 
[   83.880787][T11675] Reported by Kernel Concurrency Sanitizer on:
[   83.887270][T11675] CPU: 1 UID: 0 PID: 11675 Comm: syz.2.1372 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   83.898628][T11675] Tainted: [W]=WARN
[   83.902409][T11675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   83.912444][T11675] ==================================================================
[   84.035780][T11675] syz.2.1372 (11675) used greatest stack depth: 8976 bytes left
[   84.055258][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.