last executing test programs:

37.434079048s ago: executing program 0 (id=1464):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='task_rename\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='-\x0f-\x00')

37.355952513s ago: executing program 0 (id=1466):
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x17, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregset(0x4205, r0, 0x1, &(0x7f00000001c0)={0x0})

37.283981128s ago: executing program 0 (id=1470):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket(0x2, 0x3, 0xff)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)

36.882763064s ago: executing program 0 (id=1489):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount_setattr(r0, &(0x7f0000000080)='./file0/file0\x00', 0x8000, &(0x7f0000001dc0)={0x81, 0xc, 0x0, {r0}}, 0x20)

36.639810709s ago: executing program 0 (id=1495):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000068000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000212c0011800a0001006c696d69740000001c0002800c00024000000000000000030c0001400000000200000101480000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000001c0003800c00008008000340000000020c0000800800034000000002"], 0xf8}, 0x1, 0x0, 0x0, 0x800}, 0x0)

36.325761739s ago: executing program 0 (id=1521):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7a, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0xa00, 0x81, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x10, 0x7ffc1ffb}]})
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

36.304736451s ago: executing program 32 (id=1521):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7a, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0xa00, 0x81, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x10, 0x7ffc1ffb}]})
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

20.694237077s ago: executing program 1 (id=2122):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x101000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 'queue0\x00', 0x1})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000400)={0x0, 0x0, {0x1, 0x1, 0x0, 0x0, 0xa}})

20.631993851s ago: executing program 1 (id=2124):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x842)
ioctl$EVIOCGBITSND(r0, 0x40044591, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000340)='.\x00', &(0x7f0000000040), 0x800000, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

20.582343144s ago: executing program 1 (id=2125):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101100000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000021c0)=ANY=[@ANYBLOB="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"], 0x1914}}, 0x4048010)

20.512252589s ago: executing program 1 (id=2129):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xca)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='./file0/../file0\x00')

20.453673952s ago: executing program 1 (id=2132):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x40801, 0x0)
r1 = epoll_create(0x802)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000300))
ioctl$FS_IOC_GETFLAGS(r0, 0x5437, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)

20.243740146s ago: executing program 1 (id=2145):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@delsa={0x48, 0x12, 0x1, 0x0, 0x0, {@in=@dev}, [@srcaddr={0x14, 0xd, @in6=@rand_addr=' \x01\x00'}, @mark={0xc, 0x15, {0x2}}]}, 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x4, 0x3, 0x25dfdbfa, {0x0, 0x0, 0x0, 0x0, 0x190, 0xf1f80502f07a58b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_SELECT={0x5, 0x16, 0x1}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40010}, 0x240080c1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00000018"], 0x50}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x400000000000235, 0x0)

20.243550406s ago: executing program 33 (id=2145):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@delsa={0x48, 0x12, 0x1, 0x0, 0x0, {@in=@dev}, [@srcaddr={0x14, 0xd, @in6=@rand_addr=' \x01\x00'}, @mark={0xc, 0x15, {0x2}}]}, 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x4, 0x3, 0x25dfdbfa, {0x0, 0x0, 0x0, 0x0, 0x190, 0xf1f80502f07a58b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_SELECT={0x5, 0x16, 0x1}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40010}, 0x240080c1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00000018"], 0x50}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x400000000000235, 0x0)

1.343410203s ago: executing program 4 (id=2822):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000000c0)={0xfffc, 0x0, 0x30, 0x1ff}, 0x8)
sendto$inet6(r0, &(0x7f00000004c0)="d7", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x6, @private1, 0x8}, 0x1c)
getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000100), &(0x7f0000000180)=0x4)
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x2000000000032, 0xffffffffffffffff, 0x0)

1.24658223s ago: executing program 5 (id=2824):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xff, 0x7ffc1ffd}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
alarm(0x7fff)

1.197792253s ago: executing program 5 (id=2825):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000100000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001400037"], 0xb0}}, 0x0)

798.937849ms ago: executing program 6 (id=2836):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000100), 0xff, 0x4a1, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
fallocate(r0, 0x3, 0xc, 0x8000c62)

651.063498ms ago: executing program 6 (id=2839):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x14, &(0x7f00000010c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000009c0)="010000000037a788a11d1f000000000000006923c63a4541062101b60a2156566de77062086575a59ea9cb", 0x2b, r2)

562.827804ms ago: executing program 3 (id=2841):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x5, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000001040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2000, 0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffff00000001, 0x1ff}, 0x0, 0x3, 0x0, 0x0, 0x6, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
mmap$perf(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x11, r1, 0x0)
perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x307, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffff8, 0x1}, 0x0, 0x0, 0x20000000, 0x7, 0x4, 0x400008, 0x8000, 0x0, 0x40000000, 0x0, 0x20000}, 0x0, 0x0, r1, 0x3)

528.929096ms ago: executing program 3 (id=2842):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x106, 0x8}}, 0x20)

493.820839ms ago: executing program 2 (id=2844):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8f70000000000ff000044850000000e000000650000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="01dfffffff9a2600000021"], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)

472.82184ms ago: executing program 6 (id=2845):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0xff}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a30000000002c000000030a01010000000000000000020000000900010073797a30000000000900030073797a32000000003a000000030a03000000000000000000020000000900010073797a30000000000900030073797a32"], 0xa0}}, 0x8040)

472.28871ms ago: executing program 2 (id=2846):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000500000ac4010000060a0b040000000000000000020000004c000480340001800b000100746172676574000024000280090001004d41524b000000000c00030002b51112d439c5920800024000000002140001800b0001006c6f6f6b75700000040002800900010073797a30000000000900020073797a3200000000f70007404884b24b02a8a7758a688958ed60ecfd057e"], 0x1ec}}, 0x0)

432.140812ms ago: executing program 2 (id=2847):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003"], 0x64}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$NFT_BATCH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x0)

431.908732ms ago: executing program 4 (id=2848):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="5500000018007f5f00fe01b2a4a2809302060000ff41fd01020400000a00120002002800000019002d007fffffff0022de1330d54400009b84136ef75afb83de066a5900e1baac968300000000f2ff000001000000", 0x55}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0)

414.348724ms ago: executing program 3 (id=2849):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="a1ab00000000000000003200000008001781"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

392.466885ms ago: executing program 5 (id=2850):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xc0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

392.251765ms ago: executing program 2 (id=2851):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0x6}, 0x18)
r1 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000004c0)={'ip6_vti0\x00', &(0x7f0000000740)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x3, 0x0, 0x4e, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x10, 0x7, 0x0, 0x4}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000680)={'syztnl1\x00', 0x0})

372.703156ms ago: executing program 6 (id=2852):
r0 = socket$inet(0x2, 0x2, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
sendmsg$inet(r0, &(0x7f0000001040)={&(0x7f0000000040)={0x2, 0xffff, @remote}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="2d0000008058", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20008024)

359.359277ms ago: executing program 5 (id=2853):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x3, &(0x7f0000006680))
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
setsockopt$inet_opts(r1, 0x0, 0x4, 0x0, 0x0)

357.627007ms ago: executing program 6 (id=2854):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
listxattr(0x0, 0x0, 0x0)

343.734078ms ago: executing program 3 (id=2855):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6c, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
chown(&(0x7f0000000000)='./file1\x00', 0x0, 0x0)

336.221139ms ago: executing program 4 (id=2856):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r0, &(0x7f0000000040)={0x23, 0x14}, 0x10)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
bind$phonet(r1, &(0x7f0000000040)={0x23, 0x4, 0x2}, 0x10)

327.100629ms ago: executing program 6 (id=2857):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, 0x0, 0x1)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x2)

313.41972ms ago: executing program 3 (id=2858):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000100), 0xff, 0x4a1, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
fallocate(r0, 0x3, 0xc, 0x8000c62)

305.322891ms ago: executing program 4 (id=2859):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000500000ac4010000060a0b040000000000000000020000004c000480340001800b000100746172676574000024000280090001004d41524b000000000c00030002b51112d439c5920800024000000002140001800b0001006c6f6f6b75700000040002800900010073797a30000000000900020073797a3200000000f70007404884b24b02a8a7758a688958ed60ecfd057e"], 0x1ec}}, 0x0)

288.783582ms ago: executing program 5 (id=2860):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000040), 0xfe, 0x4f2, &(0x7f0000000b00)="$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")
bpf$ITER_CREATE(0xb, 0x0, 0x0)

286.578842ms ago: executing program 2 (id=2861):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='mm_page_free\x00', r0, 0x0, 0x3}, 0x18)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000380), 0x84d03, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x10, &(0x7f0000000ac0)=ANY=[@ANYBLOB="75746638006d61703d6f983c756661703d6e6f726d616c2c6909000000f2ff00003dda5de4d586f0df206d65656b416d6f64653d3078303030303010303071303030303030302c73657373696f6e3d307830faffffff30303030303030f4e4b4f82c6d61736b3d4d4159574b50be30c8486470722677b93165cfe6f62127553b2017754598752d977369672c7063723d303030303030303030303030303030303030332c64566e745f6d6561737572652c00000000000000006bbf4d6406b59dbc529c00000000000000fada265ab14119997600a2299d2c35a2efc1bf037787a0d801f26d335ef2ba9ac2423a358ccbb776b21e1d3b", @ANYRESDEC=0x0, @ANYRESHEX=0x0], 0xfe, 0x67a, &(0x7f0000000280)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x174)

262.583563ms ago: executing program 4 (id=2862):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003"], 0x64}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$NFT_BATCH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x0)

182.873929ms ago: executing program 4 (id=2863):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x1008010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x51a, &(0x7f0000000a00)="$eJzs3VFrY1kdAPD/vW26nZmuyarIuuC6uCudRSdpt+5uEdH1RZ8W1PV9rG1aSpOmNOk6LYt28RuIoOCTT74IfgBhmAc/gAwM6Iv4ICqK6Iw+COpcSXKz00mTtjBt02l+PziTc869uf9zbujJvTdn7g1gbL0UEW9FxEREvBoRxbw+zVPsd1N7vQf331tupySy7J2/J5Hkdb1ttbcxGRHX8rdNR8Q3vhrx7eRw3Obu3sZSrVbdzsuVVn2r0tzdu7FeX1qrrlU3Fxbm31h8c/H1xbks90T9LPUyP/vKF29/9jt/uPnX699tN+sLH4tC9PXjNHW7Xujsi572Pto+i2Aj0PvMC72KydG2BwCAo7WP8T8cEZ/qHP8XY2LQAdzEKFoGAAAAnJbsSzPx3yQiAwAAAC6tNCJmIknL+VyAmUjTqfzawEfjalprNFufWW3sbK60l0WUopCurteqc/lc4VIUknZ5Pp9j2yu/1ldeiIjnIuKHxSudcnm5UVsZ8bUPAAAAGBfX+s7//1VMO/nj+Y+eAAAA8FQpDS0AAAAAl8WAU/6pUbQDAAAAODv95/+3R9QOAAAA4Ex87e232ynrPf965d3dnY3GuzdWqs2Ncn1nubzc2N4qrzUaa5179tWP216t0dj6XGzu3Kq0qs1Wpbm7d7Pe2Nls3Vx/7BHYAAAAwDl67pN3fptExP7nr3RS5PcBBHjMn0bdAOA0TYy6AcDIuIs3jK/CqBsAjFxyzHKTdwAA4Ok3+/HDv//37v3n2gBcbub6AMD48fs/jK+CGYAw1tKI+FA3+8ywdYb+/v/rk0bJsoi7xYM1ri8CAMD5mumkJC3n5wEzkablcsSzEWkpCsnqeq06l58f/KZYeKZdnu+8Mzl2zjAAAAAAAAAAAAAAAAAAAAAAAAAA0JVlSWQAAADApRaR/iXp3M0/Yrb4ykz/9YGp5N/F+HNe+Mk7P7q11Gptz7fr/9F5ltdURLR+nNe/NvTxYQAAAMBpS/aHLuqep+ev8+faKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADGwIP77y330nnG/duXI6I0KP5kTHdep6MQEVf/mcTkgfclETFxCvH334+I5wfFT+JhlmWlvBX98dOIuHLG8UudXTM8/rVTiA/j7E57/Hlr0N9fGi91Xgf//U3m6UkNH//SPPLznXFu0Pj37KGt1QfGeOHeLypD478f8cLk4PGnN/4mQ+K/fGhr/8my7HCMb31zb29Y/OynEbMDv3+Sx2JVWvWtSnN378Z6fWmtulbdXFiYf2PxzcXXF+cqq+u1av7vwBg/+MQvHx7V/6sD4v/+d93x96j+vzJso33+d+/W/Y90s4VB8a+/PPD7dzqGxE/z775P5/n28tlefr+bP+jFn9998aj+rwzZ/8d9/tdP2P9Xv/79P55wVQDgHDR39zaWarXq9hGZ6ROs8zRmfjV9IZpxgszkgZrse91P7kI07Aky7aPVRzW9Xl2Ahh3IZOcWayIuSJc/yIx0WAIAAM7Ao4P+UbcEAAAAAAAAAAAAAAAAAAAAxtd53E6sP+b+aLoKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHCk/wcAAP//FPHfqw==")

133.566422ms ago: executing program 2 (id=2864):
socket$xdp(0x2c, 0x3, 0x0)
io_setup(0x400e, &(0x7f0000000600)=<r0=>0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0x1)
syz_clone3(&(0x7f0000000080)={0x21800000, &(0x7f0000000040)=<r1=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_submit(r0, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r1, 0x0}])

68.977616ms ago: executing program 5 (id=2865):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1210090, &(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRES64, @ANYRESHEX], 0x1, 0x277, &(0x7f00000001c0)="$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")
ioctl$FS_IOC_GETVERSION(r1, 0xc040ff0b, &(0x7f0000000200))

0s ago: executing program 3 (id=2866):
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000000)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r1, 0x0, 0x1000000000000}, 0x18)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0xf, 0x0, 0x0, 0x7995}, 0x8, 0x0, 0x0, 0x48000000, 0xe, 0x40000000, 0x0})

kernel console output (not intermixed with test programs):

op threads
[   64.362192][ T3636] vhci_hcd: release socket
[   64.366674][ T3636] vhci_hcd: disconnect device
[   64.388728][ T5833] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   64.502765][ T5823] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   64.520548][ T5823] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   64.726513][ T5863] netlink: 4 bytes leftover after parsing attributes in process `syz.0.993'.
[   64.740958][ T5863] team0: Port device team_slave_1 removed
[   64.805753][ T5869] xt_TPROXY: Can be used only with -p tcp or -p udp
[   64.835264][ T5873] loop0: detected capacity change from 0 to 512
[   64.841734][ T5875] loop2: detected capacity change from 0 to 1024
[   64.861001][ T5873] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   64.869312][ T5873] EXT4-fs (loop0): orphan cleanup on readonly fs
[   64.879739][ T5873] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #16: comm syz.0.998: corrupted inode contents
[   64.894828][ T5873] EXT4-fs (loop0): Remounting filesystem read-only
[   64.901493][ T5873] EXT4-fs (loop0): 1 truncate cleaned up
[   64.907381][ T3602] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   64.917936][ T3602] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   64.928570][ T3602] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[   64.990872][ T5891] loop4: detected capacity change from 0 to 1024
[   65.054792][   T29] kauditd_printk_skb: 348 callbacks suppressed
[   65.054806][   T29] audit: type=1400 audit(65.021:1577): avc:  denied  { read } for  pid=5888 comm="syz.1.1005" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   65.089954][   T29] audit: type=1400 audit(65.051:1578): avc:  denied  { ioctl } for  pid=5890 comm="syz.4.1006" path=2F3233382F66696C65312F66696C65302F233138202864656C6574656429 dev="loop4" ino=18 ioctlcmd=0x5820 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   65.117231][   T29] audit: type=1400 audit(65.051:1579): avc:  denied  { setattr } for  pid=5890 comm="syz.4.1006" name="#18" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   65.138546][   T29] audit: type=1400 audit(65.061:1580): avc:  denied  { watch_reads } for  pid=5900 comm="syz.1.1009" path="/126" dev="tmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   65.425196][   T29] audit: type=1400 audit(65.401:1581): avc:  denied  { mount } for  pid=5934 comm="syz.2.1022" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   65.480916][ T5940] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   65.485948][   T29] audit: type=1400 audit(65.431:1582): avc:  denied  { unmount } for  pid=3316 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   65.512316][   T29] audit: type=1326 audit(65.481:1583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.1.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9364defc9 code=0x7ffc0000
[   65.535315][   T29] audit: type=1326 audit(65.481:1584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.1.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9364defc9 code=0x7ffc0000
[   65.558158][   T29] audit: type=1326 audit(65.481:1585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.1.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe9364defc9 code=0x7ffc0000
[   65.581044][   T29] audit: type=1326 audit(65.481:1586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.1.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9364defc9 code=0x7ffc0000
[   65.632592][ T5941] netlink: 'syz.2.1026': attribute type 21 has an invalid length.
[   65.949812][ T6000] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1052'.
[   65.996009][ T6000] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1052'.
[   66.112222][ T1034] kernel write not supported for file /312/sched (pid: 1034 comm: kworker/0:2)
[   66.179307][ T6029] random: crng reseeded on system resumption
[   66.213093][ T6031] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   66.479325][ T6060] loop4: detected capacity change from 0 to 1024
[   66.486765][ T6060] EXT4-fs (loop4): unsupported inode size: 143
[   66.492974][ T6060] EXT4-fs (loop4): blocksize: 1024
[   66.577570][ T6070] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   66.585251][ T6070] vhci_hcd: invalid port number 96
[   66.590374][ T6070] vhci_hcd: default hub control req: 0311 v0005 i0060 l7
[   66.651938][ T6081] loop4: detected capacity change from 0 to 256
[   66.679205][ T6085] loop0: detected capacity change from 0 to 128
[   66.685703][ T6086] geneve2: entered promiscuous mode
[   66.691034][ T6086] geneve2: entered allmulticast mode
[   66.716969][ T6090] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1092'.
[   66.726108][ T6090] netlink: 348 bytes leftover after parsing attributes in process `syz.0.1092'.
[   66.735236][ T6090] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1092'.
[   66.744405][ T6090] netlink: 348 bytes leftover after parsing attributes in process `syz.0.1092'.
[   67.033513][ T6129] 8021q: adding VLAN 0 to HW filter on device bond1
[   67.076155][ T6136] netlink: 'syz.4.1114': attribute type 29 has an invalid length.
[   67.084947][ T6136] netlink: 'syz.4.1114': attribute type 29 has an invalid length.
[   67.182841][ T6146] hub 6-0:1.0: USB hub found
[   67.192865][ T6146] hub 6-0:1.0: 8 ports detected
[   67.244592][ T6152] loop2: detected capacity change from 0 to 164
[   67.254994][ T6152] iso9660: Corrupted directory entry in block 2 of inode 1920
[   67.363606][ T6156] vhci_hcd: default hub control req: 2015 v0012 i0001 l0
[   67.731876][ T6203] netlink: 'syz.0.1145': attribute type 1 has an invalid length.
[   67.757745][ T6207] syzkaller1: entered promiscuous mode
[   67.763374][ T6207] syzkaller1: entered allmulticast mode
[   67.889820][ T6212] loop0: detected capacity change from 0 to 512
[   67.911649][ T6212] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   67.919723][ T6212] EXT4-fs (loop0): orphan cleanup on readonly fs
[   67.927426][ T6212] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #16: comm wg1: corrupted inode contents
[   67.938832][ T6212] EXT4-fs (loop0): Remounting filesystem read-only
[   67.945674][ T6212] EXT4-fs (loop0): 1 truncate cleaned up
[   67.951493][ T3636] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   67.962176][ T3636] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   67.972860][ T3636] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[   68.475770][ T6246] loop2: detected capacity change from 0 to 512
[   68.610076][ T6265] netlink: 'syz.2.1171': attribute type 2 has an invalid length.
[   68.675936][ T6274] __nla_validate_parse: 2 callbacks suppressed
[   68.675950][ T6274] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1175'.
[   68.704682][ T6274] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1175'.
[   68.718678][ T6271] pim6reg1: entered promiscuous mode
[   68.724041][ T6271] pim6reg1: entered allmulticast mode
[   68.762767][ T6278] IPv6: NLM_F_CREATE should be specified when creating new route
[   69.038579][ T6310] loop0: detected capacity change from 0 to 128
[   69.130297][ T6322] sd 0:0:1:0: device reset
[   69.191187][ T6328] af_packet: tpacket_rcv: packet too big, clamped from 2916 to 4294967286. macoff=82
[   69.241894][ T6327] bond1: option fail_over_mac: invalid value (15)
[   69.339995][ T6327] bond1 (unregistering): Released all slaves
[   69.478046][ T3404] kernel read not supported for file /580/net/netstat (pid: 3404 comm: kworker/1:5)
[   69.497732][ T6362] sd 0:0:1:0: device reset
[   69.552182][ T6383] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1225'.
[   69.580215][ T6383] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1225'.
[   69.697730][ T6403] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1241'.
[   69.711253][ T6404] ipvlan2: entered promiscuous mode
[   69.725894][ T6404] bridge0: port 3(ipvlan2) entered blocking state
[   69.732542][ T6404] bridge0: port 3(ipvlan2) entered disabled state
[   69.748691][ T6404] ipvlan2: entered allmulticast mode
[   69.754139][ T6404] bridge0: entered allmulticast mode
[   69.760527][ T6404] ipvlan2: left allmulticast mode
[   69.765616][ T6404] bridge0: left allmulticast mode
[   69.817620][ T6426] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1245'.
[   69.948678][ T6450] syzkaller1: entered promiscuous mode
[   69.954347][ T6450] syzkaller1: entered allmulticast mode
[   69.995905][ T6455] netlink: 332 bytes leftover after parsing attributes in process `syz.3.1258'.
[   70.068397][   T29] kauditd_printk_skb: 273 callbacks suppressed
[   70.068412][   T29] audit: type=1326 audit(70.041:1854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6462 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   70.105503][   T29] audit: type=1326 audit(70.041:1855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6462 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   70.128288][   T29] audit: type=1326 audit(70.041:1856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6462 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   70.151118][   T29] audit: type=1326 audit(70.071:1857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6462 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   70.173917][   T29] audit: type=1326 audit(70.071:1858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6462 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   70.196675][   T29] audit: type=1326 audit(70.071:1860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6462 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   70.219999][   T29] audit: type=1326 audit(70.071:1859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6462 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   70.242875][   T29] audit: type=1326 audit(70.071:1861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6462 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   70.321224][   T29] audit: type=1400 audit(70.171:1862): avc:  denied  { tracepoint } for  pid=6467 comm="syz.1.1266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   70.340373][   T29] audit: type=1400 audit(70.271:1863): avc:  denied  { create } for  pid=6475 comm="syz.3.1268" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   70.490967][ T6495] wireguard0: entered promiscuous mode
[   70.496617][ T6495] wireguard0: entered allmulticast mode
[   70.627531][ T6515] netlink: 'syz.4.1285': attribute type 3 has an invalid length.
[   70.895172][ T6556] sd 0:0:1:0: device reset
[   71.002503][ T6571] loop4: detected capacity change from 0 to 256
[   71.063908][ T6577] loop4: detected capacity change from 0 to 1024
[   71.073476][ T6577] EXT4-fs: Ignoring removed bh option
[   71.079193][ T6577] EXT4-fs: inline encryption not supported
[   71.085643][ T6577] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   71.100136][ T6577] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   71.110210][ T6577] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 2: comm syz.4.1313: lblock 2 mapped to illegal pblock 2 (length 1)
[   71.124479][ T6577] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 48: comm syz.4.1313: lblock 0 mapped to illegal pblock 48 (length 1)
[   71.139042][ T6577] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1313: Failed to acquire dquot type 0
[   71.151097][ T6577] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   71.161958][ T6577] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.1313: mark_inode_dirty error
[   71.174320][ T6577] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   71.187126][ T6577] EXT4-fs (loop4): 1 orphan inode deleted
[   71.195062][ T6584] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1318'.
[   71.204099][ T6584] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1318'.
[   71.204564][ T6577] EXT4-fs mount: 42 callbacks suppressed
[   71.204592][ T6577] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.213107][ T3602] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:26: lblock 1 mapped to illegal pblock 1 (length 1)
[   71.246484][ T3602] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:26: Failed to release dquot type 0
[   71.275118][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.286574][ T3318] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[   71.299729][ T3318] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   71.311544][ T3318] EXT4-fs error (device loop4): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[   71.352264][ T6597] wireguard0: entered promiscuous mode
[   71.357908][ T6597] wireguard0: entered allmulticast mode
[   71.541080][ T6632] atomic_op ffff88810c8cd528 conn xmit_atomic 0000000000000000
[   71.627540][ T6641] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   71.798383][ T6661] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1362'.
[   72.212755][ T6643] Set syz1 is full, maxelem 65536 reached
[   72.309361][ T6679] 0�X���: renamed from caif0
[   72.324854][ T6679] 0�X���: entered allmulticast mode
[   72.330154][ T6679] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[   72.342167][ T6683] program syz.1.1365 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   72.363335][ T6681] wireguard0: entered promiscuous mode
[   72.368998][ T6681] wireguard0: entered allmulticast mode
[   72.420192][ T6694] loop2: detected capacity change from 0 to 512
[   72.435511][ T6694] EXT4-fs: Ignoring removed oldalloc option
[   72.453576][ T6694] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: comm syz.2.1370: Parent and EA inode have the same ino 15
[   72.471695][ T6694] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: comm syz.2.1370: Parent and EA inode have the same ino 15
[   72.488698][ T6694] EXT4-fs (loop2): 1 orphan inode deleted
[   72.499840][ T6694] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.545207][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.556460][ T6704] loop1: detected capacity change from 0 to 764
[   72.567372][ T6704] Symlink component flag not implemented
[   72.573509][ T6704] Symlink component flag not implemented (129)
[   72.594194][ T6704] rock: directory entry would overflow storage
[   72.600479][ T6704] rock: sig=0x4f50, size=4, remaining=3
[   72.606140][ T6704] iso9660: Corrupted directory entry in block 6 of inode 1792
[   72.655481][ T6711] ip6t_rpfilter: unknown options
[   72.838443][ T6736] netlink: 'syz.4.1389': attribute type 1 has an invalid length.
[   72.849464][ T6740] loop3: detected capacity change from 0 to 128
[   72.856640][ T6740] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   72.868744][ T6740] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   72.958224][ T6754] loop3: detected capacity change from 0 to 512
[   72.965455][ T6754] ext4: Unknown parameter 'mask'
[   73.156366][ T6776] netlink: 'syz.3.1406': attribute type 1 has an invalid length.
[   73.172235][ T6778] 0�X���: renamed from caif0
[   73.178793][ T6778] 0�X���: entered allmulticast mode
[   73.184129][ T6778] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[   73.718800][ T6813] __nla_validate_parse: 2 callbacks suppressed
[   73.718836][ T6813] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1422'.
[   73.734293][ T6813] netlink: 'syz.4.1422': attribute type 7 has an invalid length.
[   73.735387][ T6815] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1423'.
[   73.742319][ T6813] netlink: 'syz.4.1422': attribute type 8 has an invalid length.
[   73.759262][ T6813] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1422'.
[   73.789334][ T6817] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1424'.
[   73.798395][ T6817] netlink: 312 bytes leftover after parsing attributes in process `syz.2.1424'.
[   73.807586][ T6817] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1424'.
[   73.930848][ T6842] wireguard0: entered promiscuous mode
[   73.936494][ T6842] wireguard0: entered allmulticast mode
[   74.004582][ T6856] loop0: detected capacity change from 0 to 128
[   74.011421][ T6856] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   74.024199][ T6856] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   74.130424][ T6874] mmap: syz.1.1449 (6874): VmData 29077504 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[   74.262238][ T6893] loop0: detected capacity change from 0 to 512
[   74.280142][ T6893] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   74.298182][ T6897] loop1: detected capacity change from 0 to 512
[   74.308085][ T6893] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[   74.325485][ T6897] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.1458: bg 0: block 5: invalid block bitmap
[   74.339113][ T6897] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   74.362607][ T6897] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1458: invalid indirect mapped block 3 (level 2)
[   74.376251][ T6897] EXT4-fs (loop1): 2 truncates cleaned up
[   74.382679][ T6897] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.398550][ T6897] EXT4-fs error (device loop1): ext4_check_dx_root:2203: inode #2: comm syz.1.1458: Corrupt dir, invalid name_len for '.', running e2fsck is recommended
[   74.403420][ T6893] EXT4-fs (loop0): 1 truncate cleaned up
[   74.420547][ T6893] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.444433][ T3932] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.467627][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.542229][ T6906] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1462'.
[   74.572049][ T6910] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   74.600907][ T6912] netlink: 'syz.1.1465': attribute type 13 has an invalid length.
[   74.608817][ T6912] netlink: 'syz.1.1465': attribute type 17 has an invalid length.
[   74.631402][ T6912] gretap0: refused to change device tx_queue_len
[   74.644713][ T6912] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   75.074128][   T29] kauditd_printk_skb: 292 callbacks suppressed
[   75.074142][   T29] audit: type=1326 audit(75.041:2153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6958 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   75.120927][   T29] audit: type=1326 audit(75.051:2154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6958 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   75.143859][   T29] audit: type=1400 audit(75.061:2155): avc:  denied  { create } for  pid=6961 comm="syz.4.1488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   75.163721][   T29] audit: type=1326 audit(75.071:2156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6958 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   75.186525][   T29] audit: type=1326 audit(75.071:2157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6958 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   75.209282][   T29] audit: type=1400 audit(75.081:2158): avc:  denied  { write } for  pid=6961 comm="syz.4.1488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   75.212622][ T6970] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1491'.
[   75.229019][   T29] audit: type=1400 audit(75.081:2159): avc:  denied  { read } for  pid=6961 comm="syz.4.1488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   75.229050][   T29] audit: type=1326 audit(75.081:2160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6958 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   75.238009][ T6970] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1491'.
[   75.289880][   T29] audit: type=1326 audit(75.081:2161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6958 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   75.312695][   T29] audit: type=1326 audit(75.081:2162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6958 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf86d9efc9 code=0x7ffc0000
[   75.395707][ T6983] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1498'.
[   76.008892][ T7066] loop2: detected capacity change from 0 to 128
[   76.153217][ T7042] chnl_net:caif_netlink_parms(): no params data found
[   76.280736][ T7042] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.288014][ T7042] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.305784][ T7042] bridge_slave_0: entered allmulticast mode
[   76.312186][ T7042] bridge_slave_0: entered promiscuous mode
[   76.320609][ T7042] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.327892][ T7042] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.335182][ T7042] bridge_slave_1: entered allmulticast mode
[   76.341716][ T7042] bridge_slave_1: entered promiscuous mode
[   76.362103][ T7098] loop2: detected capacity change from 0 to 512
[   76.369951][ T7098] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   76.383381][ T7042] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.387564][ T7098] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[   76.394973][ T7042] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.425890][ T7098] EXT4-fs (loop2): 1 truncate cleaned up
[   76.432347][ T7098] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.446676][ T7042] team0: Port device team_slave_0 added
[   76.453904][ T7042] team0: Port device team_slave_1 added
[   76.490338][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.500345][ T7042] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.507349][ T7042] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   76.533338][ T7042] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.548500][ T7042] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.555555][ T7042] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   76.581620][ T7042] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.640635][ T7042] hsr_slave_0: entered promiscuous mode
[   76.649836][ T7042] hsr_slave_1: entered promiscuous mode
[   76.656031][ T7042] debugfs: 'hsr0' already exists in 'hsr'
[   76.661891][ T7042] Cannot create hsr debugfs directory
[   76.760018][ T7042] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   76.769513][ T7042] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   76.786456][ T7042] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   76.806153][ T7042] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   76.824993][ T7136] IPv6: sit1: Disabled Multicast RS
[   76.841176][ T7136] sit1: entered allmulticast mode
[   76.918743][ T7042] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.941784][ T7042] 8021q: adding VLAN 0 to HW filter on device team0
[   76.952116][ T7158] loop4: detected capacity change from 0 to 512
[   76.976933][ T3624] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.984154][ T3624] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.000616][ T7158] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.1572: bg 0: block 5: invalid block bitmap
[   77.020088][ T3636] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.027221][ T3636] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.028078][ T7158] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   77.047991][ T7158] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1572: invalid indirect mapped block 3 (level 2)
[   77.066347][ T7158] EXT4-fs (loop4): 2 truncates cleaned up
[   77.072586][ T7158] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.122312][ T7158] EXT4-fs error (device loop4): ext4_check_dx_root:2203: inode #2: comm syz.4.1572: Corrupt dir, invalid name_len for '.', running e2fsck is recommended
[   77.161475][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.218770][ T7042] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.348880][ T7209] netlink: 'syz.1.1590': attribute type 6 has an invalid length.
[   77.435637][ T7042] veth0_vlan: entered promiscuous mode
[   77.449637][ T7042] veth1_vlan: entered promiscuous mode
[   77.503681][ T7042] veth0_macvtap: entered promiscuous mode
[   77.512416][ T7042] veth1_macvtap: entered promiscuous mode
[   77.539142][ T7042] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.551789][ T7042] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.570198][ T3636] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.583472][ T3636] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.597994][ T3636] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.616855][ T3636] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.746784][ T7264] loop2: detected capacity change from 0 to 512
[   77.755415][ T7264] EXT4-fs (loop2): orphan cleanup on readonly fs
[   77.762535][ T7264] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1613: error while reading EA inode 32 err=-116
[   77.775656][ T7264] EXT4-fs (loop2): Remounting filesystem read-only
[   77.782283][ T7264] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   77.795395][ T7264] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   77.805725][ T7264] EXT4-fs (loop2): 1 orphan inode deleted
[   77.811958][ T7264] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   77.824663][ T7264] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.870247][ T7272] netlink: 'syz.3.1616': attribute type 3 has an invalid length.
[   77.881886][   T23] kernel read not supported for file /rfkill (pid: 23 comm: kworker/1:0)
[   77.938898][ T7285] : renamed from veth0_to_bond
[   77.989717][ T7293] netlink: 'syz.2.1625': attribute type 21 has an invalid length.
[   78.228415][ T7337] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[   78.414402][ T7365] loop3: detected capacity change from 0 to 2048
[   78.451264][ T7365] Alternate GPT is invalid, using primary GPT.
[   78.457649][ T7365]  loop3: p1 p2 p3
[   78.508080][ T7380] loop1: detected capacity change from 0 to 512
[   78.530426][ T7380] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.638744][ T3932] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.070350][ T7474] dummy0: entered promiscuous mode
[   79.085318][ T7474] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[   79.110129][ T7474] hsr1: entered allmulticast mode
[   79.126366][ T7474] dummy0: entered allmulticast mode
[   79.132584][ T7474] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[   79.329970][ T3404] kernel read not supported for file /rfkill (pid: 3404 comm: kworker/1:5)
[   79.364326][ T7503] loop5: detected capacity change from 0 to 512
[   79.382444][ T7503] EXT4-fs warning (device loop5): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   79.400943][ T7503] EXT4-fs (loop5): mount failed
[   79.494047][ T7527] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   79.581985][ T7536] bridge0: port 3(macsec1) entered blocking state
[   79.588531][ T7536] bridge0: port 3(macsec1) entered disabled state
[   79.620527][ T7536] macsec1: entered allmulticast mode
[   79.626662][ T7536] macsec1: left allmulticast mode
[   79.761935][ T7550] ALSA: seq fatal error: cannot create timer (-19)
[   79.810995][ T7557] __nla_validate_parse: 4 callbacks suppressed
[   79.811015][ T7557] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1688'.
[   79.843894][ T7557] IPVS: Error connecting to the multicast addr
[   80.106316][ T7581] xt_CT: No such helper "pptp"
[   80.137343][ T7584] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1699'.
[   80.146278][ T7584] netlink: 348 bytes leftover after parsing attributes in process `syz.4.1699'.
[   80.155418][ T7584] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1699'.
[   80.164344][ T7584] netlink: 348 bytes leftover after parsing attributes in process `syz.4.1699'.
[   80.180094][ T7584] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1699'.
[   80.238102][ T7584] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1699'.
[   80.247092][ T7584] netlink: 348 bytes leftover after parsing attributes in process `syz.4.1699'.
[   80.256405][ T7584] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1699'.
[   80.265332][ T7584] netlink: 348 bytes leftover after parsing attributes in process `syz.4.1699'.
[   80.275197][   T29] kauditd_printk_skb: 221 callbacks suppressed
[   80.275212][   T29] audit: type=1326 audit(80.251:2383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7586 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f701593efc9 code=0x7ffc0000
[   80.322880][   T29] audit: type=1326 audit(80.251:2384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7586 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f701593efc9 code=0x7ffc0000
[   80.345756][   T29] audit: type=1326 audit(80.281:2385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7586 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f701593efc9 code=0x7ffc0000
[   80.368529][   T29] audit: type=1326 audit(80.281:2386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7586 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f701593efc9 code=0x7ffc0000
[   80.391353][   T29] audit: type=1326 audit(80.281:2387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7586 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f701593efc9 code=0x7ffc0000
[   80.414100][   T29] audit: type=1326 audit(80.281:2388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7586 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f701593efc9 code=0x7ffc0000
[   80.436910][   T29] audit: type=1326 audit(80.281:2389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7586 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f701593efc9 code=0x7ffc0000
[   80.459954][   T29] audit: type=1326 audit(80.281:2390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7586 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f701593efc9 code=0x7ffc0000
[   80.483199][   T29] audit: type=1326 audit(80.281:2391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7586 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f701593efc9 code=0x7ffc0000
[   80.505950][   T29] audit: type=1326 audit(80.281:2392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7586 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f701593efc9 code=0x7ffc0000
[   80.575348][ T7600] program syz.4.1705 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   80.623825][ T7610] loop4: detected capacity change from 0 to 512
[   80.636391][ T7610] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.671445][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.794790][ T7631] loop5: detected capacity change from 0 to 512
[   80.889077][ T7631] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.959435][ T7662] loop2: detected capacity change from 0 to 512
[   80.997413][ T7662] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.1733: bad orphan inode 13
[   81.036019][ T7042] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.045216][ T7662] ext4_test_bit(bit=12, block=4) = 1
[   81.050539][ T7662] is_bad_inode(inode)=0
[   81.054758][ T7662] NEXT_ORPHAN(inode)=0
[   81.058839][ T7662] max_ino=32
[   81.062057][ T7662] i_nlink=1
[   81.073564][ T7662] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.088848][ T7662] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.131947][ T7678] 9pnet: Could not find request transport: 0xffffffffffffffff
[   81.226520][ T7693] loop5: detected capacity change from 0 to 8192
[   81.247791][ T7701] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   81.259568][ T7701] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   81.275176][ T7697] vhci_hcd: invalid port number 23
[   81.280326][ T7697] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[   81.485126][ T7734] veth0_to_bridge: entered promiscuous mode
[   81.493604][ T7735] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   81.503881][ T7732] veth0_to_bridge: left promiscuous mode
[   81.534539][ T7739] loop5: detected capacity change from 0 to 1024
[   81.545950][ T7739] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.546941][ T7741] syzkaller1: entered promiscuous mode
[   81.563555][ T7741] syzkaller1: entered allmulticast mode
[   81.584480][ T7739] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.1768: Allocating blocks 497-513 which overlap fs metadata
[   81.599368][ T7738] EXT4-fs (loop5): pa ffff888107260850: logic 1, phys. 321, len 12
[   81.607455][ T7738] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 1, pa_free 2
[   81.638286][ T7042] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.655075][ T7747] loop3: detected capacity change from 0 to 128
[   81.917310][ T7764] netlink: 'syz.2.1778': attribute type 3 has an invalid length.
[   82.302728][ T7747] syz.3.1771: attempt to access beyond end of device
[   82.302728][ T7747] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[   82.316194][ T7747] Buffer I/O error on dev loop3, logical block 128, lost async page write
[   82.506769][ T7838] loop1: detected capacity change from 0 to 512
[   82.526730][ T7838] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1809: bg 0: block 248: padding at end of block bitmap is not set
[   82.531303][ T7842] loop4: detected capacity change from 0 to 1024
[   82.548036][ T7842] EXT4-fs: Ignoring removed nomblk_io_submit option
[   82.555486][ T7838] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1809: Failed to acquire dquot type 1
[   82.568898][ T7842] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.579595][ T7838] EXT4-fs (loop1): 1 truncate cleaned up
[   82.587523][ T7838] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.621618][ T3932] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.633117][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.718246][ T7857] loop3: detected capacity change from 0 to 8192
[   82.740352][ T3317] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1)
[   82.748299][ T3317] FAT-fs (loop3): Filesystem has been set read-only
[   83.186047][ T7896] loop2: detected capacity change from 0 to 512
[   83.216849][ T7896] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.262339][ T7904] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.297499][ T7908] binfmt_misc: register: failed to install interpreter file ./file0
[   83.326598][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.345019][ T7904] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.378033][ T7916] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   83.421049][ T7904] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.554902][ T7929] syzkaller1: entered promiscuous mode
[   83.560432][ T7929] syzkaller1: entered allmulticast mode
[   83.583645][ T7904] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.628058][ T7942] loop4: detected capacity change from 0 to 128
[   83.685783][ T7952] 9pnet: Unknown protocol version 9
[   83.696047][ T3636] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.723754][ T3636] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.732691][ T3636] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.752784][ T3636] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.864198][ T7982] veth1_to_bond: entered allmulticast mode
[   83.870968][ T7981] veth1_to_bond: left allmulticast mode
[   83.937183][ T8002] unsupported nla_type 7440
[   83.937861][ T8000] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   83.960988][ T8000] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   84.344519][ T8088] netlink: 'syz.4.1895': attribute type 3 has an invalid length.
[   84.515993][ T8121] loop1: detected capacity change from 0 to 1024
[   84.554369][ T8121] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.635521][ T8141] netlink: 'syz.5.1902': attribute type 21 has an invalid length.
[   84.639788][ T8121] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.1899: Allocating blocks 497-513 which overlap fs metadata
[   84.675344][ T8144] binfmt_misc: register: failed to install interpreter file ./file0
[   84.677182][ T8120] EXT4-fs (loop1): pa ffff8881071962a0: logic 1, phys. 321, len 12
[   84.691345][ T8120] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5444: group 0, free 1, pa_free 2
[   84.832834][ T8173] loop2: detected capacity change from 0 to 1024
[   84.851086][ T3932] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.864037][ T8173] EXT4-fs: inline encryption not supported
[   84.924746][ T8173] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.985547][ T8173] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.1910: Allocating blocks 497-513 which overlap fs metadata
[   85.003392][ T8173] EXT4-fs (loop2): Remounting filesystem read-only
[   85.019822][ T8172] EXT4-fs (loop2): pa ffff888107260690: logic 256, phys. 401, len 7
[   85.043868][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.101937][ T8205] sd 0:0:1:0: device reset
[   85.204384][ T8227] __nla_validate_parse: 12 callbacks suppressed
[   85.204399][ T8227] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1934'.
[   85.219996][ T8222] loop3: detected capacity change from 0 to 2048
[   85.288890][ T8222]  loop3: p2 p3 p7
[   85.290677][ T8238] loop7: detected capacity change from 0 to 7
[   85.299788][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   85.302637][ T8240] loop5: detected capacity change from 0 to 128
[   85.308982][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[   85.315384][   T29] kauditd_printk_skb: 202 callbacks suppressed
[   85.315399][   T29] audit: type=1326 audit(85.291:2593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fbf86d9d6ba code=0x7ffc0000
[   85.324564][ T8240] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   85.329688][   T29] audit: type=1326 audit(85.291:2594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fbf86d9d6ba code=0x7ffc0000
[   85.354279][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   85.364090][   T29] audit: type=1326 audit(85.291:2595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7fbf86d9e547 code=0x7ffc0000
[   85.386760][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[   85.386891][ T8238]  loop7: unable to read partition table
[   85.396020][   T29] audit: type=1326 audit(85.291:2596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fbf86d9d6ba code=0x7ffc0000
[   85.420860][ T8238] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[   85.426527][   T29] audit: type=1326 audit(85.291:2597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7fbf86d9e547 code=0x7ffc0000
[   85.491194][   T29] audit: type=1326 audit(85.291:2598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fbf86d9d6ba code=0x7ffc0000
[   85.513994][   T29] audit: type=1326 audit(85.291:2599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fbf86d9d6ba code=0x7ffc0000
[   85.536759][   T29] audit: type=1326 audit(85.291:2600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fbf86d9d6ba code=0x7ffc0000
[   85.559552][   T29] audit: type=1326 audit(85.291:2601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fbf86d9d6ba code=0x7ffc0000
[   85.582296][   T29] audit: type=1326 audit(85.291:2602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7fbf86d9e547 code=0x7ffc0000
[   85.645427][ T8241] support for the xor transformation has been removed.
[   85.760268][ T8263] ------------[ cut here ]------------
[   85.765874][ T8263] verifier bug: REG INVARIANTS VIOLATION (true_reg2): range bounds violation u64=[0x0, 0x7800000000] s64=[0x0, 0xffffffffffffffff] u32=[0x80000000, 0x0] s32=[0x0, 0xffffffff] var_off=(0x0, 0x7800000000)
[   85.785946][ T8263] WARNING: CPU: 0 PID: 8263 at kernel/bpf/verifier.c:2721 reg_bounds_sanity_check+0x673/0x680
[   85.796460][ T8263] Modules linked in:
[   85.800716][ T8263] CPU: 0 UID: 0 PID: 8263 Comm: syz.1.1951 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   85.810783][ T8263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   85.821020][ T8263] RIP: 0010:reg_bounds_sanity_check+0x673/0x680
[   85.827460][ T8263] Code: 7c 24 18 41 ff 74 24 20 55 41 56 4d 89 ee 53 48 8b 5c 24 30 ff 74 24 40 ff 74 24 50 ff 74 24 30 e8 32 f9 ba ff 48 83 c4 38 90 <0f> 0b 90 90 e9 02 fb ff ff 0f 1f 40 00 90 90 90 90 90 90 90 90 90
[   85.847313][ T8263] RSP: 0018:ffffc90002377408 EFLAGS: 00010282
[   85.853529][ T8263] RAX: 6f2c33a4341ca800 RBX: ffff88812ecd9840 RCX: 0000000000080000
[   85.861712][ T8263] RDX: ffffc9000249a000 RSI: 0000000000013c95 RDI: 0000000000013c96
[   85.869937][ T8263] RBP: 0000000000000000 R08: 0001c90002377257 R09: 0000000000000000
[   85.878003][ T8263] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff88812ecd9800
[   85.886163][ T8263] R13: ffff888109878000 R14: ffff888109878000 R15: ffff88812ecd9838
[   85.894207][ T8263] FS:  00007fe934f3f6c0(0000) GS:ffff8882aee13000(0000) knlGS:0000000000000000
[   85.903179][ T8263] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.909822][ T8263] CR2: 00002000000011c0 CR3: 000000010af32000 CR4: 00000000003506f0
[   85.918006][ T8263] Call Trace:
[   85.921468][ T8263]  <TASK>
[   85.924457][ T8263]  reg_set_min_max+0x1eb/0x260
[   85.929253][ T8263]  check_cond_jmp_op+0x1370/0x19e0
[   85.934436][ T8263]  do_check+0x3363/0x8460
[   85.938816][ T8263]  do_check_common+0xc5e/0x12b0
[   85.943721][ T8263]  bpf_check+0xaaae/0xd9d0
[   85.948240][ T8263]  ? __alloc_frozen_pages_noprof+0x188/0x360
[   85.954525][ T8263]  ? __vmap_pages_range_noflush+0xbc4/0xcf0
[   85.960771][ T8263]  ? try_charge_memcg+0x215/0xa10
[   85.966008][ T8263]  ? pcpu_block_update+0x232/0x3b0
[   85.971300][ T8263]  ? pcpu_block_refresh_hint+0x157/0x170
[   85.976992][ T8263]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[   85.979935][ T8271] loop5: detected capacity change from 0 to 512
[   85.983097][ T8263]  ? css_rstat_updated+0xb7/0x240
[   85.990075][ T8271] EXT4-fs: Ignoring removed i_version option
[   85.994511][ T8263]  ? __rcu_read_unlock+0x4f/0x70
[   86.000570][ T8271] EXT4-fs: Ignoring removed bh option
[   86.005491][ T8263]  ? pcpu_memcg_post_alloc_hook+0xf1/0x150
[   86.016708][ T8263]  ? bpf_prog_alloc+0x5b/0x150
[   86.021507][ T8263]  ? pcpu_alloc_noprof+0xd29/0x1250
[   86.026754][ T8263]  ? should_fail_ex+0x30/0x280
[   86.031620][ T8263]  ? should_failslab+0x8c/0xb0
[   86.036469][ T8263]  ? __kmalloc_noprof+0x2a2/0x570
[   86.041623][ T8263]  ? security_bpf_prog_load+0x60/0x140
[   86.047165][ T8263]  ? selinux_bpf_prog_load+0xad/0xd0
[   86.047456][ T8271] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.052485][ T8263]  ? security_bpf_prog_load+0x9e/0x140
[   86.070448][ T8263]  bpf_prog_load+0xf6e/0x1100
[   86.075518][ T8263]  ? security_bpf+0x2b/0x90
[   86.080197][ T8263]  __sys_bpf+0x469/0x7c0
[   86.084590][ T8263]  __x64_sys_bpf+0x41/0x50
[   86.089116][ T8263]  x64_sys_call+0x2aee/0x3000
[   86.093810][ T8263]  do_syscall_64+0xd2/0x200
[   86.098362][ T8263]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   86.104519][ T8263]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   86.110320][ T8263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.116293][ T8263] RIP: 0033:0x7fe9364defc9
[   86.120758][ T8263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.140580][ T8263] RSP: 002b:00007fe934f3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   86.149187][ T8263] RAX: ffffffffffffffda RBX: 00007fe936735fa0 RCX: 00007fe9364defc9
[   86.157217][ T8263] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[   86.165281][ T8263] RBP: 00007fe936561f91 R08: 0000000000000000 R09: 0000000000000000
[   86.173251][ T8263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.181238][ T8263] R13: 00007fe936736038 R14: 00007fe936735fa0 R15: 00007ffd18cdd438
[   86.189236][ T8263]  </TASK>
[   86.192250][ T8263] ---[ end trace 0000000000000000 ]---
[   86.199585][ T7042] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.433754][ T8309] loop1: detected capacity change from 0 to 1024
[   86.459658][ T8309] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.492744][ T3932] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.534404][ T8326] IPv6: NLM_F_CREATE should be specified when creating new route
[   86.632376][ T8334] loop4: detected capacity change from 0 to 8192
[   87.057503][ T8368] netlink: 'syz.2.1997': attribute type 2 has an invalid length.
[   87.125745][ T8372] IPVS: stopping master sync thread 8373 ...
[   87.136690][ T8373] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[   87.390589][ T8352] syz.1.1990 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   87.404781][ T8352] CPU: 1 UID: 0 PID: 8352 Comm: syz.1.1990 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   87.404835][ T8352] Tainted: [W]=WARN
[   87.404844][ T8352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   87.404857][ T8352] Call Trace:
[   87.404863][ T8352]  <TASK>
[   87.404871][ T8352]  __dump_stack+0x1d/0x30
[   87.404895][ T8352]  dump_stack_lvl+0xe8/0x140
[   87.404982][ T8352]  dump_stack+0x15/0x1b
[   87.405003][ T8352]  dump_header+0x81/0x220
[   87.405073][ T8352]  oom_kill_process+0x342/0x400
[   87.405113][ T8352]  out_of_memory+0x979/0xb80
[   87.405153][ T8352]  try_charge_memcg+0x610/0xa10
[   87.405194][ T8352]  obj_cgroup_charge_pages+0xa6/0x150
[   87.405244][ T8352]  __memcg_kmem_charge_page+0x9f/0x170
[   87.405267][ T8352]  __alloc_frozen_pages_noprof+0x188/0x360
[   87.405314][ T8352]  alloc_pages_mpol+0xb3/0x260
[   87.405400][ T8352]  ? alloc_pages_noprof+0xf4/0x130
[   87.405446][ T8352]  alloc_pages_noprof+0x90/0x130
[   87.405466][ T8352]  __vmalloc_node_range_noprof+0x7a5/0xed0
[   87.405548][ T8352]  __kvmalloc_node_noprof+0x483/0x670
[   87.405582][ T8352]  ? ip_set_alloc+0x24/0x30
[   87.405628][ T8352]  ? ip_set_alloc+0x24/0x30
[   87.405705][ T8352]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   87.405765][ T8352]  ip_set_alloc+0x24/0x30
[   87.405801][ T8352]  hash_netiface_create+0x282/0x740
[   87.405881][ T8352]  ? __pfx_hash_netiface_create+0x10/0x10
[   87.405915][ T8352]  ip_set_create+0x3cc/0x970
[   87.405949][ T8352]  ? __nla_parse+0x40/0x60
[   87.405977][ T8352]  nfnetlink_rcv_msg+0x4c6/0x590
[   87.406073][ T8352]  netlink_rcv_skb+0x123/0x220
[   87.406105][ T8352]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   87.406262][ T8352]  nfnetlink_rcv+0x167/0x16c0
[   87.406287][ T8352]  ? kmem_cache_free+0xe4/0x3d0
[   87.406339][ T8352]  ? __kfree_skb+0x109/0x150
[   87.406395][ T8352]  ? nlmon_xmit+0x4f/0x60
[   87.406418][ T8352]  ? consume_skb+0x49/0x150
[   87.406448][ T8352]  ? nlmon_xmit+0x4f/0x60
[   87.406477][ T8352]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   87.406578][ T8352]  ? __dev_queue_xmit+0x1200/0x2000
[   87.406653][ T8352]  ? __dev_queue_xmit+0x182/0x2000
[   87.406736][ T8352]  ? ref_tracker_free+0x37d/0x3e0
[   87.406830][ T8352]  ? __netlink_deliver_tap+0x4dc/0x500
[   87.406875][ T8352]  netlink_unicast+0x5c0/0x690
[   87.406986][ T8352]  netlink_sendmsg+0x58b/0x6b0
[   87.407013][ T8352]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.407083][ T8352]  __sock_sendmsg+0x145/0x180
[   87.407114][ T8352]  ____sys_sendmsg+0x31e/0x4e0
[   87.407160][ T8352]  ___sys_sendmsg+0x17b/0x1d0
[   87.407256][ T8352]  __x64_sys_sendmsg+0xd4/0x160
[   87.407305][ T8352]  x64_sys_call+0x191e/0x3000
[   87.407359][ T8352]  do_syscall_64+0xd2/0x200
[   87.407382][ T8352]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   87.407416][ T8352]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   87.407485][ T8352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.407512][ T8352] RIP: 0033:0x7fe9364defc9
[   87.407528][ T8352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.407545][ T8352] RSP: 002b:00007fe934f3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.407568][ T8352] RAX: ffffffffffffffda RBX: 00007fe936735fa0 RCX: 00007fe9364defc9
[   87.407653][ T8352] RDX: 0000000000000800 RSI: 0000200000000200 RDI: 0000000000000003
[   87.407669][ T8352] RBP: 00007fe936561f91 R08: 0000000000000000 R09: 0000000000000000
[   87.407711][ T8352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   87.407740][ T8352] R13: 00007fe936736038 R14: 00007fe936735fa0 R15: 00007ffd18cdd438
[   87.407758][ T8352]  </TASK>
[   87.407765][ T8352] memory: usage 307200kB, limit 307200kB, failcnt 235
[   87.765286][ T8352] memory+swap: usage 307392kB, limit 9007199254740988kB, failcnt 0
[   87.773165][ T8352] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[   87.780481][ T8352] Memory cgroup stats for /syz1:
[   87.780937][ T8352] cache 0
[   87.788961][ T8352] rss 0
[   87.791796][ T8352] shmem 0
[   87.794760][ T8352] mapped_file 0
[   87.798336][ T8352] dirty 0
[   87.801280][ T8352] writeback 0
[   87.804662][ T8352] workingset_refault_anon 1056
[   87.809440][ T8352] workingset_refault_file 4
[   87.814029][ T8352] swap 196608
[   87.817321][ T8352] swapcached 4096
[   87.821028][ T8352] pgpgin 33186
[   87.824443][ T8352] pgpgout 33182
[   87.827907][ T8352] pgfault 60762
[   87.831379][ T8352] pgmajfault 154
[   87.833514][ T8396] netem: change failed
[   87.834947][ T8352] inactive_anon 0
[   87.834956][ T8352] active_anon 4096
[   87.834964][ T8352] inactive_file 0
[   87.834971][ T8352] active_file 12288
[   87.853987][ T8352] unevictable 0
[   87.857449][ T8352] hierarchical_memory_limit 314572800
[   87.862832][ T8352] hierarchical_memsw_limit 9223372036854771712
[   87.869056][ T8352] total_cache 0
[   87.872569][ T8352] total_rss 0
[   87.875885][ T8352] total_shmem 0
[   87.879331][ T8352] total_mapped_file 0
[   87.883343][ T8352] total_dirty 0
[   87.886861][ T8352] total_writeback 0
[   87.890664][ T8352] total_workingset_refault_anon 1056
[   87.895966][ T8352] total_workingset_refault_file 4
[   87.900980][ T8352] total_swap 196608
[   87.904807][ T8352] total_swapcached 4096
[   87.908969][ T8352] total_pgpgin 33186
[   87.912847][ T8352] total_pgpgout 33182
[   87.916850][ T8352] total_pgfault 60762
[   87.920877][ T8352] total_pgmajfault 154
[   87.924945][ T8352] total_inactive_anon 0
[   87.929083][ T8352] total_active_anon 4096
[   87.933320][ T8352] total_inactive_file 0
[   87.937501][ T8352] total_active_file 12288
[   87.941879][ T8352] total_unevictable 0
[   87.945864][ T8352] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1990,pid=8351,uid=0
[   87.960624][ T8352] Memory cgroup out of memory: Killed process 8351 (syz.1.1990) total-vm:93824kB, anon-rss:1140kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   87.996906][ T8404] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2014'.
[   88.302844][ T8439] loop3: detected capacity change from 0 to 1024
[   88.317575][ T8433] loop1: detected capacity change from 0 to 2048
[   88.341039][ T8439] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.368508][ T8433] EXT4-fs (loop1): bad block size 8192
[   88.386363][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.463048][ T8455] loop1: detected capacity change from 0 to 128
[   88.487551][ T8455] syz.1.2037: attempt to access beyond end of device
[   88.487551][ T8455] loop1: rw=2049, sector=154, nr_sectors = 6 limit=128
[   88.514445][ T8455] syz.1.2037: attempt to access beyond end of device
[   88.514445][ T8455] loop1: rw=2049, sector=158, nr_sectors = 2 limit=128
[   88.527908][ T8455] Buffer I/O error on dev loop1, logical block 79, lost async page write
[   88.536970][ T8455] syz.1.2037: attempt to access beyond end of device
[   88.536970][ T8455] loop1: rw=2049, sector=160, nr_sectors = 2 limit=128
[   88.550523][ T8455] Buffer I/O error on dev loop1, logical block 80, lost async page write
[   88.622579][ T8455] syz.1.2037: attempt to access beyond end of device
[   88.622579][ T8455] loop1: rw=2049, sector=162, nr_sectors = 6 limit=128
[   88.636540][ T8455] syz.1.2037: attempt to access beyond end of device
[   88.636540][ T8455] loop1: rw=2049, sector=166, nr_sectors = 2 limit=128
[   88.650103][ T8455] Buffer I/O error on dev loop1, logical block 83, lost async page write
[   88.658636][ T8455] syz.1.2037: attempt to access beyond end of device
[   88.658636][ T8455] loop1: rw=2049, sector=168, nr_sectors = 2 limit=128
[   88.672055][ T8455] Buffer I/O error on dev loop1, logical block 84, lost async page write
[   88.680999][ T8455] syz.1.2037: attempt to access beyond end of device
[   88.680999][ T8455] loop1: rw=2049, sector=186, nr_sectors = 6 limit=128
[   88.694795][ T8455] syz.1.2037: attempt to access beyond end of device
[   88.694795][ T8455] loop1: rw=2049, sector=190, nr_sectors = 2 limit=128
[   88.708244][ T8455] Buffer I/O error on dev loop1, logical block 95, lost async page write
[   88.719470][ T8455] syz.1.2037: attempt to access beyond end of device
[   88.719470][ T8455] loop1: rw=2049, sector=192, nr_sectors = 2 limit=128
[   88.732925][ T8455] Buffer I/O error on dev loop1, logical block 96, lost async page write
[   88.741833][ T8455] syz.1.2037: attempt to access beyond end of device
[   88.741833][ T8455] loop1: rw=2049, sector=194, nr_sectors = 6 limit=128
[   88.755609][ T8455] Buffer I/O error on dev loop1, logical block 99, lost async page write
[   88.764915][ T8455] Buffer I/O error on dev loop1, logical block 100, lost async page write
[   88.774183][ T8455] Buffer I/O error on dev loop1, logical block 111, lost async page write
[   88.782741][ T8455] Buffer I/O error on dev loop1, logical block 112, lost async page write
[   88.863388][ T8469] SELinux: security_context_str_to_sid (�r��3`Va��h�o�H�d)����!��^b��"��q��5e�� M6�c��=��Ds�
�c��5QQ!��~6⪨_�����V��z��l�fx���$ά'T
[   88.863388][ T8469] ͥ����*��M��g�ke�c\��魺�D��T����o�I>ECb
Ȍ�zK�	,�ձzm炦����Q��u`x��V��H�a�'vy��/�W�)��LSu=��㮴�KxR&�#(X~AZO���K!<#c��>w׷O�ӎ�)�) failed with errno=-22
[   89.391003][ T8526] loop3: detected capacity change from 0 to 512
[   89.435876][ T8526] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.464578][ T8526] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.2055: corrupted inode contents
[   89.482291][ T8526] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.2055: mark_inode_dirty error
[   89.502664][ T8539] loop2: detected capacity change from 0 to 512
[   89.510599][ T8526] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.2055: corrupted inode contents
[   89.530645][ T8539] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   89.584228][ T8539] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.2056: bg 0: block 104: invalid block bitmap
[   89.611815][ T8539] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   89.621735][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.632023][ T8539] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2056: invalid indirect mapped block 1 (level 1)
[   89.654532][ T8539] EXT4-fs (loop2): 1 truncate cleaned up
[   89.662944][ T8539] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.764653][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.839243][ T8581] sg_write: data in/out 196864/1 bytes for SCSI command 0x0-- guessing data in;
[   89.839243][ T8581]    program syz.3.2065 not setting count and/or reply_len properly
[   89.863045][ T8585] loop5: detected capacity change from 0 to 128
[   89.870614][ T8583] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   89.907088][ T8583] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   89.946815][ T8603] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2073'.
[   89.973235][ T8602] siw: device registration error -23
[   89.995825][ T8609] loop5: detected capacity change from 0 to 128
[   90.202552][ T8653] syzkaller1: entered promiscuous mode
[   90.208251][ T8653] syzkaller1: entered allmulticast mode
[   90.315969][ T8660] loop4: detected capacity change from 0 to 2048
[   90.325365][ T8660] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.342803][   T29] kauditd_printk_skb: 192 callbacks suppressed
[   90.342820][   T29] audit: type=1400 audit(90.311:2795): avc:  denied  { setattr } for  pid=8659 comm="syz.4.2091" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   90.373358][   T29] audit: type=1400 audit(90.351:2796): avc:  denied  { read } for  pid=8661 comm="syz.2.2090" lport=41896 faddr=fe80::bb scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   90.412570][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.434700][   T29] audit: type=1400 audit(90.411:2797): avc:  denied  { ioctl } for  pid=8661 comm="syz.2.2090" path="socket:[21384]" dev="sockfs" ino=21384 ioctlcmd=0x8907 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   90.487643][   T29] audit: type=1326 audit(90.441:2798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8672 comm="syz.4.2094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9077defc9 code=0x7ffc0000
[   90.510495][   T29] audit: type=1326 audit(90.441:2799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8672 comm="syz.4.2094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9077defc9 code=0x7ffc0000
[   90.533440][   T29] audit: type=1326 audit(90.441:2800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8672 comm="syz.4.2094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7fa9077defc9 code=0x7ffc0000
[   90.556253][   T29] audit: type=1326 audit(90.441:2801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8672 comm="syz.4.2094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9077defc9 code=0x7ffc0000
[   90.578991][   T29] audit: type=1326 audit(90.441:2802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8672 comm="syz.4.2094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9077defc9 code=0x7ffc0000
[   90.601814][   T29] audit: type=1400 audit(90.461:2803): avc:  denied  { wake_alarm } for  pid=8676 comm="syz.4.2097" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   90.629955][   T29] audit: type=1400 audit(90.601:2804): avc:  denied  { listen } for  pid=8674 comm="syz.3.2096" lport=56959 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   90.707274][ T8690] loop4: detected capacity change from 0 to 512
[   90.714146][ T8690] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   90.722838][ T8690] EXT4-fs (loop4): invalid journal inode
[   90.728639][ T8690] EXT4-fs (loop4): can't get journal size
[   90.735209][ T8690] EXT4-fs (loop4): 1 truncate cleaned up
[   90.741429][ T8690] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.756300][ T8690] EXT4-fs (loop4): shut down requested (0)
[   90.773179][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.045869][ T8713] loop4: detected capacity change from 0 to 128
[   91.073253][ T8716] loop1: detected capacity change from 0 to 512
[   91.098392][ T8716] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.133580][ T3932] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.169816][ T8723] loop1: detected capacity change from 0 to 128
[   91.211849][ T8727] siw: device registration error -23
[   91.344326][ T8739] ALSA: seq fatal error: cannot create timer (-19)
[   91.364561][ T8742] wireguard0: entered promiscuous mode
[   91.370186][ T8742] wireguard0: entered allmulticast mode
[   91.620842][ T8771] xt_TPROXY: Can be used only with -p tcp or -p udp
[   91.697655][ T3623] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.739884][ T8784] loop4: detected capacity change from 0 to 512
[   91.765687][ T8784] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.2142: error while reading EA inode 32 err=-116
[   91.780340][ T3623] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.790997][ T8784] EXT4-fs (loop4): Remounting filesystem read-only
[   91.800979][ T8784] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   91.814098][ T8784] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   91.830948][ T8784] EXT4-fs (loop4): 1 orphan inode deleted
[   91.837477][ T8784] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.905933][ T3623] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.919646][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.938028][ T3623] netdevsim netdevsim1 netdevsim0 (unregistering): left promiscuous mode
[   91.948613][ T8801] loop3: detected capacity change from 0 to 512
[   91.956556][ T8801] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[   91.957374][ T3623] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.984843][ T8801] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2151: bg 0: block 104: invalid block bitmap
[   92.029884][ T8801] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   92.046952][ T8801] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.2151: invalid indirect mapped block 1 (level 1)
[   92.067103][ T8801] EXT4-fs (loop3): 1 truncate cleaned up
[   92.104502][ T8801] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.149944][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.191621][ T3623] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   92.216076][ T3623] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   92.226332][ T3623] bond0 (unregistering): Released all slaves
[   92.236149][ T3623] bond1 (unregistering): Released all slaves
[   92.424647][ T3623] dummy0: left promiscuous mode
[   92.441786][ T3623] hsr_slave_0: left promiscuous mode
[   92.456550][ T3623] hsr_slave_1: left promiscuous mode
[   92.481297][ T3623] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   92.488845][ T3623] batman_adv: batadv0: Removing interface: batadv_slave_0
[   92.513708][ T3623] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   92.521226][ T3623] batman_adv: batadv0: Removing interface: batadv_slave_1
[   92.537412][ T3623] veth1_macvtap: left promiscuous mode
[   92.554369][ T3623] veth0_macvtap: left promiscuous mode
[   92.566702][ T3623] veth1_vlan: left promiscuous mode
[   92.577726][ T3623] veth0_vlan: left promiscuous mode
[   92.921372][ T3623] team0 (unregistering): Port device team_slave_1 removed
[   92.931878][ T3623] team0 (unregistering): Port device team_slave_0 removed
[   92.972640][ T8915] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2174'.
[   92.983508][ T8919] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2174'.
[   93.024224][ T8791] chnl_net:caif_netlink_parms(): no params data found
[   93.101722][ T8791] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.108914][ T8791] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.124315][ T8791] bridge_slave_0: entered allmulticast mode
[   93.130491][ T8938] SELinux:  Context system_u:object_r:systemd_systemctl_exec_t:s0 is not valid (left unmapped).
[   93.130913][ T8791] bridge_slave_0: entered promiscuous mode
[   93.148090][ T8791] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.155183][ T8791] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.162472][ T8791] bridge_slave_1: entered allmulticast mode
[   93.169230][ T8791] bridge_slave_1: entered promiscuous mode
[   93.195692][ T8791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   93.208774][ T8791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   93.233890][ T8791] team0: Port device team_slave_0 added
[   93.252820][ T8791] team0: Port device team_slave_1 added
[   93.285729][ T3623] IPVS: stop unused estimator thread 0...
[   93.316293][ T8956] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8956 comm=syz.5.2190
[   93.328803][ T8956] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8956 comm=syz.5.2190
[   93.455949][ T8791] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.463163][ T8791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.489151][ T8791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.503887][ T8791] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.510949][ T8791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.537062][ T8791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.604858][ T8791] hsr_slave_0: entered promiscuous mode
[   93.648007][ T8791] hsr_slave_1: entered promiscuous mode
[   93.654654][ T8791] debugfs: 'hsr0' already exists in 'hsr'
[   93.660515][ T8791] Cannot create hsr debugfs directory
[   93.701390][ T8978] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2199'.
[   93.712106][ T8978] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2199'.
[   93.721111][ T8978] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2199'.
[   93.793919][ T8983] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2201'.
[   93.808921][ T8985] IPv6: NLM_F_CREATE should be specified when creating new route
[   93.833807][ T8987] loop2: detected capacity change from 0 to 128
[   93.867900][ T8791] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   93.873257][ T8989] loop3: detected capacity change from 0 to 2048
[   93.887973][ T8791] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   93.900896][ T8791] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   93.925947][ T8791] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   93.939193][ T8989] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.997213][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.004490][ T8791] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.013302][ T8791] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.020658][ T8791] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.027763][ T8791] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.029230][ T9006] netlink: 67 bytes leftover after parsing attributes in process `syz.4.2209'.
[   94.058974][ T3627] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.077905][ T3627] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.126313][ T8791] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.139170][ T9016] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   94.146839][ T9016] vhci_hcd: invalid port number 96
[   94.151747][ T8791] 8021q: adding VLAN 0 to HW filter on device team0
[   94.151981][ T9016] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   94.174373][ T3623] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.181540][ T3623] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.205405][ T3584] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.212507][ T3584] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.253353][ T8791] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   94.263836][ T8791] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   94.287999][ T9028] loop2: detected capacity change from 0 to 512
[   94.296999][ T9028] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.2219: inode has both inline data and extents flags
[   94.362241][ T9028] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.2219: couldn't read orphan inode 15 (err -117)
[   94.398433][ T8791] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.414817][ T9028] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.490701][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.631570][ T8791] veth0_vlan: entered promiscuous mode
[   94.641744][ T9076] netlink: 48 bytes leftover after parsing attributes in process `syz.5.2234'.
[   94.653655][ T8791] veth1_vlan: entered promiscuous mode
[   94.660796][ T9078] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   94.669027][ T9078] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   94.691678][ T8791] veth0_macvtap: entered promiscuous mode
[   94.715702][ T8791] veth1_macvtap: entered promiscuous mode
[   94.744755][ T8791] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.759646][ T8791] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.772862][ T3627] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.781790][ T3627] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.792160][ T9099] loop5: detected capacity change from 0 to 512
[   94.793855][ T3627] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.809303][ T9098] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   94.817978][ T9099] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   94.840487][ T3627] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.841069][ T9097] SELinux: failed to load policy
[   94.861941][ T9099] EXT4-fs (loop5): 1 truncate cleaned up
[   94.868943][ T9099] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.030788][ T7042] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.207554][ T9147] atomic_op ffff888118435d28 conn xmit_atomic 0000000000000000
[   95.339857][ T9162] netlink: 'syz.6.2273': attribute type 13 has an invalid length.
[   95.398339][ T9162] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.405611][ T9162] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.442672][ T9162] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   95.454761][ T9162] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   95.499937][ T9166] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2272'.
[   95.509325][ T3584] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   95.518844][ T3584] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   95.528114][ T3584] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   95.537173][ T3584] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   95.568835][   T29] kauditd_printk_skb: 205 callbacks suppressed
[   95.568848][   T29] audit: type=1326 audit(351.541:3010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9173 comm="syz.4.2278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9077defc9 code=0x7ffc0000
[   95.615496][   T29] audit: type=1326 audit(351.581:3011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9173 comm="syz.4.2278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7fa9077defc9 code=0x7ffc0000
[   95.638471][   T29] audit: type=1326 audit(351.581:3012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9173 comm="syz.4.2278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9077defc9 code=0x7ffc0000
[   95.661304][   T29] audit: type=1326 audit(351.581:3013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9173 comm="syz.4.2278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9077defc9 code=0x7ffc0000
[   95.684404][   T29] audit: type=1326 audit(351.591:3014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9175 comm="syz.6.2277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c0203efc9 code=0x7ffc0000
[   95.707373][   T29] audit: type=1326 audit(351.591:3015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9175 comm="syz.6.2277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c0203efc9 code=0x7ffc0000
[   95.730532][   T29] audit: type=1326 audit(351.591:3016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9175 comm="syz.6.2277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f4c0203efc9 code=0x7ffc0000
[   95.753443][   T29] audit: type=1326 audit(351.591:3017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9175 comm="syz.6.2277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c0203efc9 code=0x7ffc0000
[   95.776517][   T29] audit: type=1326 audit(351.591:3018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9175 comm="syz.6.2277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c0203efc9 code=0x7ffc0000
[   95.799602][   T29] audit: type=1400 audit(351.661:3019): avc:  denied  { bind } for  pid=9181 comm="syz.3.2281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   95.978985][ T9209] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2293'.
[   96.285589][ T9226] loop4: detected capacity change from 0 to 1024
[   96.292270][ T9226] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   96.482525][ T9244] loop4: detected capacity change from 0 to 512
[   96.508737][ T9244] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   96.542008][ T9244] EXT4-fs (loop4): 1 truncate cleaned up
[   96.556975][ T9244] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.594459][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.788548][ T9269] loop6: detected capacity change from 0 to 128
[   97.032122][ T9294] infiniband syz!: set down
[   97.036840][ T9294] infiniband syz!: added team_slave_0
[   97.058908][ T9294] RDS/IB: syz!: added
[   97.063057][ T9294] smc: adding ib device syz! with port count 1
[   97.070465][ T9294] smc:    ib device syz! port 1 has no pnetid
[   97.097723][ T9308] loop3: detected capacity change from 0 to 128
[   97.758687][ T9358] netlink: 'syz.3.2364': attribute type 13 has an invalid length.
[   98.097477][ T9367] __nla_validate_parse: 4 callbacks suppressed
[   98.097530][ T9367] netlink: 372 bytes leftover after parsing attributes in process `+}[@'.
[   98.219623][ T9358] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.226883][ T9358] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.239521][ T9373] loop6: detected capacity change from 0 to 8192
[   98.294930][ T9373] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   98.314648][ T9383] 9pnet_fd: Insufficient options for proto=fd
[   98.415492][ T9394] loop5: detected capacity change from 0 to 512
[   98.433060][ T9394] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.2377: error while reading EA inode 32 err=-116
[   98.452557][ T9394] EXT4-fs (loop5): Remounting filesystem read-only
[   98.459302][ T9394] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   98.471204][ T9394] EXT4-fs (loop5): 1 orphan inode deleted
[   98.477799][ T9394] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.815466][ T9417] sd 0:0:1:0: device reset
[   98.888530][ T9358] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   98.928261][ T9358] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   99.309284][   T36] kernel write not supported for file bpf-prog (pid: 36 comm: kworker/1:1)
[   99.361443][ T3618] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   99.374324][ T3618] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   99.397029][ T3618] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   99.415242][ T3618] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   99.494715][ T9450] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2399'.
[   99.628251][ T9473] netlink: 'syz.3.2410': attribute type 6 has an invalid length.
[   99.705327][ T7042] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.747942][ T9493] program syz.4.2420 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   99.806594][ T9499] vhci_hcd: invalid port number 96
[   99.811757][ T9499] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[   99.838282][ T9505] vhci_hcd: default hub control req: 0314 v001b i0006 l0
[   99.913688][ T9520] loop4: detected capacity change from 0 to 128
[   99.921826][ T9520] FAT-fs (loop4): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  100.054129][ T9536] loop6: detected capacity change from 0 to 8192
[  100.236433][ T9568] loop4: detected capacity change from 0 to 128
[  100.243417][ T9568] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  100.255633][ T9568] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  100.282196][ T3584] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  100.558744][ T9587] SELinux:  Context system_u:object_r:ldconfig_exec_t:s0 is not valid (left unmapped).
[  100.586833][   T29] kauditd_printk_skb: 262 callbacks suppressed
[  100.586849][   T29] audit: type=1400 audit(356.561:3282): avc:  denied  { kexec_image_load } for  pid=9588 comm="syz.3.2466" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  100.660392][ T9593] loop6: detected capacity change from 0 to 764
[  100.688415][ T9593] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  100.700503][ T9599] netlink: 6 bytes leftover after parsing attributes in process `syz.2.2471'.
[  100.725813][ T9593] Symlink component flag not implemented
[  100.732070][ T9593] Symlink component flag not implemented (7)
[  100.755195][   T29] audit: type=1400 audit(356.701:3283): avc:  denied  { mount } for  pid=9592 comm="syz.6.2468" name="/" dev="loop6" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  100.777200][   T29] audit: type=1400 audit(356.721:3284): avc:  denied  { unmount } for  pid=8791 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  100.866107][ T9617] netlink: 'syz.3.2480': attribute type 2 has an invalid length.
[  100.939150][ T9627] syzkaller1: entered promiscuous mode
[  100.944709][ T9627] syzkaller1: entered allmulticast mode
[  100.955605][ T9625] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  100.965324][   T29] audit: type=1400 audit(356.921:3285): avc:  denied  { create } for  pid=9628 comm="syz.6.2486" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  100.984501][   T29] audit: type=1400 audit(356.931:3286): avc:  denied  { connect } for  pid=9628 comm="syz.6.2486" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  101.003632][   T29] audit: type=1400 audit(356.941:3287): avc:  denied  { relabelto } for  pid=9624 comm="syz.5.2484" name="129" dev="tmpfs" ino=678 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  101.029498][   T29] audit: type=1400 audit(356.941:3288): avc:  denied  { associate } for  pid=9624 comm="syz.5.2484" name="129" dev="tmpfs" ino=678 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:fsadm_exec_t:s0"
[  101.071280][   T29] audit: type=1400 audit(357.041:3289): avc:  denied  { remove_name } for  pid=7042 comm="syz-executor" name="binderfs" dev="tmpfs" ino=682 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  101.097850][   T29] audit: type=1400 audit(357.041:3290): avc:  denied  { rmdir } for  pid=7042 comm="syz-executor" name="129" dev="tmpfs" ino=678 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  101.133989][   T29] audit: type=1326 audit(357.101:3291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9633 comm="syz.5.2488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e6d0defc9 code=0x7ffc0000
[  101.188190][ T9636] loop5: detected capacity change from 0 to 1024
[  101.225840][ T9636] EXT4-fs: Ignoring removed nomblk_io_submit option
[  101.264923][ T9636] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  101.359313][ T9636] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.445671][ T7042] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.457783][ T9640] loop3: detected capacity change from 0 to 128
[  101.511115][ T9659] loop6: detected capacity change from 0 to 512
[  101.576136][ T9659] EXT4-fs error (device loop6): ext4_xattr_inode_iget:446: comm syz.6.2496: error while reading EA inode 32 err=-116
[  101.644297][ T9659] EXT4-fs (loop6): Remounting filesystem read-only
[  101.654087][ T9659] EXT4-fs warning (device loop6): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  101.672996][ T9659] EXT4-fs (loop6): 1 orphan inode deleted
[  101.680566][ T9659] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.751524][ T8791] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.109366][ T9702] loop4: detected capacity change from 0 to 1024
[  102.119153][ T9702] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  102.132472][ T9702] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.2515: Invalid block bitmap block 0 in block_group 0
[  102.146601][ T9702] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.2515: Failed to acquire dquot type 0
[  102.158417][ T9702] EXT4-fs error (device loop4): ext4_free_blocks:6706: comm syz.4.2515: Freeing blocks not in datazone - block = 0, count = 4096
[  102.172216][ T9702] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.2515: Invalid inode bitmap blk 0 in block_group 0
[  102.185265][ T3623] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:46: Failed to release dquot type 0
[  102.192165][ T9702] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  102.214693][ T9702] EXT4-fs (loop4): 1 orphan inode deleted
[  102.224522][ T9702] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.258664][ T9702] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.619827][ T9748] loop5: detected capacity change from 0 to 7
[  102.731736][ T9753] netlink: 'syz.5.2539': attribute type 13 has an invalid length.
[  102.752649][ T9756] loop3: detected capacity change from 0 to 1024
[  102.954057][ T9753] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.961378][ T9753] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.066395][ T9753] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  103.080178][ T9756] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.105042][ T9753] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  103.132289][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.202483][ T3623] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  103.228126][ T3623] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  103.245515][ T9769] loop2: detected capacity change from 0 to 512
[  103.251504][ T3623] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  103.269675][ T3623] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  103.287449][ T9769] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.2544: error while reading EA inode 32 err=-116
[  103.316297][ T9769] EXT4-fs (loop2): Remounting filesystem read-only
[  103.333313][ T9769] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  103.358563][ T9769] EXT4-fs (loop2): 1 orphan inode deleted
[  103.364824][ T9769] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.417584][ T9787] sd 0:0:1:0: device reset
[  103.429033][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.550239][ T9807] netlink: 64 bytes leftover after parsing attributes in process `syz.6.2562'.
[  103.567801][ T9804] loop2: detected capacity change from 0 to 512
[  103.585914][ T9804] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  103.616171][ T9804] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  103.642455][ T9804] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2561: bg 0: block 248: padding at end of block bitmap is not set
[  103.661931][ T9804] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.2561: Failed to acquire dquot type 1
[  103.674934][ T9804] EXT4-fs (loop2): 1 truncate cleaned up
[  103.681038][ T9804] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  103.696177][ T9817] loop3: detected capacity change from 0 to 512
[  103.702970][ T9817] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  103.720969][ T9819] loop5: detected capacity change from 0 to 1024
[  103.727953][ T9819] EXT4-fs: Ignoring removed bh option
[  103.737878][ T9819] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  103.766173][ T9819] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.810306][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  103.842173][ T7042] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.080138][ T9859] SELinux:  policydb version 0 does not match my version range 15-35
[  104.108905][ T9859] SELinux: failed to load policy
[  104.311084][ T9885] loop2: detected capacity change from 0 to 512
[  104.318865][ T9883] loop5: detected capacity change from 0 to 512
[  104.326273][ T9885] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  104.337843][ T9885] EXT4-fs (loop2): 1 truncate cleaned up
[  104.344576][ T9885] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.384773][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.394986][ T9883] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.410541][ T9883] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.2595: corrupted inode contents
[  104.423169][ T9883] EXT4-fs error (device loop5): ext4_dirty_inode:6517: inode #2: comm syz.5.2595: mark_inode_dirty error
[  104.435170][ T9883] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.2595: corrupted inode contents
[  104.447582][ T9883] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.2595: mark_inode_dirty error
[  104.474588][ T7042] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.583773][ T9895] loop5: detected capacity change from 0 to 1024
[  104.628639][ T9895] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.655438][ T7042] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.817575][ T9905] netlink: 'syz.2.2600': attribute type 13 has an invalid length.
[  104.825747][ T3618] Bluetooth: hci0: Frame reassembly failed (-84)
[  104.847286][ T9907] SELinux:  policydb version 0 does not match my version range 15-35
[  104.871754][ T9907] SELinux: failed to load policy
[  104.977289][ T9920] loop2: detected capacity change from 0 to 512
[  104.985443][ T9920] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  104.995887][ T9920] EXT4-fs (loop2): orphan cleanup on readonly fs
[  105.002896][ T9920] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.2608: Block bitmap for bg 0 marked uninitialized
[  105.017007][ T9920] EXT4-fs (loop2): Remounting filesystem read-only
[  105.028232][ T9920] EXT4-fs (loop2): 1 orphan inode deleted
[  105.040832][ T9928] loop4: detected capacity change from 0 to 128
[  105.047866][ T9928] FAT-fs (loop4): Directory bread(block 162) failed
[  105.054838][ T9928] FAT-fs (loop4): Directory bread(block 163) failed
[  105.061489][ T9928] FAT-fs (loop4): Directory bread(block 164) failed
[  105.076951][ T9928] FAT-fs (loop4): Directory bread(block 165) failed
[  105.083611][ T9928] FAT-fs (loop4): Directory bread(block 166) failed
[  105.090888][ T9920] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  105.106656][ T9930] loop3: detected capacity change from 0 to 512
[  105.118328][ T9928] FAT-fs (loop4): Directory bread(block 167) failed
[  105.125657][ T9920] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.134083][ T9928] FAT-fs (loop4): Directory bread(block 168) failed
[  105.141514][ T9928] FAT-fs (loop4): Directory bread(block 169) failed
[  105.149833][ T9930] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.2609: error while reading EA inode 32 err=-116
[  105.150551][ T9928] FAT-fs (loop4): Directory bread(block 162) failed
[  105.168907][ T9928] FAT-fs (loop4): Directory bread(block 163) failed
[  105.175667][ T9928] bio_check_eod: 35 callbacks suppressed
[  105.175687][ T9928] syz.4.2611: attempt to access beyond end of device
[  105.175687][ T9928] loop4: rw=3, sector=226, nr_sectors = 6 limit=128
[  105.194791][ T9928] syz.4.2611: attempt to access beyond end of device
[  105.194791][ T9928] loop4: rw=2051, sector=232, nr_sectors = 2 limit=128
[  105.195031][ T9930] EXT4-fs (loop3): Remounting filesystem read-only
[  105.215059][ T9930] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  105.225313][ T9930] EXT4-fs (loop3): 1 orphan inode deleted
[  105.231583][ T9930] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.297156][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.340441][ T9947] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9947 comm=syz.3.2617
[  105.352958][ T9947] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9947 comm=syz.3.2617
[  105.423750][ T9954] syzkaller1: entered promiscuous mode
[  105.429338][ T9954] syzkaller1: entered allmulticast mode
[  105.728740][   T29] kauditd_printk_skb: 146 callbacks suppressed
[  105.728757][   T29] audit: type=1400 audit(361.701:3433): avc:  denied  { create } for  pid=9975 comm="syz.3.2634" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  105.780224][   T29] audit: type=1400 audit(361.751:3434): avc:  denied  { write } for  pid=9975 comm="syz.3.2634" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  105.854298][   T29] audit: type=1400 audit(361.831:3435): avc:  denied  { listen } for  pid=9981 comm="syz.3.2637" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  105.899200][   T29] audit: type=1400 audit(361.831:3436): avc:  denied  { validate_trans } for  pid=9982 comm="syz.4.2638" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  105.945192][ T9987] netlink: 332 bytes leftover after parsing attributes in process `syz.4.2639'.
[  106.003906][   T29] audit: type=1400 audit(361.971:3437): avc:  denied  { create } for  pid=9993 comm="syz.4.2643" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  106.026234][   T29] audit: type=1400 audit(362.001:3438): avc:  denied  { write } for  pid=9993 comm="syz.4.2643" name="file0" dev="tmpfs" ino=3104 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  106.048290][   T29] audit: type=1400 audit(362.001:3439): avc:  denied  { open } for  pid=9993 comm="syz.4.2643" path="/598/file0" dev="tmpfs" ino=3104 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  106.070573][   T29] audit: type=1400 audit(362.001:3440): avc:  denied  { ioctl } for  pid=9993 comm="syz.4.2643" path="/598/file0" dev="tmpfs" ino=3104 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  106.099937][   T29] audit: type=1400 audit(362.031:3441): avc:  denied  { unlink } for  pid=3318 comm="syz-executor" name="file0" dev="tmpfs" ino=3104 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  106.164311][T10005] netlink: 'syz.2.2648': attribute type 1 has an invalid length.
[  106.173203][T10006] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2649'.
[  106.190247][T10006] netlink: 312 bytes leftover after parsing attributes in process `syz.3.2649'.
[  106.199513][T10006] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2649'.
[  106.222387][   T29] audit: type=1326 audit(362.181:3442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10008 comm="syz.4.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9077defc9 code=0x7ffc0000
[  106.250507][T10014] loop2: detected capacity change from 0 to 128
[  106.257383][T10014] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  106.272137][T10017] loop4: detected capacity change from 0 to 512
[  106.281048][T10014] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  106.295305][ T3629] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  106.307329][T10017] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.323239][T10020] netlink: 1024 bytes leftover after parsing attributes in process `syz.5.2655'.
[  106.338859][T10017] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2656: corrupted inode contents
[  106.354803][T10028] loop3: detected capacity change from 0 to 512
[  106.365159][T10028] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  106.374386][T10017] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.2656: mark_inode_dirty error
[  106.387918][T10028] EXT4-fs (loop3): 1 truncate cleaned up
[  106.393933][T10028] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.398602][T10017] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2656: corrupted inode contents
[  106.418115][T10017] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.2656: mark_inode_dirty error
[  106.456765][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.518164][T10040] loop5: detected capacity change from 0 to 1024
[  106.528040][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.533138][T10040] EXT4-fs: Ignoring removed nomblk_io_submit option
[  106.567106][T10040] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.581401][T10047] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2665'.
[  106.603508][ T7042] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.630689][T10047] netlink: 312 bytes leftover after parsing attributes in process `syz.4.2665'.
[  106.639848][T10047] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2665'.
[  106.722876][T10071] smc: net device bond0 applied user defined pnetid SYZ0
[  106.746978][T10071] smc: net device bond0 erased user defined pnetid SYZ0
[  106.763047][T10075] netlink: 372 bytes leftover after parsing attributes in process `+}[@'.
[  106.844112][ T4940] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  106.850298][ T3991] Bluetooth: hci0: command 0x1003 tx timeout
[  106.894342][T10099] loop3: detected capacity change from 0 to 128
[  106.904333][T10099] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  106.935313][T10104] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=10104 comm=syz.6.2692
[  106.948016][T10104] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=10104 comm=syz.6.2692
[  106.965459][T10099] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  107.004606][ T3623] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  107.058919][T10118] bridge1: entered allmulticast mode
[  107.082569][T10118] team0: Port device bridge1 added
[  107.088755][T10110] loop5: detected capacity change from 0 to 512
[  107.172719][T10110] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  107.195415][T10132] bond1: (slave veth1): Device is not bonding slave
[  107.202061][T10132] bond1: option active_slave: invalid value (veth1)
[  107.212559][T10137] loop6: detected capacity change from 0 to 512
[  107.219662][T10137] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  107.238518][T10132] bond1 (unregistering): Released all slaves
[  107.247655][T10110] EXT4-fs (loop5): orphan cleanup on readonly fs
[  107.264902][T10137] EXT4-fs (loop6): 1 truncate cleaned up
[  107.271364][T10137] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.294500][T10110] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:517: comm syz.5.2694: Block bitmap for bg 0 marked uninitialized
[  107.330007][T10110] EXT4-fs (loop5): Remounting filesystem read-only
[  107.343497][T10110] EXT4-fs (loop5): 1 orphan inode deleted
[  107.360522][T10110] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  107.373348][ T8791] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.397112][T10110] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.403530][T10151] loop6: detected capacity change from 0 to 128
[  107.414725][T10151] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  107.471312][T10151] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  107.487661][ T3618] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  107.650179][ T3623] Bluetooth: hci0: Frame reassembly failed (-84)
[  107.890145][T10195] loop4: detected capacity change from 0 to 128
[  107.904487][T10195] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  107.945029][T10195] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  107.966531][ T3623] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  108.024370][T10202] SELinux:  Context � is not valid (left unmapped).
[  108.032247][T10202] SELinux:  Context �yzkall is not valid (left unmapped).
[  108.136403][T10214] loop3: detected capacity change from 0 to 128
[  108.149617][T10214] FAT-fs (loop3): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  108.280544][T10229] loop3: detected capacity change from 0 to 128
[  108.303914][T10229] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  108.316050][T10231] loop4: detected capacity change from 0 to 512
[  108.335906][T10229] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  108.364810][T10231] ------------[ cut here ]------------
[  108.370359][T10231] EA inode 11 i_nlink=2
[  108.370700][T10231] WARNING: CPU: 1 PID: 10231 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x36a/0x380
[  108.385199][T10231] Modules linked in:
[  108.389147][T10231] CPU: 1 UID: 0 PID: 10231 Comm: syz.4.2746 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  108.400645][T10231] Tainted: [W]=WARN
[  108.404485][T10231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  108.414652][T10231] RIP: 0010:ext4_xattr_inode_update_ref+0x36a/0x380
[  108.421331][T10231] Code: 90 49 8d 7e 40 e8 76 fd b8 ff 4d 8b 6e 40 4c 89 e7 e8 8a f8 b8 ff 41 8b 56 48 48 c7 c7 a5 c8 55 86 4c 89 ee e8 87 fb 67 ff 90 <0f> 0b 90 90 e9 ff fe ff ff e8 08 c9 b5 03 0f 1f 84 00 00 00 00 00
[  108.441005][T10231] RSP: 0018:ffffc90005a3f5a0 EFLAGS: 00010246
[  108.447172][T10231] RAX: 338eb418b6941000 RBX: ffff888119c6f170 RCX: 0000000000080000
[  108.455190][T10231] RDX: ffffc90004df4000 RSI: 0000000000003d3b RDI: 0000000000003d3c
[  108.463199][T10231] RBP: 0000000000000002 R08: 0001c90005a3f427 R09: 0000000000000000
[  108.471225][T10231] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff888119c6f120
[  108.479271][T10231] R13: 000000000000000b R14: ffff888119c6f0d8 R15: 0000000000000001
[  108.487297][T10231] FS:  00007fa9062476c0(0000) GS:ffff8882aef13000(0000) knlGS:0000000000000000
[  108.496301][T10231] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  108.502899][T10231] CR2: 00007f4c02297dac CR3: 000000010c874000 CR4: 00000000003506f0
[  108.510939][T10231] DR0: 0000200000000300 DR1: 0000000000000000 DR2: 0000000000000000
[  108.518954][T10231] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  108.526994][T10231] Call Trace:
[  108.530329][T10231]  <TASK>
[  108.533277][T10231]  ext4_xattr_set_entry+0x77f/0x1020
[  108.538715][T10231]  ext4_xattr_ibody_set+0x184/0x3c0
[  108.544052][T10231]  ext4_expand_extra_isize_ea+0xcbb/0x11f0
[  108.549979][T10231]  __ext4_expand_extra_isize+0x246/0x280
[  108.555778][T10231]  __ext4_mark_inode_dirty+0x29d/0x3f0
[  108.561272][T10231]  ext4_evict_inode+0x80e/0xd90
[  108.566313][T10231]  ? __pfx_ext4_evict_inode+0x10/0x10
[  108.571720][T10231]  evict+0x2e3/0x550
[  108.575648][T10231]  ? __dquot_initialize+0x146/0x7c0
[  108.580877][T10231]  iput+0x4ed/0x650
[  108.584757][T10231]  ext4_process_orphan+0x1a9/0x1c0
[  108.589891][T10231]  ext4_orphan_cleanup+0x6a8/0xa00
[  108.595089][T10231]  ext4_fill_super+0x3483/0x3810
[  108.600034][T10231]  ? snprintf+0x86/0xb0
[  108.604235][T10231]  ? set_blocksize+0x1a8/0x310
[  108.609103][T10231]  ? sb_set_blocksize+0xe3/0x100
[  108.614122][T10231]  ? setup_bdev_super+0x30e/0x370
[  108.619210][T10231]  ? __pfx_ext4_fill_super+0x10/0x10
[  108.624580][T10231]  get_tree_bdev_flags+0x291/0x300
[  108.629730][T10231]  ? __pfx_ext4_fill_super+0x10/0x10
[  108.635137][T10231]  get_tree_bdev+0x1f/0x30
[  108.639648][T10231]  ext4_get_tree+0x1c/0x30
[  108.644095][T10231]  vfs_get_tree+0x57/0x1d0
[  108.648537][T10231]  do_new_mount+0x24d/0x660
[  108.653068][T10231]  path_mount+0x4a5/0xb70
[  108.657485][T10231]  ? user_path_at+0x109/0x130
[  108.662167][T10231]  __se_sys_mount+0x28c/0x2e0
[  108.667076][T10231]  __x64_sys_mount+0x67/0x80
[  108.671683][T10231]  x64_sys_call+0x2b51/0x3000
[  108.676576][T10231]  do_syscall_64+0xd2/0x200
[  108.681082][T10231]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  108.687193][T10231]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  108.692924][T10231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.698867][T10231] RIP: 0033:0x7fa9077e076a
[  108.703363][T10231] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.723031][T10231] RSP: 002b:00007fa906246e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  108.731483][T10231] RAX: ffffffffffffffda RBX: 00007fa906246ef0 RCX: 00007fa9077e076a
[  108.739564][T10231] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fa906246eb0
[  108.747580][T10231] RBP: 0000200000000180 R08: 00007fa906246ef0 R09: 0000000001a08700
[  108.755666][T10231] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0
[  108.763663][T10231] R13: 00007fa906246eb0 R14: 0000000000000470 R15: 0000200000000700
[  108.771698][T10231]  </TASK>
[  108.774733][T10231] ---[ end trace 0000000000000000 ]---
[  108.780589][ T3627] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  108.780857][T10231] EXT4-fs (loop4): 1 orphan inode deleted
[  108.795943][T10231] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.823570][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.936861][T10250] loop4: detected capacity change from 0 to 8192
[  108.959750][T10255] loop6: detected capacity change from 0 to 128
[  108.967002][T10255] FAT-fs (loop6): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  108.984870][T10250]  loop4: p1 p2 p3 p4
[  108.988980][T10250] loop4: p1 size 196608 extends beyond EOD, truncated
[  109.001598][T10250] loop4: p2 start 164919041 is beyond EOD, truncated
[  109.008386][T10250] loop4: p3 size 66846464 extends beyond EOD, truncated
[  109.016647][T10250] loop4: p4 size 37048832 extends beyond EOD, truncated
[  109.027794][T10259] loop3: detected capacity change from 0 to 512
[  109.045029][T10259] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  109.060987][T10259] EXT4-fs (loop3): mount failed
[  109.511835][T10297] loop6: detected capacity change from 0 to 512
[  109.519665][T10297] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  109.546009][T10297] EXT4-fs (loop6): 1 orphan inode deleted
[  109.552342][T10297] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.565135][ T3618] EXT4-fs error (device loop6): ext4_release_dquot:6981: comm kworker/u8:41: Failed to release dquot type 1
[  109.576819][T10301] loop3: detected capacity change from 0 to 1024
[  109.584093][T10301] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  109.596414][ T8791] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.596422][T10301] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm GPL: bg 0: block 10: padding at end of block bitmap is not set
[  109.619356][T10301] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm GPL: Failed to acquire dquot type 0
[  109.632468][T10301] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm GPL: Failed to acquire dquot type 0
[  109.643760][T10301] EXT4-fs error (device loop3): ext4_free_blocks:6706: comm GPL: Freeing blocks not in datazone - block = 0, count = 4096
[  109.657079][T10301] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm GPL: Failed to acquire dquot type 0
[  109.668642][T10301] EXT4-fs (loop3): 1 orphan inode deleted
[  109.674927][T10301] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.706254][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.726318][ T4940] Bluetooth: hci0: command 0x1003 tx timeout
[  109.732900][ T3991] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  109.864278][T10330] loop3: detected capacity change from 0 to 764
[  109.872319][T10330] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  109.882330][T10330] Symlink component flag not implemented
[  109.890356][T10330] Symlink component flag not implemented (7)
[  109.900522][T10338] loop6: detected capacity change from 0 to 512
[  109.935802][T10338] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.980655][ T8791] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.003058][T10351] __nla_validate_parse: 2 callbacks suppressed
[  110.003120][T10351] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2800'.
[  110.034449][T10354] siw: device registration error -23
[  110.051362][T10358] loop4: detected capacity change from 0 to 1024
[  110.066581][T10358] EXT4-fs: Ignoring removed orlov option
[  110.072352][T10358] EXT4-fs: Ignoring removed nomblk_io_submit option
[  110.085409][T10358] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.146145][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.165347][T10373] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  110.165347][T10373] The task syz.2.2804 (10373) triggered the difference, watch for misbehavior.
[  110.349740][T10388] SELinux:  policydb version 40 does not match my version range 15-35
[  110.358462][T10388] SELinux: failed to load policy
[  110.608761][T10400] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2820'.
[  110.691030][T10406] loop5: detected capacity change from 0 to 1024
[  110.699827][T10406] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (58532!=20869)
[  110.710578][T10406] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040e11d, mo2=0002]
[  110.719618][T10406] EXT4-fs (loop5): failed to initialize system zone (-117)
[  110.727095][T10406] EXT4-fs (loop5): mount failed
[  110.754060][   T29] kauditd_printk_skb: 165 callbacks suppressed
[  110.754077][   T29] audit: type=1326 audit(366.721:3597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10409 comm="syz.5.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e6d0defc9 code=0x7ffc0000
[  110.795100][   T29] audit: type=1326 audit(366.751:3598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10409 comm="syz.5.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e6d0defc9 code=0x7ffc0000
[  110.818165][   T29] audit: type=1326 audit(366.761:3599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10409 comm="syz.5.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e6d0defc9 code=0x7ffc0000
[  110.841104][   T29] audit: type=1326 audit(366.761:3600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10409 comm="syz.5.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e6d0defc9 code=0x7ffc0000
[  110.864058][   T29] audit: type=1326 audit(366.761:3601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10409 comm="syz.5.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e6d0defc9 code=0x7ffc0000
[  110.887048][   T29] audit: type=1326 audit(366.761:3602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10409 comm="syz.5.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e6d0defc9 code=0x7ffc0000
[  110.909937][   T29] audit: type=1326 audit(366.761:3603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10409 comm="syz.5.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e6d0defc9 code=0x7ffc0000
[  110.932905][   T29] audit: type=1326 audit(366.761:3604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10409 comm="syz.5.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e6d0defc9 code=0x7ffc0000
[  110.955832][   T29] audit: type=1326 audit(366.761:3605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10409 comm="syz.5.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7f9e6d0defc9 code=0x7ffc0000
[  110.978715][   T29] audit: type=1326 audit(366.761:3606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10409 comm="syz.5.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e6d0defc9 code=0x7ffc0000
[  111.203292][T10434] loop6: detected capacity change from 0 to 512
[  111.211645][T10434] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.2836: inode has both inline data and extents flags
[  111.225351][T10434] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.2836: couldn't read orphan inode 15 (err -117)
[  111.251987][T10434] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.348926][ T8791] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.537663][T10456] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2846'.
[  111.569643][T10458] netlink: 14 bytes leftover after parsing attributes in process `syz.6.2845'.
[  111.592013][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2849'.
[  111.696086][T10485] netlink: 84 bytes leftover after parsing attributes in process `syz.4.2859'.
[  111.718129][T10488] loop5: detected capacity change from 0 to 512
[  111.718490][T10483] loop3: detected capacity change from 0 to 512
[  111.732979][T10489] random: crng reseeded on system resumption
[  111.747175][T10483] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.2858: inode has both inline data and extents flags
[  111.760762][T10489] loop2: detected capacity change from 0 to 164
[  111.769321][T10483] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.2858: couldn't read orphan inode 15 (err -117)
[  111.769408][T10488] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  111.769533][T10488] EXT4-fs (loop5): orphan cleanup on readonly fs
[  111.796202][T10488] EXT4-fs warning (device loop5): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  111.811052][T10489] Unable to read rock-ridge attributes
[  111.813799][T10488] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  111.819165][T10489] Unable to read rock-ridge attributes
[  111.829267][T10489] iso9660: Corrupted directory entry in block 4 of inode 1792
[  111.829452][T10483] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.850494][T10488] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2860: bg 0: block 40: padding at end of block bitmap is not set
[  111.865822][T10498] loop4: detected capacity change from 0 to 512
[  111.872188][T10488] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  111.883400][T10488] EXT4-fs (loop5): 1 truncate cleaned up
[  111.889700][T10488] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  111.904901][T10498] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  111.925359][ T7042] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.934786][T10498] EXT4-fs (loop4): orphan cleanup on readonly fs
[  111.942550][ T7042] ==================================================================
[  111.942773][T10498] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #16: comm syz.4.2863: corrupted inode contents
[  111.950660][ T7042] BUG: KCSAN: data-race in __lru_add_drain_all / folio_add_lru
[  111.950690][ T7042] 
[  111.962805][T10498] EXT4-fs (loop4): Remounting filesystem read-only
[  111.970013][ T7042] read-write to 0xffff888237d25ee8 of 1 bytes by task 10498 on cpu 1:
[  111.970034][ T7042]  folio_add_lru+0xa5/0x1f0
[  111.972460][T10498] EXT4-fs (loop4): 1 truncate cleaned up
[  111.978869][ T7042]  filemap_add_folio+0x26d/0x360
[  111.978907][ T7042]  __filemap_get_folio+0x31e/0x650
[  112.007188][ T7042]  ext4_mb_init_group+0xce/0x3f0
[  112.012135][ T7042]  ext4_mb_load_buddy_gfp+0x72a/0x790
[  112.017513][ T7042]  ext4_free_blocks+0x761/0x1480
[  112.022453][ T7042]  ext4_ext_remove_space+0x177b/0x2900
[  112.027915][ T7042]  ext4_ext_truncate+0xc7/0x170
[  112.032768][ T7042]  ext4_truncate+0x70d/0xae0
[  112.037359][ T7042]  ext4_process_orphan+0x110/0x1c0
[  112.042472][ T7042]  ext4_orphan_cleanup+0x6a8/0xa00
[  112.047592][ T7042]  ext4_fill_super+0x3483/0x3810
[  112.052544][ T7042]  get_tree_bdev_flags+0x291/0x300
[  112.057659][ T7042]  get_tree_bdev+0x1f/0x30
[  112.062076][ T7042]  ext4_get_tree+0x1c/0x30
[  112.066487][ T7042]  vfs_get_tree+0x57/0x1d0
[  112.070903][ T7042]  do_new_mount+0x24d/0x660
[  112.075410][ T7042]  path_mount+0x4a5/0xb70
[  112.079741][ T7042]  __se_sys_mount+0x28c/0x2e0
[  112.084418][ T7042]  __x64_sys_mount+0x67/0x80
[  112.089097][ T7042]  x64_sys_call+0x2b51/0x3000
[  112.093776][ T7042]  do_syscall_64+0xd2/0x200
[  112.098275][ T7042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.104165][ T7042] 
[  112.106481][ T7042] read to 0xffff888237d25ee8 of 1 bytes by task 7042 on cpu 0:
[  112.114018][ T7042]  __lru_add_drain_all+0x17e/0x450
[  112.119129][ T7042]  lru_add_drain_all+0x10/0x20
[  112.123897][ T7042]  invalidate_bdev+0x47/0x70
[  112.128493][ T7042]  ext4_put_super+0x624/0x7d0
[  112.133176][ T7042]  generic_shutdown_super+0xe6/0x210
[  112.138461][ T7042]  kill_block_super+0x2a/0x70
[  112.143145][ T7042]  ext4_kill_sb+0x42/0x80
[  112.147474][ T7042]  deactivate_locked_super+0x75/0x1c0
[  112.152847][ T7042]  deactivate_super+0x97/0xa0
[  112.157524][ T7042]  cleanup_mnt+0x269/0x2e0
[  112.161948][ T7042]  __cleanup_mnt+0x19/0x20
[  112.166369][ T7042]  task_work_run+0x131/0x1a0
[  112.170962][ T7042]  exit_to_user_mode_loop+0xed/0x110
[  112.176251][ T7042]  do_syscall_64+0x1d6/0x200
[  112.180841][ T7042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.186732][ T7042] 
[  112.189072][ T7042] value changed: 0x00 -> 0x03
[  112.193734][ T7042] 
[  112.196049][ T7042] Reported by Kernel Concurrency Sanitizer on:
[  112.202192][ T7042] CPU: 0 UID: 0 PID: 7042 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  112.213650][ T7042] Tainted: [W]=WARN
[  112.217447][ T7042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  112.227501][ T7042] ==================================================================
[  112.237124][ T3584] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  112.247701][ T3584] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  112.258282][ T3584] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  112.269291][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.269293][T10498] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  112.269764][T10498] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.413077][T10505] loop5: detected capacity change from 0 to 128