last executing test programs: 3.755401788s ago: executing program 1 (id=1366): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10) syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x41}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a35f2", 0x14, 0x6, 0x0, @remote={0xfe, 0x50}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) 3.53765416s ago: executing program 2 (id=1371): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000240)=@ethtool_flash={0x33, 0x0, './file0\x00'}}) 3.535837171s ago: executing program 1 (id=1372): syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000240)='./file1\x00', 0x2000414, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRESDEC, @ANYRESHEX, @ANYRESHEX, @ANYRESDEC], 0x1, 0x2df, &(0x7f00000005c0)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) getdents64(r0, 0x0, 0x0) 3.334968705s ago: executing program 0 (id=1377): prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000400850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000440)=ANY=[@ANYRES32=0x0, @ANYRESOCT=r4, @ANYRES64, @ANYRES16=r5], 0x1, 0x374, &(0x7f0000000f80)="$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") mkdirat(0xffffffffffffff9c, 0x0, 0x41) r6 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r7 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0) fallocate(r6, 0x0, 0x0, 0x1000f4) io_setup(0x7d, &(0x7f0000000600)=0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) io_submit(r8, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r7, &(0x7f0000000000)="96", 0xfffffe10, 0x0, 0x0, 0x0, r7}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, r6, 0x0, 0x0, 0xffffffffffffffff}]) 3.310438624s ago: executing program 1 (id=1379): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000200)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0) fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1) write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = socket(0x22, 0x2, 0x3) getsockopt$packet_buf(r3, 0x107, 0x1, 0x0, 0x0) syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8001}, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000100)={0x1b, "5660359c3245d1c42317afad7d48ed51000000000000000100", 0xffffffffffffffff}) r5 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x141100, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r5, 0xc0285700, &(0x7f0000000140)={0x1000, "340b7832ceefd131b8e6498c25f58fad9987ffe93bbabd18cf501922de974a27", 0xffffffffffffffff}) ioctl$SYNC_IOC_MERGE(r6, 0xc0303e03, &(0x7f00000001c0)={"3c24139ed44aec57f2e2ad238e7b448ed886923c31d4b8affbf514fd00", r4, 0xffffffffffffffff}) r8 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) ioctl$KVM_SET_SREGS(r10, 0x4138ae84, 0x0) close_range(r2, r7, 0x0) sendmsg$MPTCP_PM_CMD_ANNOUNCE(r3, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x58, 0x0, 0x400, 0x70bd2a, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x5}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x5}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x14, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x18}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x8}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x804}, 0x1) r11 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r11, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet(r11, &(0x7f0000000040)={0x2, 0x4e23, @loopback}, 0x10) connect$inet(r11, &(0x7f0000000200)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r11, 0x0, 0x48c, &(0x7f0000000180)={0x2, 'gre0\x00', 0x1}, 0x18) 2.83939337s ago: executing program 4 (id=1383): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x15, 0xe19, 0x0, 0x0, {{@in=@multicast2, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x10}, {0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, 0x0, 0x6e6bb5}}, 0xb8}}, 0x0) 2.726798017s ago: executing program 4 (id=1385): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x14, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x42, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000780)='kfree\x00', r1}, 0x18) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt(r2, 0x84, 0x81, &(0x7f0000000000)="0000000000000002", 0x8) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) dup2(r2, r3) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f0000000080)={0x0, 0x2, 0x1, "fa"}, 0x9) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r3, 0x84, 0x19, &(0x7f0000000140)={0x0, 0x2}, 0x8) 2.64865986s ago: executing program 2 (id=1386): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002140)=@delchain={0x120, 0x65, 0x4, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x5, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0xfffffffe}, @TCA_RATE={0x6, 0x5, {0x0, 0xfd}}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x4c, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0x0, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_ETH_SRC={0xa, 0x6, @multicast}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}, @TCA_FLOWER_KEY_ICMPV6_TYPE_MASK={0x5}, @TCA_FLOWER_KEY_SCTP_DST_MASK={0x6}]}}, @filter_kind_options=@f_matchall={{0xd}, {0x7c, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x10, 0xd73a5076a6b6823c}}, @TCA_MATCHALL_CLASSID={0x8, 0x1, {0x9, 0xb}}, @TCA_MATCHALL_CLASSID={0x8, 0x1, {0x0, 0x8}}, @TCA_MATCHALL_CLASSID={0x8, 0x1, {0xfff2, 0xf}}, @TCA_MATCHALL_ACT={0x58, 0x2, [@m_simple={0x54, 0x1a, 0x0, 0x0, {{0xb}, {0x4}, {0x25, 0x6, "d6b0c8e20057dac80e31390b3b0e548571ee1c8bbec8ab8f408993f3daba27165a"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}]}}]}, 0x120}, 0x1, 0x0, 0x0, 0x81}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400}) 2.620914089s ago: executing program 3 (id=1387): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000008"], 0x50) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) prctl$PR_SCHED_CORE(0x53564d41, 0x0, 0x0, 0x81010000000000, 0x0) r5 = open(&(0x7f0000000280)='.\x00', 0x40080, 0x1d2) fcntl$notify(r5, 0x402, 0x5) fcntl$notify(r5, 0x402, 0x8000003d) 2.582453705s ago: executing program 4 (id=1388): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000200)={[{@nouid32}, {@nodioread_nolock}, {@noquota}, {@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x8}}, {@nodioread_nolock}]}, 0x1, 0x5a3, &(0x7f00000002c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42041, 0x0) pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0) write(r0, &(0x7f0000000880)="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", 0x804) 2.544180374s ago: executing program 2 (id=1389): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000003d00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="852885", 0x3}], 0x1}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000880)="63dd58272ae72fcc6e5b58c3b631164e6812fe8ad21e82bc98928a0439caa0082e36e37a662be949775f8331197fff3aa3df51af864e995b2b9845689f522d203f98a18bbddb27de02dae01973dabe041bd8b8e505f544b9add73b180cf7f719a2fde9435e74c435d0997181f1ff473b1a7992fb911912ae59ae4d58434e915b702d01d6e054a464e5f4e5683c7397e81a3a6ad749b3398dbab898ea6b948968d51b8a", 0xa3}], 0x1}}, {{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000280)="bd6fd72dcc9f", 0x6}], 0x1}}], 0x3, 0x48800) shutdown(r0, 0x1) 1.749118109s ago: executing program 0 (id=1390): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) fchdir(r0) open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000640)=ANY=[@ANYBLOB=' '], 0x202400) 1.641747585s ago: executing program 2 (id=1391): bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./bus/file0\x00', 0x104b888, &(0x7f00000006c0)={[{@usrquota}, {@sysvgroups}, {@minixdf}]}, 0x1, 0x50e, &(0x7f0000000d40)="$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") bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x20c006, &(0x7f0000000240)={[{@grpjquota}, {@lazytime}, {@barrier}, {@barrier}, {@max_batch_time={'max_batch_time', 0x3d, 0x5}}, {@grpquota}], [{@seclabel}]}, 0x3, 0x446, &(0x7f0000000d40)="$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") iopl(0x3) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = mq_open(&(0x7f0000000580)='!\x7f\x00\xca\x00\x00\x00\f\x00vt\x00\x01E!\x05\x99\xb7|`', 0x6e93ebbbcc0884f2, 0x61, &(0x7f0000000480)={0x0, 0x2, 0x7}) mq_timedreceive(r1, &(0x7f0000000700)=""/200, 0xc8, 0x0, 0x0) 1.597763108s ago: executing program 3 (id=1392): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000"], 0x0, 0x2010000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r0}, 0x10) r1 = io_uring_setup(0x804, &(0x7f000000c480)={0x0, 0xc46e, 0x400, 0x1ffff, 0x3}) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x24, &(0x7f0000000940)=[{0x0}], 0x1) 1.52064204s ago: executing program 3 (id=1393): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x70) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r1, 0x0, 0x25, 0x0, @void}, 0x10) r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x8}, 0x94) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) syz_emit_ethernet(0xc1, &(0x7f0000000c40)={@local, @local, @void, {@ipv6={0x86dd, @gre_packet={0xf, 0x6, "d56d2f", 0x8b, 0x2f, 0x1, @private1={0xfc, 0x1, '\x00', 0x1}, @remote, {[], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x41, 0x2, [], "a7fba62e4932c5c5ad344f57f50c8a255f2430b688c4e99cf7c6166d58aabfbefda98e8f56f39d6e5811ef725a0951a39755ab9fd6b5e5db7b93f8f89febe1867a"}, {0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800, [0x6, 0x4]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0x3]}, {0x8, 0x88be, 0x1, {{0x7, 0x1, 0xe, 0x2, 0x0, 0x2, 0x3, 0x5}, 0x1, {0x6}}}, {0x8, 0x22eb, 0x1, {{0x6, 0x2, 0xd, 0x2, 0x1, 0x0, 0x5, 0xfc}, 0x2, {0xfffffffe, 0xffff, 0x1, 0x3, 0x1, 0x0, 0x2, 0x1}}}, {0x8, 0x6558, 0x2}}}}}}}, 0x0) 1.513511676s ago: executing program 0 (id=1394): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18) faccessat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x5) 1.476371035s ago: executing program 4 (id=1395): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f00000012c0)=ANY=[@ANYBLOB="020000000000000002000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000"], 0x290) 1.395038164s ago: executing program 3 (id=1396): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000640)={0x1c, 0x3, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x10) 1.348802934s ago: executing program 2 (id=1397): bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x1a, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x81, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000001100)='fdinfo/4\x00') 1.190806781s ago: executing program 2 (id=1398): socket$inet_tcp(0x2, 0x1, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x8040, 0x0) unshare(0x2c020400) pselect6(0x40, &(0x7f0000000100)={0x2, 0x0, 0xfffffffffffffff8, 0x0, 0x1, 0x10}, 0x0, &(0x7f0000000240)={0x1f, 0xc, 0x715, 0x8000000000000000, 0x0, 0x80000000000000, 0x800, 0x20000}, 0x0, 0x0) 1.145191364s ago: executing program 0 (id=1399): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000380)={0xffffffffffffffff}, 0x2, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000740)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21, 0xba, @empty, 0x7}, {0xa, 0x4e24, 0x0, @rand_addr=' \x01\x00', 0x8817}, r2, 0x8001}}, 0x48) 1.100947835s ago: executing program 3 (id=1400): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x180) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000002140)={0x2020}, 0x2020) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0xfffffffffffffff7, {0x1, 0x2, 0x101, 0x0, 0x0, 0x10000000, {0x40, 0xd08, 0x0, 0x100, 0x0, 0x0, 0x7, 0x0, 0x122, 0x6000, 0x10000, 0x0, 0x0, 0x902, 0xfffffff2}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x1b, &(0x7f0000000880)=ANY=[@ANYBLOB="0000000000000000b703"], &(0x7f0000000300)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000580)={0x2, 0xa, 0x1, 0x7c5e}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x100, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000700)={&(0x7f0000000940)={0x58, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x7}]}, @IPVS_CMD_ATTR_DEST={0x38, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0xbb9}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast2}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x3}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000080}, 0x4) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="300000001c000104000000000000000002000000", @ANYRES32, @ANYBLOB="f3ff43000a0001000180c2000000000008000f0001"], 0x30}}, 0x4000) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000008c0)={0x0, @local, @multicast1}, &(0x7f0000000900)=0xc) sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000c00)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000b40)={0x90, 0x0, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR_REMOTE={0x20, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x38, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010102}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @local}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r3}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}]}, 0x90}, 0x1, 0x0, 0x0, 0x44880}, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000340), 0x4) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000500)) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="040f8509011a04"], 0x7) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6) syz_emit_vhci(&(0x7f0000000640)=ANY=[@ANYBLOB], 0x9) r5 = accept4(r4, 0x0, 0x0, 0x800) sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 1.042375185s ago: executing program 0 (id=1401): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0}, 0x4) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xcb, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10) kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0) 923.70535ms ago: executing program 4 (id=1402): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000003d00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="852885", 0x3}], 0x1}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000880)="63dd58272ae72fcc6e5b58c3b631164e6812fe8ad21e82bc98928a0439caa0082e36e37a662be949775f8331197fff3aa3df51af864e995b2b9845689f522d203f98a18bbddb27de02dae01973dabe041bd8b8e505f544b9add73b180cf7f719a2fde9435e74c435d0997181f1ff473b1a7992fb911912ae59ae4d58434e915b702d01d6e054a464e5f4e5683c7397e81a3a6ad749b3398dbab898ea6b948968d51b8a", 0xa3}], 0x1}}, {{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000280)="bd6fd72dcc9f", 0x6}], 0x1}}], 0x3, 0x48800) shutdown(r0, 0x1) 833.088415ms ago: executing program 1 (id=1403): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000"], 0x0, 0x2010000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r0}, 0x10) r1 = io_uring_setup(0x804, &(0x7f000000c480)={0x0, 0xc46e, 0x400, 0x1ffff, 0x3}) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x24, &(0x7f0000000940)=[{0x0}], 0x1) 769.149925ms ago: executing program 4 (id=1404): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0], 0x50) r1 = getpid() prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r4, 0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r8 = socket(0x400000000010, 0x3, 0x0) r9 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r10, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) 608.370117ms ago: executing program 1 (id=1405): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xa, 0xb, 0x42, 0x3e, 0x42}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0, 0xffffffffffffffff}, &(0x7f0000000100), &(0x7f0000000180)}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1, 0xffffffffffffffff}, &(0x7f0000000140), &(0x7f00000000c0)}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xcc8, 0x0, 0x0, 0x0, 0x2}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfff}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x8, 0x1005, &(0x7f00000014c0)=""/4101, 0x0, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) 562.739546ms ago: executing program 3 (id=1406): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r0) sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r1, @ANYBLOB], 0x78}, 0x1, 0x0, 0x0, 0x4885}, 0x0) 333.11299ms ago: executing program 1 (id=1407): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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") 0s ago: executing program 0 (id=1408): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) execve(&(0x7f0000000040)='./file0\x00', &(0x7f00000002c0)={[&(0x7f0000000280)='\x00']}, &(0x7f0000000400)={[&(0x7f0000000300)='\x00', &(0x7f0000000340)='\x00', &(0x7f0000000380)='@\x00', &(0x7f00000003c0)='\x00']}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) r3 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000100)='tasks\x00', 0x2, 0x0) sendmsg$OSF_MSG_REMOVE(r1, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000380)={&(0x7f00000004c0)={0x710, 0x1, 0x5, 0x301, 0x0, 0x0, {0xa, 0x0, 0x4}, [{{0x254, 0x1, {{0x1, 0x80000000}, 0x7, 0x4, 0x42, 0x40, 0x1b, 'syz0\x00', "051b28b2e3d7d382b86df64dcfe664b81df03abc351e612c85e47d54d3570292", "03916a4e24e0d1299b96543029dfe34767112367f788ea9814e456de2713006b", [{0x7b, 0x7, {0x0, 0x11e}}, {0x9, 0x6, {0x3, 0x7dd449f1}}, {0x1000, 0x9, {0x2, 0x4}}, {0x4, 0x263, {0x2, 0x10001}}, {0x5, 0xa3, {0x3, 0x4}}, {0x8000, 0x1, {0x3, 0x40}}, {0xfd4, 0x4, {0x0, 0x7fffffff}}, {0x7, 0x3, {0x3, 0xfffffff9}}, {0x80, 0x3, {0x1, 0x10000}}, {0x800, 0x8646, {0x3, 0x6}}, {0xfffa, 0x200, {0x3, 0x6a}}, {0x400, 0x1, {0x3, 0x8}}, {0xe, 0x3, {0x0, 0x3}}, {0xfff, 0x8, {0x0, 0x7fffffff}}, {0x5, 0x5, {0x1, 0xc0000000}}, {0x5, 0x5, {0x3, 0xfffffffd}}, {0xc, 0x1ff, {0x1, 0x800}}, {0x2, 0x2, {0x2, 0xa1ed}}, {0x6, 0xff80, {0x2, 0x6f}}, {0x8, 0x3, {0x0, 0x400}}, {0xfff, 0x3}, {0x6, 0x3, {0x1}}, {0x3ff, 0x7, {0x2, 0x8}}, {0x9, 0xfff, {0x2, 0x5}}, {0xd2c, 0x4, {0x2, 0x5}}, {0x6, 0x3911, {0x1, 0x2}}, {0x4, 0x6e, {0x0, 0x2dcd}}, {0x4, 0x10, {0x1, 0x3}}, {0x97, 0xc, {0x2, 0x2}}, {0x1, 0x8412, {0x3, 0x8}}, {0x5, 0x1, {0x6, 0x5}}, {0x1, 0x0, {0x0, 0x9}}, {0x3, 0x3ff, {0x0, 0x40}}, {0x28, 0x6, {0x0, 0x9}}, {0xff7f, 0xffc0, {0x1, 0x9}}, {0xa7, 0xfff7, {0x2, 0xff}}, {0x5, 0xf57, {0x2}}, {0x8, 0x3, {0x3, 0x8}}, {0x59de, 0x7, {0x0, 0x81}}, {0xc811, 0xe, {0x1, 0x3}}]}}}, {{0x254, 0x1, {{0x0, 0x66d2}, 0x4, 0x9, 0x3, 0x8, 0x28, 'syz1\x00', "2ce027ee32e8d440e5e22051f16ae21376a60e2b2d048f59bbc2452a007da7f5", "45479ccfb7c6dc31c335cbc8e2b5a1feeaa182b183db782f9a6d21f4aff95c08", [{0x6, 0x8, {0x1, 0x122e0487}}, {0x7f, 0xbe7, {0x3, 0x7fffffff}}, {0x3, 0x8, {0x0, 0x7}}, {0x93, 0x3, {0x3, 0x6}}, {0x8, 0x4, {0x2, 0x1}}, {0x6, 0x3, {0x3, 0x400}}, {0x965, 0x0, {0x1, 0x4}}, {0x7, 0x0, {0x2, 0x6}}, {0x3, 0xb, {0x3, 0x6}}, {0x9, 0x9, {0x1, 0x54e}}, {0xa1b, 0xd4, {0x0, 0x4}}, {0x3ff, 0x40, {0x2, 0x1}}, {0x9, 0x9, {0x1, 0x3}}, {0x3, 0x8000, {0x1, 0x8}}, {0x8, 0x6, {0x0, 0x7}}, {0x6, 0x1a, {0x2, 0x80000001}}, {0x1, 0x9, {0x1, 0x2}}, {0x9, 0x9, {0x2, 0x4}}, {0x8, 0xead9, {0x2, 0x8}}, {0xfff7, 0x9, {0x2, 0x6}}, {0x8, 0xff, {0x0, 0x9}}, {0x8, 0xf, {0x2, 0x6}}, {0x200, 0x8, {0x3, 0x4}}, {0x1, 0x8000, {0x3, 0x8}}, {0x3, 0x4, {0x3, 0x6}}, {0x7f, 0x6, {0x2, 0x8}}, {0x1ff, 0x3, {0x2, 0x7}}, {0xf407, 0x3, {0x1, 0x10001}}, {0x401, 0x1, {0x1, 0x2}}, {0x1, 0x2, {0x2, 0x8}}, {0x26f, 0x3}, {0x100, 0xda58, {0x0, 0x6}}, {0x7, 0x3ff, {0x0, 0xff}}, {0xeb3, 0x8000, {0x1, 0xfffffffb}}, {0x29fc, 0x8, {0x2, 0x3a7}}, {0x4, 0x6059, {0x3, 0x80000000}}, {0x3, 0x3, {0x2, 0x1}}, {0xfff1, 0x6, {0x2}}, {0x40, 0x4}, {0x4, 0x8, {0x2, 0x7}}]}}}, {{0x254, 0x1, {{0x2, 0x8}, 0x38, 0xff, 0x0, 0x7ff, 0x9, 'syz1\x00', "f42f9514163af80d59af1d56961b9c32ff0bf5b475bc40abc23fcc6bd3fc2922", "b5704b59576271e236840e2aaad82d30818267ce4b1a5dd68cbd2261be9fa0d0", [{0x6, 0x3, {0x3}}, {0x5, 0xe, {0x3, 0xfffff800}}, {0x5, 0x7bc5, {0x1, 0x6}}, {0xf2dc, 0x20ed, {0x0, 0xcd75}}, {0x661, 0x8, {0x2, 0xfffffff7}}, {0x6, 0x9a37, {0x1, 0xe}}, {0x81, 0x1, {0x2, 0x4af}}, {0x80, 0x6, {0x1, 0x1}}, {0x75, 0x8, {0x1, 0x7}}, {0x3, 0xff, {0x3, 0x2}}, {0x2, 0xd70c, {0x1}}, {0x8, 0x9, {0x1, 0x8000}}, {0x5, 0x8, {0x1, 0xffff}}, {0x3, 0x6}, {0x1, 0x9, {0x3, 0x18f}}, {0xeef4, 0xfff, {0x2, 0x600000}}, {0x4, 0x7, {0x0, 0x5}}, {0x400, 0x62, {0x1, 0x7fffffff}}, {0x88, 0x4, {0x3, 0x1}}, {0x6, 0x3, {0x0, 0x101}}, {0x9, 0x1, {0x1, 0x9}}, {0xb0, 0x8, {0x3, 0x3}}, {0x35f, 0x6, {0x1, 0x6}}, {0x0, 0x9, {0x1, 0x8}}, {0x9, 0x4, {0x0, 0x3}}, {0x3, 0x3, {0x0, 0x3}}, {0x3, 0x200, {0x3, 0x3}}, {0xa11c, 0x4, {0x3, 0xfff}}, {0x200, 0x0, {0x2}}, {0xf5, 0x5, {0x2, 0xa9d}}, {0x2, 0x2, {0x0, 0x9}}, {0x8, 0x2, {0x1, 0x7}}, {0x7, 0x8, {0x3}}, {0x1, 0xe81, {0x2, 0x800}}, {0x6, 0xff, {0x0, 0xfffffffa}}, {0x7, 0x9, {0x1, 0x9}}, {0x7, 0x6, {0x3, 0xff}}, {0x7fff, 0x2, {0x3, 0x2}}, {0x4, 0x7, {0x3, 0x1c}}, {0x1, 0x6, {0x3, 0xd}}]}}}]}, 0x710}, 0x1, 0x0, 0x0, 0x40000}, 0x90426e515434c9f2) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000180)=0x0) write$cgroup_pid(r3, &(0x7f00000001c0)=r4, 0x12) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180200008300000000000000000000008500000029000000850000005400000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x14, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ffffffc}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfffffffffffffda2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x24, &(0x7f0000000000)=0xa, 0x4) io_uring_enter(0xffffffffffffffff, 0x2219, 0x7721, 0x16, 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00') r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_ifreq(r5, 0x8910, &(0x7f0000000000)={'vlan0\x00', @ifru_mtu=0x6}) ioctl$sock_netdev_private(r5, 0x8914, &(0x7f0000000000)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={0xffffffffffffffff, 0xffffffffffffffff}) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) sendmsg$unix(r6, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32, @ANYRES32=0xee01], 0xa0}, 0x4004881) write(0xffffffffffffffff, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000000", 0x41d) sendto$inet6(r2, &(0x7f00000000c0)='S', 0x1, 0x24000004, &(0x7f0000000140)={0xa, 0x4e23, 0x3, @loopback, 0x3510}, 0x1c) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001640)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021040100000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000d8000380d40000800800034000000002c8000b80480001800a00010071756f74610000003800028008000240000000030c0001"], 0x188}, 0x1, 0x0, 0x0, 0x4880}, 0x0) kernel console output (not intermixed with test programs): 6] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 151.732602][ T7136] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 151.757546][ T7136] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 151.771638][ T7136] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 151.786681][ T7136] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 151.800485][ T7136] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 151.800672][ T39] vhci_hcd vhci_hcd.3: vhci_device speed not set [ 151.826218][ T7136] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 151.847817][ T7136] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 151.859667][ T7136] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 151.871991][ T7136] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 151.886248][ T7136] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 151.899086][ T7136] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 151.979955][ T7136] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 152.218896][ T7185] loop4: detected capacity change from 0 to 2048 [ 152.275328][ T7185] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.341291][ T7185] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 152.432968][ T7197] netlink: 24 bytes leftover after parsing attributes in process `syz.3.408'. [ 152.549107][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.008343][ T5829] Bluetooth: hci0: command 0x0c1a tx timeout [ 153.097746][ T7231] netlink: 'syz.0.419': attribute type 83 has an invalid length. [ 153.177398][ T7237] loop1: detected capacity change from 0 to 2048 [ 153.313840][ T7244] netlink: 24 bytes leftover after parsing attributes in process `syz.0.423'. [ 153.417178][ T7237] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 153.431607][ T7237] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 153.551604][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.799117][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 153.805430][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout [ 153.878488][ T5829] Bluetooth: hci3: command 0x0c1a tx timeout [ 153.968353][ T5829] Bluetooth: hci4: command 0x0c1a tx timeout [ 154.298877][ T30] kauditd_printk_skb: 68 callbacks suppressed [ 154.298894][ T30] audit: type=1326 audit(1765179259.730:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 154.398773][ T7277] netlink: 12 bytes leftover after parsing attributes in process `syz.0.430'. [ 154.407783][ T7277] netlink: 12 bytes leftover after parsing attributes in process `syz.0.430'. [ 154.531018][ T7277] loop0: detected capacity change from 0 to 512 [ 154.654676][ T7277] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 154.664451][ T7277] EXT4-fs (loop0): orphan cleanup on readonly fs [ 154.711850][ T7277] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #16: comm +}[@: corrupted inode contents [ 154.732814][ T7277] EXT4-fs (loop0): Remounting filesystem read-only [ 154.741949][ T7277] EXT4-fs (loop0): 1 truncate cleaned up [ 154.803860][ T30] audit: type=1326 audit(1765179259.730:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 154.843974][ T13] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 154.856315][ T30] audit: type=1326 audit(1765179259.730:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 154.886229][ T13] Quota error (device loop0): write_blk: dquota write failed [ 154.923950][ T13] Quota error (device loop0): remove_free_dqentry: Can't write block (5) with free entries [ 154.958851][ T13] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 154.979658][ T30] audit: type=1326 audit(1765179259.730:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 155.002450][ T13] Quota error (device loop0): write_blk: dquota write failed [ 155.033087][ T7285] netlink: 24 bytes leftover after parsing attributes in process `syz.2.435'. [ 155.048308][ T13] Quota error (device loop0): free_dqentry: Can't move quota data block (5) to free list [ 155.078963][ T5829] Bluetooth: hci0: command 0x0c1a tx timeout [ 155.101822][ T30] audit: type=1326 audit(1765179259.730:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 155.101885][ T13] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 155.225333][ T30] audit: type=1326 audit(1765179259.730:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 155.231217][ T7277] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 155.270629][ T7277] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 155.393690][ T7294] loop1: detected capacity change from 0 to 1024 [ 155.433676][ T7294] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 155.446208][ T7294] ext4 filesystem being mounted at /94/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 155.518841][ T7295] loop4: detected capacity change from 0 to 2048 [ 155.581329][ T7295] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 155.637072][ T7295] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 155.648812][ T13] EXT4-fs error (device loop1): ext4_map_blocks:825: inode #15: comm kworker/u8:1: lblock 0 mapped to illegal pblock 0 (length 3) [ 155.696466][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 155.722765][ T13] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 3 with error 117 [ 155.751037][ T13] EXT4-fs (loop1): This should not happen!! Data will be lost [ 155.751037][ T13] [ 155.773921][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 155.878623][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout [ 155.882732][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 155.896700][ T7315] loop0: detected capacity change from 0 to 1024 [ 155.917216][ T7315] EXT4-fs: Ignoring removed orlov option [ 155.943507][ T7315] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 155.968469][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 156.032399][ T5824] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.066060][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout [ 156.315426][ T5839] Bluetooth: hci0: unexpected event for opcode 0x041a [ 156.588676][ T7342] syz_tun: entered allmulticast mode [ 156.595664][ T7341] syz_tun: left allmulticast mode [ 156.603538][ T7340] loop2: detected capacity change from 0 to 512 [ 156.650651][ T7340] EXT4-fs: Ignoring removed orlov option [ 156.664393][ T7340] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 156.704072][ T7340] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 156.741811][ T7340] EXT4-fs error (device loop2): ext4_iget_extra_inode:5073: inode #15: comm syz.2.455: corrupted in-inode xattr: e_value size too large [ 156.777563][ T7345] loop1: detected capacity change from 0 to 512 [ 156.848771][ T7340] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.455: couldn't read orphan inode 15 (err -117) [ 156.852283][ T7345] loop1: detected capacity change from 0 to 512 [ 156.883723][ T7340] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 157.043205][ T7345] ext4: Unknown parameter 'seclabel' [ 157.081753][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.763529][ T7384] loop2: detected capacity change from 0 to 512 [ 157.782259][ T7384] EXT4-fs: Ignoring removed orlov option [ 157.804563][ T7384] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 157.830929][ T7384] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 157.856361][ T7384] EXT4-fs error (device loop2): ext4_iget_extra_inode:5073: inode #15: comm syz.2.472: corrupted in-inode xattr: e_value size too large [ 157.874445][ T7384] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.472: couldn't read orphan inode 15 (err -117) [ 157.889007][ T7384] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 157.951767][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.961808][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 157.968494][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 157.981254][ T7392] netlink: 24 bytes leftover after parsing attributes in process `syz.1.477'. [ 158.039181][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 158.118385][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout [ 158.826101][ T7411] loop4: detected capacity change from 0 to 2048 [ 158.914208][ T7411] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 158.981325][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.811859][ T7452] loop1: detected capacity change from 0 to 2048 [ 159.836660][ T7452] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 159.843433][ T30] kauditd_printk_skb: 23 callbacks suppressed [ 159.843449][ T30] audit: type=1800 audit(1765179265.270:584): pid=7452 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.501" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 160.017856][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 160.436638][ T7475] loop4: detected capacity change from 0 to 512 [ 160.498347][ T7476] netlink: 27 bytes leftover after parsing attributes in process `syz.0.507'. [ 160.544064][ T7475] EXT4-fs: Ignoring removed orlov option [ 160.621618][ T7475] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 160.735517][ T7475] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 160.808233][ T7475] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.510: corrupted in-inode xattr: e_value size too large [ 160.876740][ T7475] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.510: couldn't read orphan inode 15 (err -117) [ 160.893070][ T7475] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 160.970729][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.290177][ T7484] loop3: detected capacity change from 0 to 8192 [ 161.302899][ T7495] pimreg: entered allmulticast mode [ 161.525779][ T7501] loop1: detected capacity change from 0 to 512 [ 161.557379][ T7501] EXT4-fs: Ignoring removed orlov option [ 161.581733][ T7501] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 161.617021][ T7501] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 161.650055][ T7501] EXT4-fs error (device loop1): ext4_iget_extra_inode:5073: inode #15: comm syz.1.522: corrupted in-inode xattr: e_value size too large [ 161.704628][ T7501] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.522: couldn't read orphan inode 15 (err -117) [ 161.754894][ T7501] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 161.808837][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.922897][ T7514] tipc: Enabled bearer , priority 0 [ 161.930663][ T7514] syzkaller0: entered promiscuous mode [ 161.937773][ T7514] syzkaller0: entered allmulticast mode [ 161.966835][ T7514] tipc: Resetting bearer [ 161.978105][ T7513] tipc: Resetting bearer [ 161.993200][ T7513] tipc: Disabling bearer [ 162.517910][ T7532] loop3: detected capacity change from 0 to 512 [ 162.525341][ T7532] EXT4-fs: Ignoring removed orlov option [ 162.535244][ T7532] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 162.568317][ T7532] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 162.603542][ T7532] EXT4-fs error (device loop3): ext4_iget_extra_inode:5073: inode #15: comm syz.3.535: corrupted in-inode xattr: e_value size too large [ 162.651098][ T7532] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.535: couldn't read orphan inode 15 (err -117) [ 162.670062][ T7532] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.734053][ T5839] Bluetooth: hci1: unexpected event for opcode 0x041a [ 162.790357][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.843062][ T7547] loop1: detected capacity change from 0 to 2048 [ 162.925472][ T7547] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.960117][ T7547] ext4 filesystem being mounted at /123/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 163.094043][ T7557] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.540: bg 0: block 345: padding at end of block bitmap is not set [ 163.118401][ T7557] EXT4-fs (loop1): Remounting filesystem read-only [ 163.127314][ T13] EXT4-fs warning (device loop1): ext4_convert_unwritten_extents:5015: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30 [ 163.370051][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.605493][ T7571] loop1: detected capacity change from 0 to 512 [ 163.672901][ T7571] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.546: bad orphan inode 15 [ 163.727910][ T7571] ext4_test_bit(bit=14, block=5) = 0 [ 163.752959][ T7571] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 163.914662][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.142234][ T7585] loop3: detected capacity change from 0 to 512 [ 164.169145][ T7585] EXT4-fs: Ignoring removed orlov option [ 164.180624][ T7585] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 164.224077][ T7585] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 164.234948][ T7584] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.253668][ T7585] EXT4-fs error (device loop3): ext4_iget_extra_inode:5073: inode #15: comm syz.3.551: corrupted in-inode xattr: e_value size too large [ 164.325341][ T5839] Bluetooth: hci3: unexpected event for opcode 0x041a [ 164.343001][ T7585] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.551: couldn't read orphan inode 15 (err -117) [ 164.379538][ T7585] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.441222][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.561835][ T7584] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.723248][ T7584] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.897259][ T7612] netlink: 12 bytes leftover after parsing attributes in process `syz.4.558'. [ 164.961514][ T7584] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 165.066978][ T7621] tipc: Enabling of bearer rejected, failed to enable media [ 165.121907][ T7623] loop4: detected capacity change from 0 to 512 [ 165.152239][ T7623] EXT4-fs: Ignoring removed orlov option [ 165.165463][ T3488] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.172976][ T7623] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 165.201740][ T6025] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.209747][ T7623] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 165.220789][ T7623] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.564: corrupted in-inode xattr: e_value size too large [ 165.236916][ T7623] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.564: couldn't read orphan inode 15 (err -117) [ 165.255189][ T60] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.265582][ T7623] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.304718][ T36] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.454826][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.549087][ T7637] loop1: detected capacity change from 0 to 4096 [ 165.570037][ T7637] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 165.622587][ T30] audit: type=1800 audit(1765179271.050:585): pid=7637 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.568" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 165.649252][ T7637] netlink: 12 bytes leftover after parsing attributes in process `syz.1.568'. [ 165.678470][ T7637] netlink: 'syz.1.568': attribute type 1 has an invalid length. [ 165.686520][ T7637] netlink: 24 bytes leftover after parsing attributes in process `syz.1.568'. [ 165.698651][ T30] audit: type=1326 audit(1765179271.110:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7648 comm="syz.0.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 165.726294][ T30] audit: type=1326 audit(1765179271.110:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7648 comm="syz.0.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 165.752051][ T30] audit: type=1326 audit(1765179271.120:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7648 comm="syz.0.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 165.801548][ T30] audit: type=1326 audit(1765179271.120:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7648 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 165.838722][ T7651] 9p: Bad value for 'rfdno' [ 165.846740][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.849331][ T30] audit: type=1326 audit(1765179271.120:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7648 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 165.893692][ T7651] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 165.989947][ T30] audit: type=1326 audit(1765179271.120:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7648 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 166.012841][ T7659] tipc: Enabling of bearer rejected, failed to enable media [ 166.071800][ T30] audit: type=1326 audit(1765179271.120:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7648 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 166.166730][ T30] audit: type=1326 audit(1765179271.120:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7648 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 166.287337][ T30] audit: type=1326 audit(1765179271.120:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7648 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 166.553503][ T7675] loop0: detected capacity change from 0 to 1024 [ 166.561550][ T7675] EXT4-fs: Ignoring removed nomblk_io_submit option [ 167.178851][ T7675] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6042c018, mo2=0102] [ 167.194786][ T7675] System zones: 0-1, 3-12 [ 167.210061][ T7675] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.252236][ T7676] loop1: detected capacity change from 0 to 8192 [ 167.336168][ T7675] EXT4-fs error (device loop0): __ext4_remount:6789: comm syz.0.581: Abort forced by user [ 167.383523][ T7675] EXT4-fs (loop0): Remounting filesystem read-only [ 167.413344][ T7675] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. [ 167.511102][ T5824] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.755725][ T7704] syzkaller0: entered promiscuous mode [ 167.775607][ T7704] syzkaller0: entered allmulticast mode [ 167.917135][ T7712] tipc: Enabled bearer , priority 0 [ 167.949008][ T7712] tipc: Resetting bearer [ 168.073847][ T7717] netlink: 24 bytes leftover after parsing attributes in process `syz.3.597'. [ 168.097760][ T7717] IPVS: Error connecting to the multicast addr [ 168.122578][ T7721] loop2: detected capacity change from 0 to 1024 [ 168.150569][ T7721] EXT4-fs: Ignoring removed nomblk_io_submit option [ 168.154646][ T7719] loop4: detected capacity change from 0 to 8192 [ 168.193598][ T7721] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6042c018, mo2=0102] [ 168.221616][ T7721] System zones: 0-1, 3-12 [ 168.249113][ T7721] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 168.266381][ T5839] Bluetooth: hci4: unexpected event for opcode 0x041a [ 168.321567][ T7721] EXT4-fs error (device loop2): __ext4_remount:6789: comm syz.2.600: Abort forced by user [ 168.343060][ T7721] EXT4-fs (loop2): Remounting filesystem read-only [ 168.366481][ T7721] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. [ 168.379638][ T7735] netlink: 10364 bytes leftover after parsing attributes in process `syz.1.605'. [ 168.490666][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.744882][ T7747] netlink: 12 bytes leftover after parsing attributes in process `syz.1.606'. [ 168.754024][ T7747] netlink: 12 bytes leftover after parsing attributes in process `syz.1.606'. [ 168.834632][ T7747] loop1: detected capacity change from 0 to 512 [ 168.950719][ T7747] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 168.962124][ T7747] EXT4-fs (loop1): orphan cleanup on readonly fs [ 168.974608][ T6267] tipc: Node number set to 2778890446 [ 169.027938][ T7747] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.606: corrupted inode contents [ 169.042045][ T7747] EXT4-fs (loop1): Remounting filesystem read-only [ 169.050252][ T7747] EXT4-fs (loop1): 1 truncate cleaned up [ 169.130646][ T5991] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 169.178343][ T5991] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 169.198618][ T5991] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started [ 169.211181][ T7747] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 169.231354][ T7747] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.342699][ T7757] netlink: 24 bytes leftover after parsing attributes in process `syz.0.612'. [ 169.354185][ T7757] IPVS: Error connecting to the multicast addr [ 169.379592][ T7758] loop4: detected capacity change from 0 to 1024 [ 169.449381][ T7758] EXT4-fs: Ignoring removed orlov option [ 169.510111][ T7758] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 169.601873][ T7768] netlink: 8 bytes leftover after parsing attributes in process `syz.1.619'. [ 169.647351][ T7774] loop2: detected capacity change from 0 to 1024 [ 169.674799][ T7774] EXT4-fs: Ignoring removed nomblk_io_submit option [ 169.702804][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.712874][ T7774] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6042c018, mo2=0102] [ 169.728667][ T7774] System zones: 0-1, 3-12 [ 169.735347][ T7774] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 169.793198][ T7774] EXT4-fs error (device loop2): __ext4_remount:6789: comm syz.2.617: Abort forced by user [ 169.829352][ T7774] EXT4-fs (loop2): Remounting filesystem read-only [ 169.846020][ T7774] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. [ 169.855953][ T5839] Bluetooth: hci0: unexpected event for opcode 0x041a [ 169.923010][ T7794] netlink: 24 bytes leftover after parsing attributes in process `syz.1.625'. [ 169.936562][ T7794] IPVS: Error connecting to the multicast addr [ 169.947614][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.317414][ T7810] netlink: 12 bytes leftover after parsing attributes in process `syz.1.628'. [ 170.326725][ T7810] netlink: 12 bytes leftover after parsing attributes in process `syz.1.628'. [ 170.407970][ T7810] loop1: detected capacity change from 0 to 512 [ 170.557205][ T7810] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 170.567636][ T7810] EXT4-fs (loop1): orphan cleanup on readonly fs [ 170.636907][ T7810] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.628: corrupted inode contents [ 170.674412][ T7810] EXT4-fs (loop1): Remounting filesystem read-only [ 170.682748][ T7810] EXT4-fs (loop1): 1 truncate cleaned up [ 170.711081][ T6265] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 170.727263][ T7809] loop4: detected capacity change from 0 to 1024 [ 170.734225][ T6265] __quota_error: 27 callbacks suppressed [ 170.734243][ T6265] Quota error (device loop1): write_blk: dquota write failed [ 170.750278][ T6265] Quota error (device loop1): remove_free_dqentry: Can't write block (5) with free entries [ 170.763748][ T7809] EXT4-fs: Ignoring removed orlov option [ 170.770540][ T6265] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 170.788091][ T6265] Quota error (device loop1): write_blk: dquota write failed [ 170.806012][ T6265] Quota error (device loop1): free_dqentry: Can't move quota data block (5) to free list [ 170.825081][ T7809] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.825604][ T6265] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started [ 170.849493][ T6265] Quota error (device loop1): v2_write_file_info: Can't write info structure [ 170.860883][ T6265] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 170.874996][ T7810] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 170.889884][ T7810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.925071][ T7815] netlink: 8 bytes leftover after parsing attributes in process `syz.2.632'. [ 171.059151][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.283355][ T7831] loop1: detected capacity change from 0 to 1024 [ 171.296557][ T7831] EXT4-fs: Ignoring removed nomblk_io_submit option [ 171.360571][ T7831] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6042c018, mo2=0102] [ 171.372234][ T7831] System zones: 0-1, 3-12 [ 171.382639][ T7831] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 171.428893][ T7831] EXT4-fs error (device loop1): __ext4_remount:6789: comm syz.1.637: Abort forced by user [ 171.486387][ T7831] EXT4-fs (loop1): Remounting filesystem read-only [ 171.518260][ T7831] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. [ 171.630127][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.783053][ T7853] netlink: 'syz.2.646': attribute type 10 has an invalid length. [ 171.808438][ T7853] netlink: 40 bytes leftover after parsing attributes in process `syz.2.646'. [ 171.843373][ T7853] loop2: detected capacity change from 0 to 1024 [ 171.866348][ T7853] EXT4-fs: inline encryption not supported [ 171.889617][ T7853] EXT4-fs: Ignoring removed i_version option [ 171.902278][ T7853] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 171.945955][ T7853] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 2: comm syz.2.646: lblock 2 mapped to illegal pblock 2 (length 1) [ 171.964367][ T7853] Quota error (device loop2): qtree_write_dquot: dquota write failed [ 171.972648][ T7853] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 48: comm syz.2.646: lblock 0 mapped to illegal pblock 48 (length 1) [ 171.989669][ T7853] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 172.019237][ T7853] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.646: Failed to acquire dquot type 0 [ 172.055048][ T7853] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 172.075980][ T7853] EXT4-fs error (device loop2): ext4_evict_inode:253: inode #11: comm syz.2.646: mark_inode_dirty error [ 172.090423][ T7853] EXT4-fs warning (device loop2): ext4_evict_inode:256: couldn't mark inode dirty (err -117) [ 172.100872][ T7853] EXT4-fs (loop2): 1 orphan inode deleted [ 172.127523][ T7872] loop0: detected capacity change from 0 to 512 [ 172.128913][ T7853] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 172.134705][ T5969] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:14: lblock 1 mapped to illegal pblock 1 (length 1) [ 172.212000][ T7872] EXT4-fs: Ignoring removed oldalloc option [ 172.221983][ T5969] Quota error (device loop2): remove_tree: Can't read quota data block 1 [ 172.239897][ T5969] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:14: Failed to release dquot type 0 [ 172.257106][ T7853] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.270681][ T7853] EXT4-fs error (device loop2): __ext4_get_inode_loc:4830: comm syz.2.646: Invalid inode table block 1 in block_group 0 [ 172.274084][ T7872] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 172.287274][ T7853] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 172.310012][ T7853] EXT4-fs error (device loop2): ext4_quota_off:7270: inode #3: comm syz.2.646: mark_inode_dirty error [ 172.332987][ T7872] ext4 filesystem being mounted at /133/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 172.364646][ T30] audit: type=1326 audit(1765179277.790:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7878 comm="syz.1.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 172.411459][ T7872] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.650: bg 0: block 217: padding at end of block bitmap is not set [ 172.428838][ T7872] EXT4-fs (loop0): Remounting filesystem read-only [ 172.712637][ T7881] netlink: 32 bytes leftover after parsing attributes in process `syz.2.646'. [ 172.752715][ T7881] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 172.820188][ T5824] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.984700][ T7886] loop1: detected capacity change from 0 to 1024 [ 173.009350][ T7886] EXT4-fs: Ignoring removed nomblk_io_submit option [ 173.082020][ T7886] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6042c018, mo2=0102] [ 173.098624][ T7886] System zones: 0-1, 3-12 [ 173.122355][ T7886] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 173.220327][ T7886] EXT4-fs error (device loop1): __ext4_remount:6789: comm syz.1.656: Abort forced by user [ 173.254635][ T7886] EXT4-fs (loop1): Remounting filesystem read-only [ 173.296982][ T7886] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. [ 173.400842][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 174.138142][ T7944] tipc: Enabling of bearer rejected, failed to enable media [ 174.382765][ T7960] loop1: detected capacity change from 0 to 512 [ 174.408603][ T7960] loop1: detected capacity change from 0 to 512 [ 174.416353][ T7960] ext4: Unknown parameter 'seclabel' [ 174.780139][ T7986] lo speed is unknown, defaulting to 1000 [ 174.821470][ T7986] lo speed is unknown, defaulting to 1000 [ 174.831137][ T7986] lo speed is unknown, defaulting to 1000 [ 174.858685][ T7986] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 174.875757][ T7986] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 174.901230][ T7975] loop0: detected capacity change from 0 to 8192 [ 174.930884][ T7986] lo speed is unknown, defaulting to 1000 [ 174.941306][ T7986] lo speed is unknown, defaulting to 1000 [ 174.960389][ T7986] lo speed is unknown, defaulting to 1000 [ 174.968704][ T7986] lo speed is unknown, defaulting to 1000 [ 174.976669][ T7986] lo speed is unknown, defaulting to 1000 [ 175.041148][ T7996] loop3: detected capacity change from 0 to 512 [ 175.082567][ T7996] loop3: detected capacity change from 0 to 512 [ 175.104248][ T7996] ext4: Unknown parameter 'seclabel' [ 175.645969][ T8032] ext4: Unknown parameter 'seclabel' [ 175.806863][ T8038] set_capacity_and_notify: 3 callbacks suppressed [ 175.806882][ T8038] loop2: detected capacity change from 0 to 512 [ 175.937216][ T8042] netlink: 12 bytes leftover after parsing attributes in process `syz.0.708'. [ 175.946455][ T8042] netlink: 12 bytes leftover after parsing attributes in process `syz.0.708'. [ 176.389041][ T8038] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 176.406639][ T8038] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 176.561854][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 176.820005][ T8068] loop0: detected capacity change from 0 to 512 [ 177.063873][ T8068] loop0: detected capacity change from 0 to 512 [ 177.071096][ T8068] ext4: Unknown parameter 'seclabel' [ 177.696571][ T8082] loop4: detected capacity change from 0 to 512 [ 177.730786][ T8082] EXT4-fs: Ignoring removed i_version option [ 177.762024][ T8082] EXT4-fs: Ignoring removed bh option [ 177.842486][ T8082] ext4 filesystem being mounted at /132/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 177.890763][ T8090] syz_tun: entered allmulticast mode [ 177.896269][ T30] kauditd_printk_skb: 23 callbacks suppressed [ 177.896288][ T30] audit: type=1800 audit(1765179283.320:638): pid=8082 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.724" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 177.942532][ T8087] syz_tun: left allmulticast mode [ 178.279440][ T8111] loop4: detected capacity change from 0 to 128 [ 178.350187][ T8111] syz.4.734: attempt to access beyond end of device [ 178.350187][ T8111] loop4: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 178.482911][ T8125] $Hÿ: renamed from bond0 (while UP) [ 178.507909][ T8125] $Hÿ: entered promiscuous mode [ 178.558117][ T8125] bond_slave_0: entered promiscuous mode [ 178.571357][ T8125] bond_slave_1: entered promiscuous mode [ 178.699711][ T8137] syz_tun: entered allmulticast mode [ 178.724278][ T8137] pimreg: entered allmulticast mode [ 178.735816][ T30] audit: type=1326 audit(1765179284.150:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.2.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 178.774397][ T8136] syz_tun: left allmulticast mode [ 178.855769][ T30] audit: type=1326 audit(1765179284.150:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.2.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 178.905520][ T8154] loop2: detected capacity change from 0 to 164 [ 178.934054][ T8154] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 178.954439][ T30] audit: type=1326 audit(1765179284.150:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.2.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 179.030562][ T30] audit: type=1326 audit(1765179284.160:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.2.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 179.083210][ T30] audit: type=1326 audit(1765179284.510:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8159 comm="syz.3.749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 179.132699][ T30] audit: type=1326 audit(1765179284.530:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8159 comm="syz.3.749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 179.196430][ T30] audit: type=1326 audit(1765179284.530:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8159 comm="syz.3.749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 179.230911][ T30] audit: type=1326 audit(1765179284.530:646): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=8159 comm="syz.3.749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 179.272061][ T30] audit: type=1326 audit(1765179284.530:647): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=8159 comm="syz.3.749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 179.324183][ T8177] syz_tun: entered allmulticast mode [ 179.333692][ T8176] syz_tun: left allmulticast mode [ 179.800638][ T8203] netlink: 8 bytes leftover after parsing attributes in process `syz.0.767'. [ 179.818659][ T8203] netlink: 312 bytes leftover after parsing attributes in process `syz.0.767'. [ 179.866614][ T8203] netlink: 8 bytes leftover after parsing attributes in process `syz.0.767'. [ 179.891062][ T8207] syz_tun: entered allmulticast mode [ 179.900772][ T8202] netlink: 4 bytes leftover after parsing attributes in process `syz.1.766'. [ 179.909098][ T8207] pimreg: entered allmulticast mode [ 179.923268][ T8206] syz_tun: left allmulticast mode [ 180.165578][ T8224] loop1: detected capacity change from 0 to 512 [ 180.178178][ T8224] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 180.231544][ T8224] EXT4-fs (loop1): 1 truncate cleaned up [ 180.259473][ T8224] EXT4-fs mount: 2 callbacks suppressed [ 180.259494][ T8224] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 180.625360][ T8246] lo speed is unknown, defaulting to 1000 [ 180.655478][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 180.771617][ T8250] loop4: detected capacity change from 0 to 1024 [ 180.786111][ T8250] EXT4-fs: Ignoring removed orlov option [ 180.827029][ T8250] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 180.920419][ T8250] xt_CT: You must specify a L4 protocol and not use inversions on it [ 181.078100][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.255229][ T8276] smc: net device bond0 applied user defined pnetid SYZ0 [ 181.273867][ T8276] smc: net device bond0 erased user defined pnetid SYZ0 [ 181.633212][ T8296] loop1: detected capacity change from 0 to 128 [ 184.310141][ T30] kauditd_printk_skb: 102 callbacks suppressed [ 184.310159][ T30] audit: type=1326 audit(1765179289.740:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8336 comm="syz.1.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 184.370818][ T30] audit: type=1326 audit(1765179289.740:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8336 comm="syz.1.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 184.431305][ T30] audit: type=1326 audit(1765179289.740:752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8336 comm="syz.1.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 184.504156][ T30] audit: type=1326 audit(1765179289.740:753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8336 comm="syz.1.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 184.555037][ T8340] loop4: detected capacity change from 0 to 1764 [ 184.584358][ T30] audit: type=1326 audit(1765179289.740:754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8336 comm="syz.1.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 184.620134][ T8343] loop1: detected capacity change from 0 to 512 [ 184.656373][ T30] audit: type=1326 audit(1765179289.740:755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8336 comm="syz.1.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 184.744418][ T30] audit: type=1326 audit(1765179289.740:756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8336 comm="syz.1.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 184.794938][ T8343] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 184.808570][ T8343] EXT4-fs (loop1): orphan cleanup on readonly fs [ 184.818892][ T30] audit: type=1326 audit(1765179289.740:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8336 comm="syz.1.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 184.842559][ T8343] EXT4-fs warning (device loop1): ext4_enable_quotas:7221: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 184.847067][ T30] audit: type=1326 audit(1765179289.740:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8336 comm="syz.1.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 184.881164][ T30] audit: type=1326 audit(1765179289.740:759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8336 comm="syz.1.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa8738f749 code=0x7ffc0000 [ 184.912991][ T8343] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 184.922020][ T8343] EXT4-fs error (device loop1): ext4_ext_check_inode:528: inode #13: comm syz.1.819: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 184.940398][ T8343] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.819: couldn't read orphan inode 13 (err -117) [ 184.955475][ T8343] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 185.039376][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.879891][ T8354] loop1: detected capacity change from 0 to 1024 [ 185.916959][ T8354] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 186.010519][ T8354] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 186.039712][ T8354] EXT4-fs (loop1): orphan cleanup on readonly fs [ 186.058867][ T8354] EXT4-fs error (device loop1): ext4_free_blocks:6728: comm syz.1.821: Freeing blocks not in datazone - block = 0, count = 4096 [ 186.119128][ T8354] EXT4-fs (loop1): 1 orphan inode deleted [ 186.144842][ T8354] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 186.180561][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 186.305962][ T8364] loop3: detected capacity change from 0 to 128 [ 187.044713][ T8368] loop2: detected capacity change from 0 to 512 [ 187.085485][ T8368] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 187.116386][ T8368] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 187.195549][ T8368] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.827: Allocating blocks 41-42 which overlap fs metadata [ 187.267701][ T8368] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.827: Allocating blocks 41-42 which overlap fs metadata [ 187.313131][ T8368] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.827: Failed to acquire dquot type 1 [ 187.339665][ T8378] netlink: 19 bytes leftover after parsing attributes in process `syz.0.829'. [ 187.369970][ T8368] EXT4-fs error (device loop2): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 187.454094][ T8368] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.827: corrupted inode contents [ 187.521026][ T8368] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #12: comm syz.2.827: mark_inode_dirty error [ 187.568954][ T8368] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.827: corrupted inode contents [ 187.652557][ T8368] EXT4-fs error (device loop2): __ext4_ext_dirty:211: inode #12: comm syz.2.827: mark_inode_dirty error [ 187.674789][ T8382] loop0: detected capacity change from 0 to 1024 [ 187.699263][ T8382] EXT4-fs (loop0): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 187.711367][ T8368] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.827: corrupted inode contents [ 187.724992][ T8368] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem [ 187.738682][ T8368] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.827: corrupted inode contents [ 187.754676][ T8382] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 2: comm syz.0.831: lblock 2 mapped to illegal pblock 2 (length 1) [ 187.769090][ T8382] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 48: comm syz.0.831: lblock 0 mapped to illegal pblock 48 (length 1) [ 187.889422][ T8368] EXT4-fs error (device loop2): ext4_truncate:4635: inode #12: comm syz.2.827: mark_inode_dirty error [ 187.915607][ T8382] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.831: Failed to acquire dquot type 0 [ 187.916255][ T8368] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem [ 187.945652][ T8382] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 187.978733][ T8382] EXT4-fs error (device loop0): ext4_evict_inode:253: inode #11: comm syz.0.831: mark_inode_dirty error [ 187.990752][ T8382] EXT4-fs warning (device loop0): ext4_evict_inode:256: couldn't mark inode dirty (err -117) [ 188.002162][ T8382] EXT4-fs (loop0): 1 orphan inode deleted [ 188.009827][ T8382] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 188.029752][ T8368] EXT4-fs (loop2): 1 truncate cleaned up [ 188.037182][ T8368] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 188.050397][ T6344] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:20: lblock 1 mapped to illegal pblock 1 (length 1) [ 188.095476][ T6344] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:20: Failed to release dquot type 0 [ 188.179039][ T8368] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 188.514496][ T5824] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.622802][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.678328][ T5824] EXT4-fs error (device loop0): __ext4_get_inode_loc:4830: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 188.747762][ T5824] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 188.757624][ T5824] EXT4-fs error (device loop0): ext4_quota_off:7270: inode #3: comm syz-executor: mark_inode_dirty error [ 189.454690][ T8422] loop2: detected capacity change from 0 to 128 [ 190.116507][ T8425] netlink: 204 bytes leftover after parsing attributes in process `syz.3.847'. [ 190.404155][ T8428] loop4: detected capacity change from 0 to 1764 [ 191.233927][ T8441] loop1: detected capacity change from 0 to 164 [ 191.267499][ T8441] rock: directory entry would overflow storage [ 191.283644][ T8441] rock: sig=0x4f50, size=4, remaining=3 [ 191.321181][ T8441] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 191.457839][ T30] kauditd_printk_skb: 118 callbacks suppressed [ 191.457855][ T30] audit: type=1326 audit(1765179296.881:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.4.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f738f749 code=0x7ffc0000 [ 191.993650][ T30] audit: type=1326 audit(1765179297.001:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.4.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15f738f749 code=0x7ffc0000 [ 192.016631][ T30] audit: type=1326 audit(1765179297.011:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.4.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f738f749 code=0x7ffc0000 [ 192.057491][ T30] audit: type=1326 audit(1765179297.011:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.4.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f738f749 code=0x7ffc0000 [ 192.090353][ T30] audit: type=1326 audit(1765179297.031:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.4.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f15f738f749 code=0x7ffc0000 [ 192.152204][ T30] audit: type=1326 audit(1765179297.041:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.4.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f738f749 code=0x7ffc0000 [ 192.225592][ T30] audit: type=1326 audit(1765179297.041:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.4.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f738f749 code=0x7ffc0000 [ 192.248118][ T30] audit: type=1326 audit(1765179297.051:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.4.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f15f738df90 code=0x7ffc0000 [ 192.273053][ T30] audit: type=1326 audit(1765179297.061:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.4.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f738f749 code=0x7ffc0000 [ 192.296684][ T30] audit: type=1326 audit(1765179297.111:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.4.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f738f749 code=0x7ffc0000 [ 194.450961][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.457865][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.661136][ T8459] lo speed is unknown, defaulting to 1000 [ 194.740980][ T8485] netlink: 28 bytes leftover after parsing attributes in process `syz.3.866'. [ 194.751706][ T8485] netlink: 28 bytes leftover after parsing attributes in process `syz.3.866'. [ 194.831934][ T8485] netlink: 28 bytes leftover after parsing attributes in process `syz.3.866'. [ 194.855513][ T8485] netlink: 28 bytes leftover after parsing attributes in process `syz.3.866'. [ 196.314458][ T8508] loop4: detected capacity change from 0 to 512 [ 196.328967][ T8508] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 196.366111][ T8508] EXT4-fs (loop4): 1 truncate cleaned up [ 196.375854][ T8508] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 196.460370][ T30] kauditd_printk_skb: 30 callbacks suppressed [ 196.460388][ T30] audit: type=1326 audit(1765179301.891:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8527 comm="syz.3.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 196.488885][ T30] audit: type=1326 audit(1765179301.911:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8527 comm="syz.3.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 196.511292][ T30] audit: type=1326 audit(1765179301.921:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8527 comm="syz.3.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 196.551333][ T30] audit: type=1326 audit(1765179301.981:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8527 comm="syz.3.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 196.598630][ T30] audit: type=1326 audit(1765179302.011:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8527 comm="syz.3.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 196.652209][ T30] audit: type=1326 audit(1765179302.011:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8527 comm="syz.3.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=429 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 196.699724][ T30] audit: type=1326 audit(1765179302.011:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8527 comm="syz.3.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 196.722727][ T30] audit: type=1326 audit(1765179302.011:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8527 comm="syz.3.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aae98f749 code=0x7ffc0000 [ 197.443854][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.739647][ T8544] loop3: detected capacity change from 0 to 512 [ 197.755081][ T8544] EXT4-fs: Ignoring removed oldalloc option [ 197.785815][ T8547] netlink: 24 bytes leftover after parsing attributes in process `syz.4.889'. [ 197.797612][ T8544] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 197.883281][ T8553] loop0: detected capacity change from 0 to 16 [ 197.928940][ T8544] ext4 filesystem being mounted at /180/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 197.946326][ T8553] erofs (device loop0): mounted with root inode @ nid 36. [ 198.490265][ T8526] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 217: padding at end of block bitmap is not set [ 198.511846][ T8550] lo speed is unknown, defaulting to 1000 [ 198.555704][ T8526] EXT4-fs (loop3): Remounting filesystem read-only [ 198.570019][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.087156][ T8579] netlink: 'syz.1.902': attribute type 83 has an invalid length. [ 199.700701][ T8598] loop0: detected capacity change from 0 to 16 [ 199.855478][ T8599] loop1: detected capacity change from 0 to 128 [ 201.406527][ T30] audit: type=1800 audit(1765179306.841:919): pid=8599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.908" name="bus" dev="loop1" ino=1048627 res=0 errno=0 [ 201.472842][ T8598] erofs (device loop0): mounted with root inode @ nid 36. [ 201.879174][ T8599] syz.1.908: attempt to access beyond end of device [ 201.879174][ T8599] loop1: rw=0, sector=121, nr_sectors = 920 limit=128 [ 202.086562][ T8609] loop3: detected capacity change from 0 to 512 [ 202.154106][ T8609] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 202.173564][ T8609] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 202.215062][ T8609] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.909: Allocating blocks 41-42 which overlap fs metadata [ 202.348168][ T8609] Quota error (device loop3): write_blk: dquota write failed [ 202.382037][ T8609] Quota error (device loop3): find_free_dqentry: Can't write quota data block 5 [ 202.396705][ T8609] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.909: Allocating blocks 41-42 which overlap fs metadata [ 202.409748][ T8627] netlink: 'syz.1.918': attribute type 83 has an invalid length. [ 202.414594][ T8609] Quota error (device loop3): write_blk: dquota write failed [ 202.426528][ T8609] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 202.474786][ T8609] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.909: Failed to acquire dquot type 1 [ 202.488128][ T8609] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 202.520614][ T8609] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.909: corrupted inode contents [ 202.534684][ T8609] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.909: mark_inode_dirty error [ 202.547854][ T8609] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.909: corrupted inode contents [ 202.563444][ T8609] EXT4-fs error (device loop3): __ext4_ext_dirty:211: inode #12: comm syz.3.909: mark_inode_dirty error [ 202.576789][ T8609] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.909: corrupted inode contents [ 202.591856][ T8609] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem [ 202.603544][ T8609] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.909: corrupted inode contents [ 202.616180][ T8609] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.909: mark_inode_dirty error [ 202.628094][ T8609] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem [ 202.650135][ T8609] EXT4-fs (loop3): 1 truncate cleaned up [ 202.673149][ T8609] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.821331][ T8639] loop1: detected capacity change from 0 to 1024 [ 202.845585][ T8639] EXT4-fs: Ignoring removed orlov option [ 202.866724][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.902765][ T8639] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 203.181902][ T8623] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 203.232940][ T8654] loop3: detected capacity change from 0 to 1764 [ 203.259794][ T8652] loop2: detected capacity change from 0 to 1024 [ 203.323212][ T8652] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 203.337427][ T8652] ext4 filesystem being mounted at /178/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 203.385330][ T13] EXT4-fs error (device loop2): ext4_map_blocks:825: inode #15: block 3: comm kworker/u8:1: lblock 3 mapped to illegal pblock 3 (length 3) [ 203.401486][ T13] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 203.415406][ T13] EXT4-fs (loop2): This should not happen!! Data will be lost [ 203.415406][ T13] [ 203.435911][ T13] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:1: bg 0: block 112: padding at end of block bitmap is not set [ 203.469432][ T13] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 36 with error 117 [ 203.499621][ T13] EXT4-fs (loop2): This should not happen!! Data will be lost [ 203.499621][ T13] [ 203.537039][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 203.625038][ T8666] loop2: detected capacity change from 0 to 128 [ 203.640584][ T8664] netlink: 'syz.4.931': attribute type 83 has an invalid length. [ 203.720022][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.762094][ T8670] netlink: 28 bytes leftover after parsing attributes in process `syz.2.934'. [ 203.838838][ T8670] netlink: 28 bytes leftover after parsing attributes in process `syz.2.934'. [ 203.855460][ T8672] netlink: 28 bytes leftover after parsing attributes in process `syz.2.934'. [ 203.913753][ T8672] netlink: 28 bytes leftover after parsing attributes in process `syz.2.934'. [ 204.480763][ T8705] loop2: detected capacity change from 0 to 128 [ 204.640291][ T8712] 9p: Bad value for 'rfdno' [ 204.915500][ T8717] netlink: 12 bytes leftover after parsing attributes in process `syz.2.946'. [ 204.924789][ T8717] netlink: 12 bytes leftover after parsing attributes in process `syz.2.946'. [ 204.984890][ T8717] loop2: detected capacity change from 0 to 512 [ 205.116696][ T8717] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 205.127013][ T8717] EXT4-fs (loop2): orphan cleanup on readonly fs [ 205.183925][ T8717] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #16: comm +}[@: corrupted inode contents [ 205.198506][ T8717] EXT4-fs (loop2): Remounting filesystem read-only [ 205.206524][ T8717] EXT4-fs (loop2): 1 truncate cleaned up [ 205.229826][ T7163] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 205.364536][ T7163] Quota error (device loop2): write_blk: dquota write failed [ 205.385141][ T7163] Quota error (device loop2): remove_free_dqentry: Can't write block (5) with free entries [ 205.408962][ T7163] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 205.420750][ T7163] Quota error (device loop2): write_blk: dquota write failed [ 205.428169][ T7163] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list [ 205.438957][ T7163] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 205.438985][ T7163] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 205.439121][ T7163] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 205.441025][ T8717] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 205.443033][ T8717] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.806225][ T8737] netlink: 204 bytes leftover after parsing attributes in process `syz.1.954'. [ 205.901237][ T8743] loop2: detected capacity change from 0 to 128 [ 206.886867][ T8761] loop3: detected capacity change from 0 to 512 [ 206.911212][ T8761] EXT4-fs: Ignoring removed oldalloc option [ 206.953585][ T8761] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 206.966651][ T8761] ext4 filesystem being mounted at /196/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 207.030185][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 207.396184][ T8794] loop0: detected capacity change from 0 to 512 [ 207.420340][ T8794] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 207.433482][ T8794] ext4 filesystem being mounted at /189/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 207.453907][ T30] kauditd_printk_skb: 10 callbacks suppressed [ 207.453924][ T30] audit: type=1800 audit(1765179312.881:930): pid=8794 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.973" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 207.471718][ T8794] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 207.499766][ T8794] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 1 with error 28 [ 207.518183][ T8794] EXT4-fs (loop0): This should not happen!! Data will be lost [ 207.518183][ T8794] [ 207.529608][ T8794] EXT4-fs (loop0): Total free blocks count 0 [ 207.535805][ T8794] EXT4-fs (loop0): Free/Dirty block details [ 207.541956][ T8794] EXT4-fs (loop0): free_blocks=65280 [ 207.547399][ T8794] EXT4-fs (loop0): dirty_blocks=31 [ 207.554252][ T8794] EXT4-fs (loop0): Block reservation details [ 207.560514][ T8794] EXT4-fs (loop0): i_reserved_data_blocks=31 [ 207.607617][ T8803] loop3: detected capacity change from 0 to 512 [ 207.631683][ T36] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 30 with error 28 [ 207.649651][ T8803] EXT4-fs: Ignoring removed oldalloc option [ 207.697717][ T8803] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 207.736796][ T8803] ext4 filesystem being mounted at /200/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 207.826415][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.090411][ T8833] loop2: detected capacity change from 0 to 512 [ 208.105388][ T8833] EXT4-fs: Ignoring removed i_version option [ 208.113574][ T8833] EXT4-fs: Ignoring removed bh option [ 208.190720][ T8833] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.245330][ T8833] ext4 filesystem being mounted at /190/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 208.291612][ T30] audit: type=1800 audit(1765179313.721:931): pid=8833 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.986" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 208.295025][ T8840] ptrace attach of "./syz-executor exec"[8842] was attempted by "./syz-executor exec"[8840] [ 208.380639][ T8844] netlink: 12 bytes leftover after parsing attributes in process `syz.4.985'. [ 208.389773][ T8844] netlink: 12 bytes leftover after parsing attributes in process `syz.4.985'. [ 208.445747][ T8844] loop4: detected capacity change from 0 to 512 [ 208.616278][ T8844] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 208.626344][ T8844] EXT4-fs (loop4): orphan cleanup on readonly fs [ 208.667892][ T8844] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #16: comm syz.4.985: corrupted inode contents [ 208.683758][ T8844] EXT4-fs (loop4): Remounting filesystem read-only [ 208.691784][ T8844] EXT4-fs (loop4): 1 truncate cleaned up [ 208.790474][ T3446] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 208.801496][ T3446] Quota error (device loop4): write_blk: dquota write failed [ 208.809593][ T3446] Quota error (device loop4): remove_free_dqentry: Can't write block (5) with free entries [ 208.820087][ T3446] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 208.831065][ T3446] Quota error (device loop4): write_blk: dquota write failed [ 208.838769][ T3446] Quota error (device loop4): free_dqentry: Can't move quota data block (5) to free list [ 208.850337][ T3446] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 208.863601][ T3446] Quota error (device loop4): v2_write_file_info: Can't write info structure [ 208.876855][ T3446] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 208.890614][ T8844] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 208.892957][ T8844] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.924390][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.977452][ T8850] loop0: detected capacity change from 0 to 128 [ 209.007127][ T8855] loop1: detected capacity change from 0 to 512 [ 209.008573][ T8849] syz.0.990: attempt to access beyond end of device [ 209.008573][ T8849] loop0: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 209.014524][ T8855] EXT4-fs: Ignoring removed oldalloc option [ 209.102365][ T8855] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 209.143019][ T8855] ext4 filesystem being mounted at /214/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 209.173029][ T8858] loop2: detected capacity change from 0 to 2048 [ 209.199693][ T8850] syz.0.990: attempt to access beyond end of device [ 209.199693][ T8850] loop0: rw=2049, sector=161, nr_sectors = 8 limit=128 [ 209.216769][ T8858] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 209.234422][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.281232][ T8850] syz.0.990: attempt to access beyond end of device [ 209.281232][ T8850] loop0: rw=2049, sector=177, nr_sectors = 24 limit=128 [ 209.295696][ T8850] syz.0.990: attempt to access beyond end of device [ 209.295696][ T8850] loop0: rw=2049, sector=209, nr_sectors = 8 limit=128 [ 209.311326][ T8850] syz.0.990: attempt to access beyond end of device [ 209.311326][ T8850] loop0: rw=2049, sector=225, nr_sectors = 8 limit=128 [ 209.315033][ T30] audit: type=1800 audit(1765179314.741:932): pid=8858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.991" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 209.324949][ T8850] syz.0.990: attempt to access beyond end of device [ 209.324949][ T8850] loop0: rw=2049, sector=241, nr_sectors = 8 limit=128 [ 209.368568][ T8858] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, [ 209.368597][ T8850] syz.0.990: attempt to access beyond end of device [ 209.368597][ T8850] loop0: rw=2049, sector=257, nr_sectors = 8 limit=128 [ 209.377434][ T8850] syz.0.990: attempt to access beyond end of device [ 209.377434][ T8850] loop0: rw=2049, sector=273, nr_sectors = 8 limit=128 [ 209.390892][ T8858] block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 209.420962][ T8858] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 200 with error 28 [ 209.447744][ T8867] loop1: detected capacity change from 0 to 2048 [ 209.449766][ T8858] EXT4-fs (loop2): This should not happen!! Data will be lost [ 209.449766][ T8858] [ 209.458549][ T8850] syz.0.990: attempt to access beyond end of device [ 209.458549][ T8850] loop0: rw=2049, sector=289, nr_sectors = 8 limit=128 [ 209.479368][ T8850] syz.0.990: attempt to access beyond end of device [ 209.479368][ T8850] loop0: rw=2049, sector=305, nr_sectors = 8 limit=128 [ 209.498340][ T8858] EXT4-fs (loop2): Total free blocks count 0 [ 209.518710][ T8867] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 209.520116][ T8858] EXT4-fs (loop2): Free/Dirty block details [ 209.541706][ T8867] netlink: 4 bytes leftover after parsing attributes in process `syz.1.996'. [ 209.659099][ T8858] EXT4-fs (loop2): free_blocks=2415919104 [ 209.673910][ T8858] EXT4-fs (loop2): dirty_blocks=208 [ 209.680022][ T8858] EXT4-fs (loop2): Block reservation details [ 209.688317][ T8858] EXT4-fs (loop2): i_reserved_data_blocks=13 [ 209.790855][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.829902][ T1040] Buffer I/O error on dev loop0, logical block 161, lost async page write [ 209.843760][ T1040] Buffer I/O error on dev loop0, logical block 162, lost async page write [ 209.856131][ T1040] Buffer I/O error on dev loop0, logical block 163, lost async page write [ 209.874799][ T1040] Buffer I/O error on dev loop0, logical block 164, lost async page write [ 209.884183][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 209.893412][ T1040] Buffer I/O error on dev loop0, logical block 165, lost async page write [ 209.918469][ T1040] Buffer I/O error on dev loop0, logical block 166, lost async page write [ 210.133250][ T8886] loop2: detected capacity change from 0 to 512 [ 210.166711][ T8886] EXT4-fs: Ignoring removed i_version option [ 210.192122][ T8886] EXT4-fs: Ignoring removed bh option [ 210.327362][ T8886] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 210.358718][ T8886] ext4 filesystem being mounted at /192/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 210.425360][ T30] audit: type=1800 audit(1765179315.841:933): pid=8886 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1001" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 210.467659][ T8901] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1006'. [ 210.476877][ T8901] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1006'. [ 210.555317][ T8901] loop0: detected capacity change from 0 to 512 [ 210.746376][ T8901] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 210.756931][ T8901] EXT4-fs (loop0): orphan cleanup on readonly fs [ 210.796648][ T8901] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #16: comm +}[@: corrupted inode contents [ 210.817455][ T8901] EXT4-fs (loop0): Remounting filesystem read-only [ 210.825914][ T8901] EXT4-fs (loop0): 1 truncate cleaned up [ 210.860006][ T3488] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 210.878462][ T3488] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 210.895016][ T3488] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 210.908687][ T8901] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 210.977907][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 211.164081][ T5824] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 211.278392][ C1] sd 0:0:1:0: [sda] tag#10158 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 211.289121][ C1] sd 0:0:1:0: [sda] tag#10158 CDB: Write(6) 0a 00 00 00 01 00 00 00 04 00 00 10 [ 211.443795][ T8918] EXT4-fs: Ignoring removed nomblk_io_submit option [ 211.497585][ T8918] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 211.785975][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 211.937589][ T8938] syz_tun: entered allmulticast mode [ 211.966471][ T8937] syz_tun: left allmulticast mode [ 211.996022][ T8935] EXT4-fs: Ignoring removed i_version option [ 212.074846][ T8935] EXT4-fs: Ignoring removed bh option [ 212.135939][ T8935] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 212.178252][ T8935] ext4 filesystem being mounted at /197/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 212.804049][ T8943] set_capacity_and_notify: 3 callbacks suppressed [ 212.804066][ T8943] loop4: detected capacity change from 0 to 512 [ 212.861382][ T8943] EXT4-fs: Ignoring removed oldalloc option [ 212.980276][ T8943] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 213.054157][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.091305][ T8943] ext4 filesystem being mounted at /198/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 213.091836][ T30] kauditd_printk_skb: 72 callbacks suppressed [ 213.091851][ T30] audit: type=1800 audit(1765179317.721:1000): pid=8946 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1023" name="bus" dev="loop0" ino=1048633 res=0 errno=0 [ 213.128777][ T30] audit: type=1800 audit(1765179318.301:1001): pid=8935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1022" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 213.272716][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.815338][ T8963] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1031'. [ 214.158147][ T8969] IPv6: Can't replace route, no match found [ 214.354550][ T8978] loop0: detected capacity change from 0 to 512 [ 214.384936][ T8977] loop2: detected capacity change from 0 to 512 [ 214.419156][ T8977] EXT4-fs: Ignoring removed i_version option [ 214.425198][ T8977] EXT4-fs: Ignoring removed bh option [ 214.439469][ T8978] EXT4-fs: Ignoring removed oldalloc option [ 214.490354][ T8977] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 214.512627][ T8978] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 214.525174][ T8987] loop4: detected capacity change from 0 to 1024 [ 214.536930][ T8987] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 214.558760][ T8987] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 214.576986][ T8977] ext4 filesystem being mounted at /200/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 214.577314][ T8987] EXT4-fs (loop4): orphan cleanup on readonly fs [ 214.598477][ T8978] ext4 filesystem being mounted at /200/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 214.613482][ T8987] EXT4-fs error (device loop4): ext4_free_blocks:6728: comm syz.4.1039: Freeing blocks not in datazone - block = 0, count = 4096 [ 214.628592][ T8987] EXT4-fs (loop4): 1 orphan inode deleted [ 214.635980][ T8987] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 214.653802][ T30] audit: type=1800 audit(1765179320.081:1002): pid=8977 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1036" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 214.676559][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 214.725242][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 214.801639][ T5824] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 215.121069][ T9006] syzkaller0: left promiscuous mode [ 215.135337][ T9006] syzkaller0: left allmulticast mode [ 215.339241][ T9013] lo speed is unknown, defaulting to 1000 [ 215.676386][ T9029] syz.2.1055 (9029) used greatest stack depth: 17592 bytes left [ 215.731736][ T9034] loop3: detected capacity change from 0 to 4096 [ 215.795350][ T9034] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 215.885609][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 215.996880][ T9047] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1062'. [ 216.611341][ T9064] loop1: detected capacity change from 0 to 1024 [ 216.639223][ T9064] EXT4-fs: Ignoring removed orlov option [ 216.674250][ T9064] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 216.875405][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 216.907930][ T9075] netlink: 'syz.4.1073': attribute type 83 has an invalid length. [ 217.084311][ T9083] syz_tun: entered allmulticast mode [ 217.106788][ T9085] loop3: detected capacity change from 0 to 1764 [ 217.107066][ T9081] syz_tun: left allmulticast mode [ 217.250296][ T9091] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1082'. [ 217.489544][ T9101] loop3: detected capacity change from 0 to 1024 [ 217.497377][ T9101] EXT4-fs: Ignoring removed orlov option [ 217.512055][ T9101] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 217.534859][ T9105] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1087'. [ 217.614984][ T30] audit: type=1326 audit(1765179323.041:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.2.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 217.661349][ T30] audit: type=1326 audit(1765179323.071:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.2.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 217.696070][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 217.741469][ T30] audit: type=1326 audit(1765179323.071:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.2.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 217.767737][ T30] audit: type=1326 audit(1765179323.071:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.2.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 217.793261][ T30] audit: type=1326 audit(1765179323.071:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.2.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 217.824029][ T30] audit: type=1326 audit(1765179323.071:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.2.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 217.843217][ T9110] loop2: detected capacity change from 0 to 512 [ 217.855296][ T30] audit: type=1326 audit(1765179323.071:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.2.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 217.901069][ T9110] loop2: detected capacity change from 0 to 512 [ 217.921864][ T9110] ext4: Unknown parameter 'seclabel' [ 218.074168][ T9116] loop3: detected capacity change from 0 to 512 [ 218.168094][ T9116] EXT4-fs: inline encryption not supported [ 218.212440][ T9116] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 218.269213][ T9116] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.1092: invalid indirect mapped block 2683928664 (level 1) [ 218.294030][ T9123] syz_tun: entered allmulticast mode [ 218.311845][ T9120] syz_tun: left allmulticast mode [ 218.334204][ T9116] EXT4-fs (loop3): 1 truncate cleaned up [ 218.383770][ T9116] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.411273][ T30] kauditd_printk_skb: 7 callbacks suppressed [ 218.411290][ T30] audit: type=1800 audit(1765179323.841:1017): pid=9116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1092" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 218.501958][ T9116] lo speed is unknown, defaulting to 1000 [ 218.510180][ T9116] lo speed is unknown, defaulting to 1000 [ 218.517279][ T9116] lo speed is unknown, defaulting to 1000 [ 218.669965][ T9116] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 218.772303][ T9116] lo speed is unknown, defaulting to 1000 [ 218.783429][ T9116] lo speed is unknown, defaulting to 1000 [ 218.811637][ T9132] loop1: detected capacity change from 0 to 512 [ 218.856373][ T9132] EXT4-fs: Ignoring removed i_version option [ 218.869980][ T9116] lo speed is unknown, defaulting to 1000 [ 218.878352][ T9132] EXT4-fs: Ignoring removed bh option [ 218.917375][ T9116] lo speed is unknown, defaulting to 1000 [ 218.933715][ T9132] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.949786][ T9116] lo speed is unknown, defaulting to 1000 [ 218.996170][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.006728][ T9132] ext4 filesystem being mounted at /235/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 219.079293][ T30] audit: type=1800 audit(1765179324.511:1018): pid=9132 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1099" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 219.158387][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.525675][ T9151] loop0: detected capacity change from 0 to 2048 [ 219.679906][ T9151] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 219.820879][ T9168] loop4: detected capacity change from 0 to 128 [ 220.522754][ T9164] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 220.604932][ T5824] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.361811][ T9191] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1119'. [ 222.002918][ T9210] loop0: detected capacity change from 0 to 512 [ 222.010314][ T9210] EXT4-fs: Ignoring removed i_version option [ 222.032630][ T9210] EXT4-fs: Ignoring removed bh option [ 222.042275][ T9212] syz_tun: entered allmulticast mode [ 222.053017][ T9211] syz_tun: left allmulticast mode [ 222.072606][ T9210] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 222.116444][ T9210] ext4 filesystem being mounted at /213/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 222.222047][ T30] audit: type=1800 audit(1765179327.651:1019): pid=9210 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1126" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 222.286544][ T5824] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.472053][ T9226] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1131'. [ 222.722517][ T9234] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1136'. [ 222.749816][ T9234] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1136'. [ 222.770130][ T9234] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1136'. [ 222.794729][ T9234] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1136'. [ 223.355741][ T9250] loop2: detected capacity change from 0 to 128 [ 224.029278][ T30] audit: type=1800 audit(1765179329.461:1020): pid=9250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1139" name="bus" dev="loop2" ino=1048635 res=0 errno=0 [ 224.320997][ T9250] bio_check_eod: 47 callbacks suppressed [ 224.321018][ T9250] syz.2.1139: attempt to access beyond end of device [ 224.321018][ T9250] loop2: rw=0, sector=121, nr_sectors = 920 limit=128 [ 224.474312][ T9249] loop4: detected capacity change from 0 to 8192 [ 224.605981][ T9256] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1145'. [ 225.303540][ T9265] loop4: detected capacity change from 0 to 512 [ 225.336386][ T9265] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 225.447119][ T9265] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it [ 225.498260][ T9265] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.1148: Corrupt directory, running e2fsck is recommended [ 225.558927][ T30] audit: type=1326 audit(1765179330.981:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.2.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 225.587605][ T9269] loop2: detected capacity change from 0 to 512 [ 225.596685][ T9269] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 225.616920][ T30] audit: type=1326 audit(1765179330.981:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.2.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 225.656923][ T9269] EXT4-fs (loop2): 1 truncate cleaned up [ 225.718327][ T30] audit: type=1326 audit(1765179330.981:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.2.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 225.744337][ T9269] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 225.801235][ T9265] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 225.839880][ T9265] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.1148: corrupted in-inode xattr: invalid ea_ino [ 225.854307][ T30] audit: type=1326 audit(1765179330.981:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.2.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 225.904957][ T30] audit: type=1326 audit(1765179330.981:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.2.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 225.948613][ T9265] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1148: couldn't read orphan inode 15 (err -117) [ 225.989433][ T9269] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1149'. [ 225.990319][ T9265] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 226.021436][ T9269] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1149'. [ 226.021882][ T30] audit: type=1326 audit(1765179330.981:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.2.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 226.115672][ T30] audit: type=1326 audit(1765179330.981:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.2.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 226.122888][ T9269] bridge1: entered promiscuous mode [ 226.187002][ T30] audit: type=1326 audit(1765179331.011:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.2.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 226.208489][ T9269] bridge1: entered allmulticast mode [ 226.245819][ T9265] EXT4-fs error (device loop4): __ext4_remount:6789: comm syz.4.1148: Abort forced by user [ 226.272059][ T30] audit: type=1326 audit(1765179331.011:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.2.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 226.308837][ T9265] EXT4-fs (loop4): Remounting filesystem read-only [ 226.315756][ T9265] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 226.467813][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.759631][ T9288] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1154'. [ 226.769909][ T9288] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1154'. [ 226.841966][ T9288] loop0: detected capacity change from 0 to 512 [ 226.905155][ T9288] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 226.915410][ T9288] EXT4-fs (loop0): orphan cleanup on readonly fs [ 226.943263][ T9288] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #16: comm syz.0.1154: corrupted inode contents [ 226.956738][ T9288] EXT4-fs (loop0): Remounting filesystem read-only [ 226.967629][ T9288] EXT4-fs (loop0): 1 truncate cleaned up [ 226.986457][ T36] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 227.142789][ T36] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 227.226405][ T36] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 227.239857][ T9288] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 227.254485][ T9288] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 227.315528][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 227.621262][ T9301] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1157'. [ 227.769585][ T9308] loop4: detected capacity change from 0 to 128 [ 227.839144][ T5839] Bluetooth: hci1: unexpected event for opcode 0x041a [ 228.166366][ T9308] syz.4.1159: attempt to access beyond end of device [ 228.166366][ T9308] loop4: rw=0, sector=121, nr_sectors = 920 limit=128 [ 229.236619][ T9326] loop0: detected capacity change from 0 to 1024 [ 229.268186][ T9326] EXT4-fs: Ignoring removed nomblk_io_submit option [ 229.310138][ T9326] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 229.397448][ T30] kauditd_printk_skb: 150 callbacks suppressed [ 229.397465][ T30] audit: type=1326 audit(1765179334.781:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.0.1168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 229.433866][ T30] audit: type=1326 audit(1765179334.821:1175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.0.1168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 229.481263][ T30] audit: type=1326 audit(1765179334.821:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.0.1168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 229.529885][ T9337] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1172'. [ 229.556773][ T30] audit: type=1326 audit(1765179334.831:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.0.1168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 229.603852][ T30] audit: type=1326 audit(1765179334.831:1178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.0.1168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 229.635536][ T30] audit: type=1326 audit(1765179334.831:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.0.1168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 229.678672][ T5824] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.707502][ T30] audit: type=1326 audit(1765179334.831:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.0.1168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 229.724200][ T9339] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1173'. [ 229.735739][ T30] audit: type=1326 audit(1765179334.831:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.0.1168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 229.764527][ T30] audit: type=1326 audit(1765179334.831:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.0.1168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 229.787250][ T30] audit: type=1326 audit(1765179334.831:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.0.1168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 229.812743][ T9339] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1173'. [ 229.852127][ T9339] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1173'. [ 229.872467][ T9342] loop2: detected capacity change from 0 to 512 [ 229.881154][ T9339] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1173'. [ 229.899092][ T9342] EXT4-fs: Ignoring removed nobh option [ 229.936652][ T9342] EXT4-fs (loop2): orphan cleanup on readonly fs [ 229.961653][ T9342] EXT4-fs warning (device loop2): ext4_xattr_inode_get:546: inode #11: comm syz.2.1174: ea_inode file size=4 entry size=6 [ 229.987167][ T9342] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2857: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 230.003205][ T9342] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #15: comm syz.2.1174: corrupted inode contents [ 230.016753][ T9342] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #15: comm syz.2.1174: mark_inode_dirty error [ 230.028843][ T9342] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #15: comm syz.2.1174: corrupted inode contents [ 230.043676][ T9342] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3000: inode #15: comm syz.2.1174: mark_inode_dirty error [ 230.056319][ T9342] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3003: inode #15: comm syz.2.1174: mark inode dirty (error -117) [ 230.078843][ T9342] EXT4-fs warning (device loop2): ext4_evict_inode:273: xattr delete (err -117) [ 230.094190][ T9342] EXT4-fs (loop2): 1 orphan inode deleted [ 230.102673][ T9342] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 230.195092][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.381804][ T9360] loop2: detected capacity change from 0 to 2048 [ 230.424870][ T9360] loop2: p1 p2 p3 [ 230.427247][ T9362] loop1: detected capacity change from 0 to 512 [ 230.482611][ T9362] EXT4-fs: Ignoring removed orlov option [ 230.502860][ T9362] EXT4-fs: Ignoring removed i_version option [ 230.538300][ T9362] EXT4-fs: Ignoring removed nomblk_io_submit option [ 230.565694][ T9362] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 230.578098][ T9362] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e118, mo2=0002] [ 230.586665][ T9362] EXT4-fs (loop1): orphan cleanup on readonly fs [ 230.592162][ T9364] loop4: detected capacity change from 0 to 512 [ 230.593404][ T9362] EXT4-fs warning (device loop1): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 230.614422][ T9362] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 230.624840][ T9364] EXT4-fs: inline encryption not supported [ 230.631668][ T9362] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1182: bg 0: block 40: padding at end of block bitmap is not set [ 230.663314][ T9364] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 230.674897][ T9364] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.1183: invalid indirect mapped block 2683928664 (level 1) [ 230.680671][ T9362] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 230.710391][ T9364] EXT4-fs (loop4): 1 truncate cleaned up [ 230.722880][ T9364] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 230.735718][ T9362] EXT4-fs (loop1): 1 truncate cleaned up [ 230.743215][ T9362] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 230.764236][ T9362] EXT4-fs (loop1): shut down requested (1) [ 230.824859][ T9372] loop2: detected capacity change from 0 to 2048 [ 230.837806][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.865410][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.879496][ T9372] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 230.893291][ T9372] ext4 filesystem being mounted at /236/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 231.004625][ T9381] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1186: bg 0: block 345: padding at end of block bitmap is not set [ 231.020963][ T9381] EXT4-fs (loop2): Remounting filesystem read-only [ 231.033850][ T60] EXT4-fs warning (device loop2): ext4_convert_unwritten_extents:5015: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30 [ 231.076892][ T9383] loop0: detected capacity change from 0 to 512 [ 231.116956][ T9383] loop0: detected capacity change from 0 to 512 [ 231.169198][ T9383] ext4: Unknown parameter 'seclabel' [ 231.203127][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.691053][ T9397] netlink: 'syz.3.1195': attribute type 13 has an invalid length. [ 231.709077][ T9397] gretap0: refused to change device tx_queue_len [ 231.724541][ T9392] loop4: detected capacity change from 0 to 8192 [ 231.726105][ T9397] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 231.776532][ T6788] lo speed is unknown, defaulting to 1000 [ 232.453057][ T9406] loop4: detected capacity change from 0 to 512 [ 232.503810][ T9406] EXT4-fs: Ignoring removed orlov option [ 232.514331][ T9406] EXT4-fs: Ignoring removed i_version option [ 232.520739][ T9406] EXT4-fs: Ignoring removed nomblk_io_submit option [ 232.534018][ T9406] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 232.558643][ T9406] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e118, mo2=0002] [ 232.568022][ T9406] EXT4-fs (loop4): orphan cleanup on readonly fs [ 232.577277][ T9406] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 232.593232][ T9406] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 232.603706][ T9406] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1198: bg 0: block 40: padding at end of block bitmap is not set [ 232.619779][ T9406] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 232.629137][ T9406] EXT4-fs (loop4): 1 truncate cleaned up [ 232.637469][ T9406] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 232.671243][ T9406] EXT4-fs (loop4): shut down requested (1) [ 232.729308][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.889233][ T9419] netlink: 'syz.4.1203': attribute type 10 has an invalid length. [ 232.897104][ T9419] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1203'. [ 232.916070][ T9418] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.092943][ T9419] team0: Failed to send port change of device geneve0 via netlink (err -105) [ 233.101006][ T9425] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1206'. [ 233.118611][ T9419] team0: Failed to send options change via netlink (err -105) [ 233.134433][ T9419] team0: Port device geneve0 added [ 233.246696][ T9418] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.269652][ T9427] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1207'. [ 233.355407][ T9430] EXT4-fs: Ignoring removed nomblk_io_submit option [ 233.411481][ T9418] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.497533][ T9430] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.043095][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.374785][ T9418] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.479046][ T30] kauditd_printk_skb: 107 callbacks suppressed [ 234.479063][ T30] audit: type=1326 audit(1765179339.911:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.2.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 234.509994][ T30] audit: type=1326 audit(1765179339.931:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.2.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 234.536664][ T30] audit: type=1326 audit(1765179339.941:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.2.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 234.564933][ T9452] set_capacity_and_notify: 1 callbacks suppressed [ 234.564950][ T9452] loop0: detected capacity change from 0 to 1764 [ 234.582042][ T30] audit: type=1326 audit(1765179339.941:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.2.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 234.606021][ T30] audit: type=1326 audit(1765179339.961:1293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.2.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 234.647824][ T5991] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.649478][ T30] audit: type=1326 audit(1765179339.961:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.2.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 234.681094][ T30] audit: type=1326 audit(1765179339.961:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.2.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 234.706985][ T30] audit: type=1326 audit(1765179339.971:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.2.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 234.741720][ T1130] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.763701][ T1130] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.796121][ T30] audit: type=1326 audit(1765179339.971:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.2.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 234.820622][ T6304] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.831279][ T30] audit: type=1326 audit(1765179339.971:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.2.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90a158f749 code=0x7ffc0000 [ 235.102478][ T9469] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1225'. [ 235.123335][ T9469] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1225'. [ 235.139614][ T9469] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1225'. [ 235.172866][ T9469] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1225'. [ 235.435885][ T9478] loop3: detected capacity change from 0 to 1764 [ 236.047736][ T9503] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1235'. [ 236.056881][ T9503] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1235'. [ 236.129850][ T9503] loop0: detected capacity change from 0 to 512 [ 236.290600][ T9503] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 236.300918][ T9503] EXT4-fs (loop0): orphan cleanup on readonly fs [ 236.347512][ T9503] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #16: comm syz.0.1235: corrupted inode contents [ 236.361238][ T9503] EXT4-fs (loop0): Remounting filesystem read-only [ 236.369343][ T9503] EXT4-fs (loop0): 1 truncate cleaned up [ 236.465880][ T36] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 236.489715][ T36] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 236.529887][ T36] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 236.554547][ T9503] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 236.570621][ T9503] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.808696][ T9513] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1241'. [ 236.857696][ T9513] netlink: 'syz.4.1241': attribute type 5 has an invalid length. [ 236.953258][ T9518] loop0: detected capacity change from 0 to 512 [ 236.970644][ T9518] EXT4-fs: Mount option(s) incompatible with ext2 [ 237.175675][ T9526] loop2: detected capacity change from 0 to 512 [ 237.200198][ T9526] EXT4-fs: inline encryption not supported [ 237.227739][ T9526] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 237.243422][ T9526] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.1246: invalid indirect mapped block 2683928664 (level 1) [ 237.281876][ T9526] EXT4-fs (loop2): 1 truncate cleaned up [ 237.294857][ T9526] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 237.462972][ T9538] netdevsim netdevsim1: Direct firmware load for ./file0 failed with error -2 [ 237.499449][ T9538] netdevsim netdevsim1: Falling back to sysfs fallback for: ./file0 [ 237.538103][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 237.833491][ T9556] rdma_op ffff8880294861f0 conn xmit_rdma 0000000000000000 [ 238.447198][ T9572] __nla_validate_parse: 3 callbacks suppressed [ 238.447297][ T9572] netlink: 204 bytes leftover after parsing attributes in process `syz.1.1266'. [ 238.553379][ T5839] Bluetooth: hci4: unexpected event for opcode 0x041a [ 238.671251][ T9583] loop1: detected capacity change from 0 to 1024 [ 238.695986][ T9583] EXT4-fs: inline encryption not supported [ 238.710139][ T9583] EXT4-fs: Ignoring removed i_version option [ 238.718393][ T9583] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 238.754385][ T9583] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 2: comm syz.1.1272: lblock 2 mapped to illegal pblock 2 (length 1) [ 238.761731][ T9590] siw: device registration error -23 [ 238.774633][ T9583] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 48: comm syz.1.1272: lblock 0 mapped to illegal pblock 48 (length 1) [ 238.790147][ T9583] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.1272: Failed to acquire dquot type 0 [ 238.810523][ T9583] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 238.822087][ T9583] EXT4-fs error (device loop1): ext4_evict_inode:253: inode #11: comm syz.1.1272: mark_inode_dirty error [ 238.833965][ T9583] EXT4-fs warning (device loop1): ext4_evict_inode:256: couldn't mark inode dirty (err -117) [ 238.846230][ T9583] EXT4-fs (loop1): 1 orphan inode deleted [ 238.853916][ T9583] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 238.868374][ T3488] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:12: lblock 1 mapped to illegal pblock 1 (length 1) [ 238.906292][ T3488] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:12: Failed to release dquot type 0 [ 238.921043][ T9583] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.933515][ T9583] EXT4-fs error (device loop1): __ext4_get_inode_loc:4830: comm syz.1.1272: Invalid inode table block 1 in block_group 0 [ 238.968594][ T9583] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 238.987151][ T9583] EXT4-fs error (device loop1): ext4_quota_off:7270: inode #3: comm syz.1.1272: mark_inode_dirty error [ 239.255543][ T9606] loop3: detected capacity change from 0 to 512 [ 239.269253][ T9606] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31 [ 239.352178][ T9608] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1282'. [ 239.797344][ T9630] loop4: detected capacity change from 0 to 512 [ 239.817351][ T9630] loop4: detected capacity change from 0 to 512 [ 239.847118][ T9630] ext4: Unknown parameter 'seclabel' [ 239.992677][ T9643] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1298'. [ 240.154606][ T9656] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1304'. [ 240.169515][ T9655] siw: device registration error -23 [ 240.171951][ T9656] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1304'. [ 240.229969][ T9659] loop0: detected capacity change from 0 to 1024 [ 240.252615][ T9659] EXT4-fs: Ignoring removed nomblk_io_submit option [ 240.285536][ T9659] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 240.343649][ T30] kauditd_printk_skb: 37 callbacks suppressed [ 240.343665][ T30] audit: type=1326 audit(1765179345.771:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.0.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 240.439019][ T30] audit: type=1326 audit(1765179345.781:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.0.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 240.461932][ T30] audit: type=1326 audit(1765179345.811:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.0.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 240.489467][ T9672] loop2: detected capacity change from 0 to 16 [ 240.506924][ T9672] erofs (device loop2): mounted with root inode @ nid 36. [ 240.575532][ T30] audit: type=1326 audit(1765179345.811:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.0.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 241.056195][ T30] audit: type=1326 audit(1765179345.811:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.0.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 241.095965][ T30] audit: type=1326 audit(1765179345.811:1332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.0.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 241.148383][ T30] audit: type=1326 audit(1765179345.821:1333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.0.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 241.242093][ T30] audit: type=1326 audit(1765179345.821:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.0.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 241.272217][ T9684] loop3: detected capacity change from 0 to 1024 [ 241.281748][ T30] audit: type=1326 audit(1765179345.821:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.0.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 241.288763][ T9684] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 241.306716][ T30] audit: type=1326 audit(1765179345.821:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.0.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 241.355027][ T9684] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 241.368103][ T9684] EXT4-fs (loop3): orphan cleanup on readonly fs [ 241.385544][ T9684] EXT4-fs error (device loop3): ext4_free_blocks:6728: comm syz.3.1313: Freeing blocks not in datazone - block = 0, count = 4096 [ 241.408811][ T9684] EXT4-fs (loop3): 1 orphan inode deleted [ 241.431810][ T5824] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.450215][ T9684] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 241.484938][ T5839] Bluetooth: hci3: unexpected event for opcode 0x041a [ 241.603356][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.634447][ T9697] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1319'. [ 241.901274][ T9714] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1326'. [ 241.971881][ T9718] netlink: 204 bytes leftover after parsing attributes in process `syz.4.1327'. [ 242.396215][ T9732] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1333'. [ 242.422885][ T9730] loop2: detected capacity change from 0 to 1024 [ 242.449028][ T9730] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 242.495854][ T9730] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 242.557678][ T9730] EXT4-fs (loop2): orphan cleanup on readonly fs [ 242.607451][ T9730] EXT4-fs error (device loop2): ext4_free_blocks:6728: comm syz.2.1332: Freeing blocks not in datazone - block = 0, count = 4096 [ 242.668512][ T9730] EXT4-fs (loop2): 1 orphan inode deleted [ 242.679900][ T9730] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 242.813299][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.207591][ T9759] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1344'. [ 243.259218][ T9761] loop2: detected capacity change from 0 to 128 [ 243.267962][ T9761] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 243.282414][ T9761] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 243.368753][ T7163] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 243.525093][ T9774] $Hÿ: renamed from bond0 (while UP) [ 243.566122][ T9774] $Hÿ: entered promiscuous mode [ 243.646981][ T9778] netlink: 'syz.2.1352': attribute type 4 has an invalid length. [ 244.002174][ T9781] loop1: detected capacity change from 0 to 128 [ 244.035085][ T9781] syz.1.1353: attempt to access beyond end of device [ 244.035085][ T9781] loop1: rw=0, sector=121, nr_sectors = 920 limit=128 [ 244.181932][ T9790] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1357'. [ 244.336569][ T9795] loop2: detected capacity change from 0 to 128 [ 244.356645][ T9795] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 244.388148][ T9795] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 244.462464][ T7163] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 244.532566][ T9801] lo speed is unknown, defaulting to 1000 [ 244.634298][ T9804] loop2: detected capacity change from 0 to 512 [ 244.664309][ T9804] ext4: Unknown parameter 'seclabel' [ 244.721893][ T9806] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1364'. [ 245.072157][ T9821] netdevsim netdevsim2: Direct firmware load for ./file0 failed with error -2 [ 245.096602][ T9823] set_capacity_and_notify: 1 callbacks suppressed [ 245.096620][ T9823] loop1: detected capacity change from 0 to 128 [ 245.131945][ T9821] netdevsim netdevsim2: Falling back to sysfs fallback for: ./file0 [ 245.145251][ T9823] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 245.161038][ T9823] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 245.226099][ T9831] loop4: detected capacity change from 0 to 512 [ 245.240643][ T6025] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 245.267415][ T9831] loop4: detected capacity change from 0 to 512 [ 245.292577][ T9831] ext4: Unknown parameter 'seclabel' [ 245.303243][ T9835] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1378'. [ 245.510589][ T9841] loop0: detected capacity change from 0 to 128 [ 245.522910][ T30] kauditd_printk_skb: 340 callbacks suppressed [ 245.522926][ T30] audit: type=1800 audit(1765179350.951:1677): pid=9841 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1377" name="bus" dev="loop0" ino=1048650 res=0 errno=0 [ 245.625892][ T9844] syz.0.1377: attempt to access beyond end of device [ 245.625892][ T9844] loop0: rw=2049, sector=977, nr_sectors = 64 limit=128 [ 245.696018][ T9846] loop3: detected capacity change from 0 to 512 [ 246.178157][ T9862] loop4: detected capacity change from 0 to 1024 [ 246.808715][ T9862] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 246.840025][ T9862] ext4 filesystem being mounted at /266/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 246.986309][ T9873] loop2: detected capacity change from 0 to 512 [ 247.050621][ T9873] loop2: detected capacity change from 0 to 512 [ 247.067888][ T9873] ext4: Unknown parameter 'seclabel' [ 247.083460][ T6265] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: comm kworker/u8:17: lblock 0 mapped to illegal pblock 0 (length 6) [ 247.129990][ T30] audit: type=1326 audit(1765179352.561:1678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 247.160673][ T6265] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 247.191178][ T6265] EXT4-fs (loop4): This should not happen!! Data will be lost [ 247.191178][ T6265] [ 247.208373][ T30] audit: type=1326 audit(1765179352.561:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 247.238796][ T6265] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:17: bg 0: block 112: padding at end of block bitmap is not set [ 247.259016][ T6265] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 36 with error 117 [ 247.272867][ T30] audit: type=1326 audit(1765179352.561:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 247.296451][ T6265] EXT4-fs (loop4): This should not happen!! Data will be lost [ 247.296451][ T6265] [ 247.329265][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 247.368981][ T30] audit: type=1326 audit(1765179352.561:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 247.470641][ T30] audit: type=1326 audit(1765179352.561:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 247.496742][ T30] audit: type=1326 audit(1765179352.561:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 247.528673][ T30] audit: type=1326 audit(1765179352.561:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 247.554424][ T30] audit: type=1326 audit(1765179352.751:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 247.583919][ T30] audit: type=1326 audit(1765179352.771:1686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=269 compat=0 ip=0x7fd1b098f749 code=0x7ffc0000 [ 247.628429][ T5839] Bluetooth: hci4: unexpected event for opcode 0x041a [ 248.552825][ T9907] loop1: detected capacity change from 0 to 512 [ 248.576469][ T9907] [ 248.578929][ T9907] ====================================================== [ 248.586154][ T9907] WARNING: possible circular locking dependency detected [ 248.593195][ T9907] syzkaller #0 Tainted: G L [ 248.599200][ T9907] ------------------------------------------------------ [ 248.606215][ T9907] syz.1.1407/9907 is trying to acquire lock: [ 248.612269][ T9907] ffff88807c03ab98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1ca/0x350 [ 248.622489][ T9907] [ 248.622489][ T9907] but task is already holding lock: [ 248.630020][ T9907] ffff8880117a8a68 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3db/0x6e0 [ 248.640122][ T9907] [ 248.640122][ T9907] which lock already depends on the new lock. [ 248.640122][ T9907] [ 248.650612][ T9907] [ 248.650612][ T9907] the existing dependency chain (in reverse order) is: [ 248.659883][ T9907] [ 248.659883][ T9907] -> #1 (&ei->xattr_sem){++++}-{4:4}: [ 248.667628][ T9907] down_write+0x96/0x1f0 [ 248.672573][ T9907] ext4_destroy_inline_data+0x28/0xe0 [ 248.678471][ T9907] ext4_do_writepages+0x4e6/0x4500 [ 248.684226][ T9907] ext4_writepages+0x203/0x350 [ 248.689696][ T9907] do_writepages+0x32e/0x550 [ 248.694832][ T9907] file_write_and_wait_range+0x23e/0x340 [ 248.700993][ T9907] generic_buffers_fsync_noflush+0x70/0x1d0 [ 248.707543][ T9907] ext4_sync_file+0x322/0xae0 [ 248.712749][ T9907] ext4_buffered_write_iter+0x2ca/0x3a0 [ 248.718985][ T9907] ext4_file_write_iter+0x292/0x1bc0 [ 248.724784][ T9907] do_iter_readv_writev+0x623/0x8c0 [ 248.730606][ T9907] vfs_writev+0x31a/0x960 [ 248.735448][ T9907] do_writev+0x14d/0x2d0 [ 248.740218][ T9907] do_syscall_64+0xfa/0xf80 [ 248.745234][ T9907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.751637][ T9907] [ 248.751637][ T9907] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 248.760141][ T9907] __lock_acquire+0x15a6/0x2cf0 [ 248.765504][ T9907] lock_acquire+0x117/0x340 [ 248.770518][ T9907] percpu_down_read_internal+0x48/0x1c0 [ 248.776571][ T9907] ext4_writepages+0x1ca/0x350 [ 248.782115][ T9907] do_writepages+0x32e/0x550 [ 248.787331][ T9907] __writeback_single_inode+0x133/0x1240 [ 248.793478][ T9907] writeback_single_inode+0x493/0xc70 [ 248.799450][ T9907] write_inode_now+0x160/0x1d0 [ 248.804732][ T9907] iput+0xa77/0x1030 [ 248.809139][ T9907] ext4_xattr_block_set+0x1fce/0x2ac0 [ 248.815028][ T9907] ext4_expand_extra_isize_ea+0x12da/0x1ea0 [ 248.821440][ T9907] __ext4_expand_extra_isize+0x30d/0x400 [ 248.827605][ T9907] __ext4_mark_inode_dirty+0x45c/0x6e0 [ 248.833679][ T9907] ext4_evict_inode+0x79c/0xe60 [ 248.839353][ T9907] evict+0x5f4/0xae0 [ 248.843886][ T9907] ext4_orphan_cleanup+0xc20/0x1460 [ 248.849700][ T9907] ext4_fill_super+0x58a1/0x6160 [ 248.855154][ T9907] get_tree_bdev_flags+0x40e/0x4d0 [ 248.860861][ T9907] vfs_get_tree+0x92/0x2a0 [ 248.865791][ T9907] do_new_mount+0x302/0xa10 [ 248.870820][ T9907] __se_sys_mount+0x313/0x410 [ 248.876027][ T9907] do_syscall_64+0xfa/0xf80 [ 248.881040][ T9907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.887453][ T9907] [ 248.887453][ T9907] other info that might help us debug this: [ 248.887453][ T9907] [ 248.897858][ T9907] Possible unsafe locking scenario: [ 248.897858][ T9907] [ 248.906009][ T9907] CPU0 CPU1 [ 248.911568][ T9907] ---- ---- [ 248.916926][ T9907] lock(&ei->xattr_sem); [ 248.921258][ T9907] lock(&sbi->s_writepages_rwsem); [ 248.928968][ T9907] lock(&ei->xattr_sem); [ 248.935899][ T9907] rlock(&sbi->s_writepages_rwsem); [ 248.941267][ T9907] [ 248.941267][ T9907] *** DEADLOCK *** [ 248.941267][ T9907] [ 248.949489][ T9907] 3 locks held by syz.1.1407/9907: [ 248.954677][ T9907] #0: ffff88807c0380e0 (&type->s_umount_key#28/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xaa0 [ 248.965407][ T9907] #1: ffff88807c038610 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x26f/0xe60 [ 248.974823][ T9907] #2: ffff8880117a8a68 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3db/0x6e0 [ 248.985110][ T9907] [ 248.985110][ T9907] stack backtrace: [ 248.991097][ T9907] CPU: 1 UID: 0 PID: 9907 Comm: syz.1.1407 Tainted: G L syzkaller #0 PREEMPT(full) [ 248.991121][ T9907] Tainted: [L]=SOFTLOCKUP [ 248.991127][ T9907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 248.991139][ T9907] Call Trace: [ 248.991146][ T9907] [ 248.991153][ T9907] dump_stack_lvl+0x189/0x250 [ 248.991175][ T9907] ? __pfx_dump_stack_lvl+0x10/0x10 [ 248.991191][ T9907] ? __pfx__printk+0x10/0x10 [ 248.991212][ T9907] ? print_lock_name+0xde/0x100 [ 248.991231][ T9907] print_circular_bug+0x2e2/0x300 [ 248.991251][ T9907] check_noncircular+0x12e/0x150 [ 248.991270][ T9907] __lock_acquire+0x15a6/0x2cf0 [ 248.991286][ T9907] ? __lock_acquire+0x6b6/0x2cf0 [ 248.991306][ T9907] ? ext4_writepages+0x1ca/0x350 [ 248.991319][ T9907] lock_acquire+0x117/0x340 [ 248.991420][ T9907] ? ext4_writepages+0x1ca/0x350 [ 248.991439][ T9907] percpu_down_read_internal+0x48/0x1c0 [ 248.991453][ T9907] ? ext4_writepages+0x1ca/0x350 [ 248.991468][ T9907] ext4_writepages+0x1ca/0x350 [ 248.991481][ T9907] ? is_bpf_text_address+0x26/0x2b0 [ 248.991495][ T9907] ? __pfx_ext4_writepages+0x10/0x10 [ 248.991514][ T9907] ? do_raw_spin_unlock+0x122/0x240 [ 248.991533][ T9907] ? __pfx_ext4_writepages+0x10/0x10 [ 248.991547][ T9907] do_writepages+0x32e/0x550 [ 248.991570][ T9907] __writeback_single_inode+0x133/0x1240 [ 248.991587][ T9907] ? do_raw_spin_unlock+0x122/0x240 [ 248.991607][ T9907] writeback_single_inode+0x493/0xc70 [ 248.991623][ T9907] write_inode_now+0x160/0x1d0 [ 248.991636][ T9907] ? __pfx_write_inode_now+0x10/0x10 [ 248.991663][ T9907] ? do_raw_spin_unlock+0x122/0x240 [ 248.991683][ T9907] iput+0xa77/0x1030 [ 248.991703][ T9907] ext4_xattr_block_set+0x1fce/0x2ac0 [ 248.991728][ T9907] ? __pfx_ext4_xattr_block_set+0x10/0x10 [ 248.991742][ T9907] ? ext4_xattr_block_find+0x2d4/0x350 [ 248.991763][ T9907] ext4_expand_extra_isize_ea+0x12da/0x1ea0 [ 248.991789][ T9907] __ext4_expand_extra_isize+0x30d/0x400 [ 248.991806][ T9907] __ext4_mark_inode_dirty+0x45c/0x6e0 [ 248.991826][ T9907] ext4_evict_inode+0x79c/0xe60 [ 248.991846][ T9907] ? __pfx_ext4_evict_inode+0x10/0x10 [ 248.991863][ T9907] ? do_raw_spin_unlock+0x122/0x240 [ 248.991881][ T9907] ? __pfx_ext4_evict_inode+0x10/0x10 [ 248.991897][ T9907] evict+0x5f4/0xae0 [ 248.991913][ T9907] ? __pfx_evict+0x10/0x10 [ 248.991926][ T9907] ? _raw_spin_unlock+0x28/0x50 [ 248.991944][ T9907] ? iput+0xcc6/0x1030 [ 248.991963][ T9907] ext4_orphan_cleanup+0xc20/0x1460 [ 248.991984][ T9907] ? __pfx_ext4_orphan_cleanup+0x10/0x10 [ 248.992001][ T9907] ? ext4_register_li_request+0x259/0x720 [ 248.992018][ T9907] ? errseq_check_and_advance+0x66/0x120 [ 248.992034][ T9907] ext4_fill_super+0x58a1/0x6160 [ 248.992055][ T9907] ? __pfx_ext4_fill_super+0x10/0x10 [ 248.992069][ T9907] ? snprintf+0xda/0x120 [ 248.992087][ T9907] ? __pfx_snprintf+0x10/0x10 [ 248.992102][ T9907] ? set_blocksize+0x21e/0x500 [ 248.992119][ T9907] ? sb_set_blocksize+0x155/0x240 [ 248.992133][ T9907] ? setup_bdev_super+0x4c1/0x5b0 [ 248.992149][ T9907] get_tree_bdev_flags+0x40e/0x4d0 [ 248.992173][ T9907] ? __pfx_ext4_fill_super+0x10/0x10 [ 248.992187][ T9907] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 248.992205][ T9907] vfs_get_tree+0x92/0x2a0 [ 248.992219][ T9907] do_new_mount+0x302/0xa10 [ 248.992235][ T9907] ? apparmor_capable+0x137/0x1a0 [ 248.992255][ T9907] ? __pfx_do_new_mount+0x10/0x10 [ 248.992271][ T9907] ? ns_capable+0x8a/0xf0 [ 248.992286][ T9907] ? kmem_cache_free+0x197/0x620 [ 248.992304][ T9907] __se_sys_mount+0x313/0x410 [ 248.992324][ T9907] ? __pfx___se_sys_mount+0x10/0x10 [ 248.992346][ T9907] ? do_syscall_64+0xbe/0xf80 [ 248.992359][ T9907] ? __x64_sys_mount+0x20/0xc0 [ 248.992376][ T9907] do_syscall_64+0xfa/0xf80 [ 248.992389][ T9907] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.992403][ T9907] ? clear_bhb_loop+0x60/0xb0 [ 248.992418][ T9907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.992432][ T9907] RIP: 0033:0x7faa87390eea [ 248.992451][ T9907] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.992464][ T9907] RSP: 002b:00007faa882d5e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 248.992479][ T9907] RAX: ffffffffffffffda RBX: 00007faa882d5ef0 RCX: 00007faa87390eea [ 248.992491][ T9907] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007faa882d5eb0 [ 248.992501][ T9907] RBP: 0000200000000180 R08: 00007faa882d5ef0 R09: 0000000000800700 [ 248.992518][ T9907] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 248.992527][ T9907] R13: 00007faa882d5eb0 R14: 000000000000046f R15: 000000000000002c [ 248.992543][ T9907] [ 249.461251][ T9907] ------------[ cut here ]------------ [ 249.466954][ T9907] EA inode 11 i_nlink=2 [ 249.466980][ T9907] WARNING: fs/ext4/xattr.c:1058 at 0x0, CPU#0: syz.1.1407/9907 [ 249.478701][ T9915] loop2: detected capacity change from 0 to 1024 [ 249.480496][ T9907] Modules linked in: [ 249.486990][ T9915] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 249.489882][ T9907] CPU: 0 UID: 0 PID: 9907 Comm: syz.1.1407 Tainted: G L syzkaller #0 PREEMPT(full) [ 249.512853][ T9907] Tainted: [L]=SOFTLOCKUP [ 249.517179][ T9907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 249.519638][ T9915] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 249.527630][ T9907] RIP: 0010:ext4_xattr_inode_update_ref+0x4dc/0x570 [ 249.535532][ T9915] EXT4-fs (loop2): orphan cleanup on readonly fs [ 249.535890][ T9915] EXT4-fs error (device loop2): ext4_free_blocks:6728: comm syz.2.1409: Freeing blocks not in datazone - block = 0, count = 4096 [ 249.542553][ T9907] Code: 74 08 4c 89 ef e8 84 85 9a ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 bd fe ff ff e8 c0 d2 cd 08 44 89 [ 249.548996][ T9915] EXT4-fs (loop2): 1 orphan inode deleted [ 249.562642][ T9907] RSP: 0018:ffffc900037e7100 EFLAGS: 00010246 [ 249.582911][ T9915] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 249.588456][ T9907] [ 249.611613][ T9907] RAX: 0000000000000000 RBX: 1ffff1100b5c32f9 RCX: dffffc0000000000 [ 249.619939][ T9907] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff8f888230 [ 249.628015][ T9907] RBP: ffffc900037e71f8 R08: ffff88805ae197cf R09: 1ffff1100b5c32f9 [ 249.636185][ T9907] R10: dffffc0000000000 R11: ffffed100b5c32fa R12: ffffffff8f888230 [ 249.644560][ T9907] R13: 000000000000000b R14: 1ffff1100b5c32c4 R15: ffff88805ae19620 [ 249.653091][ T9907] FS: 00007faa882d66c0(0000) GS:ffff888125e37000(0000) knlGS:0000000000000000 [ 249.662298][ T9907] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 249.669101][ T9907] CR2: 000000110c32c3b3 CR3: 0000000085096000 CR4: 00000000003526f0 [ 249.677086][ T9907] Call Trace: [ 249.680539][ T9907] [ 249.683469][ T9907] ? __pfx_inode_set_ctime_to_ts+0x10/0x10 [ 249.689606][ T9907] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10 [ 249.695954][ T9907] ? ext4_xattr_inode_iget+0x3d2/0x5f0 [ 249.702042][ T9907] ext4_xattr_set_entry+0xabb/0x1e20 [ 249.707477][ T9907] ext4_xattr_ibody_set+0x254/0x6a0 [ 249.713695][ T9907] ext4_expand_extra_isize_ea+0x13ad/0x1ea0 [ 249.719719][ T9907] __ext4_expand_extra_isize+0x30d/0x400 [ 249.725377][ T9907] __ext4_mark_inode_dirty+0x45c/0x6e0 [ 249.730904][ T9907] ext4_evict_inode+0x79c/0xe60 [ 249.735851][ T9907] ? __pfx_ext4_evict_inode+0x10/0x10 [ 249.741263][ T9907] ? do_raw_spin_unlock+0x122/0x240 [ 249.746637][ T9907] ? __pfx_ext4_evict_inode+0x10/0x10 [ 249.752488][ T9907] evict+0x5f4/0xae0 [ 249.756377][ T9907] ? __pfx_evict+0x10/0x10 [ 249.760827][ T9907] ? _raw_spin_unlock+0x28/0x50 [ 249.765758][ T9907] ? iput+0xcc6/0x1030 [ 249.769983][ T9907] ext4_orphan_cleanup+0xc20/0x1460 [ 249.775329][ T9907] ? __pfx_ext4_orphan_cleanup+0x10/0x10 [ 249.781131][ T9907] ? ext4_register_li_request+0x259/0x720 [ 249.786877][ T9907] ? errseq_check_and_advance+0x66/0x120 [ 249.792722][ T9907] ext4_fill_super+0x58a1/0x6160 [ 249.797944][ T9907] ? __pfx_ext4_fill_super+0x10/0x10 [ 249.803783][ T9907] ? snprintf+0xda/0x120 [ 249.808033][ T9907] ? __pfx_snprintf+0x10/0x10 [ 249.813353][ T9907] ? set_blocksize+0x21e/0x500 [ 249.818342][ T9907] ? sb_set_blocksize+0x155/0x240 [ 249.823358][ T9907] ? setup_bdev_super+0x4c1/0x5b0 [ 249.828418][ T9907] get_tree_bdev_flags+0x40e/0x4d0 [ 249.833536][ T9907] ? __pfx_ext4_fill_super+0x10/0x10 [ 249.838852][ T9907] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 249.844666][ T9907] vfs_get_tree+0x92/0x2a0 [ 249.849123][ T9907] do_new_mount+0x302/0xa10 [ 249.853643][ T9907] ? apparmor_capable+0x137/0x1a0 [ 249.858743][ T9907] ? __pfx_do_new_mount+0x10/0x10 [ 249.863870][ T9907] ? ns_capable+0x8a/0xf0 [ 249.868243][ T9907] ? kmem_cache_free+0x197/0x620 [ 249.873244][ T9907] __se_sys_mount+0x313/0x410 [ 249.878435][ T9907] ? __pfx___se_sys_mount+0x10/0x10 [ 249.883724][ T9907] ? do_syscall_64+0xbe/0xf80 [ 249.888724][ T9907] ? __x64_sys_mount+0x20/0xc0 [ 249.894054][ T9907] do_syscall_64+0xfa/0xf80 [ 249.898785][ T9907] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.905386][ T9907] ? clear_bhb_loop+0x60/0xb0 [ 249.910749][ T9907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.916676][ T9907] RIP: 0033:0x7faa87390eea [ 249.921150][ T9907] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 249.941101][ T9907] RSP: 002b:00007faa882d5e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 249.949670][ T9907] RAX: ffffffffffffffda RBX: 00007faa882d5ef0 RCX: 00007faa87390eea [ 249.957640][ T9907] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007faa882d5eb0 [ 249.965649][ T9907] RBP: 0000200000000180 R08: 00007faa882d5ef0 R09: 0000000000800700 [ 249.973641][ T9907] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 249.981635][ T9907] R13: 00007faa882d5eb0 R14: 000000000000046f R15: 000000000000002c [ 249.989657][ T9907] [ 249.992687][ T9907] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 249.999991][ T9907] CPU: 0 UID: 0 PID: 9907 Comm: syz.1.1407 Tainted: G L syzkaller #0 PREEMPT(full) [ 250.010827][ T9907] Tainted: [L]=SOFTLOCKUP [ 250.015156][ T9907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 250.025201][ T9907] Call Trace: [ 250.028466][ T9907] [ 250.031406][ T9907] dump_stack_lvl+0x99/0x250 [ 250.035986][ T9907] ? __asan_memcpy+0x40/0x70 [ 250.040653][ T9907] ? __pfx_dump_stack_lvl+0x10/0x10 [ 250.045852][ T9907] ? __pfx__printk+0x10/0x10 [ 250.050613][ T9907] vpanic+0x237/0x6d0 [ 250.054712][ T9907] ? __pfx_vpanic+0x10/0x10 [ 250.059208][ T9907] ? is_bpf_text_address+0x292/0x2b0 [ 250.064477][ T9907] ? is_bpf_text_address+0x26/0x2b0 [ 250.069674][ T9907] panic+0xb9/0xc0 [ 250.073468][ T9907] ? __pfx_panic+0x10/0x10 [ 250.077975][ T9907] __warn+0x317/0x4b0 [ 250.081956][ T9907] __report_bug+0x288/0x500 [ 250.086544][ T9907] ? __pfx___report_bug+0x10/0x10 [ 250.091568][ T9907] ? __ext4_get_inode_loc+0x69a/0x1040 [ 250.097029][ T9907] ? ext4_fc_track_inode+0x133/0xb20 [ 250.102321][ T9907] ? ext4_xattr_inode_update_ref+0xae/0x570 [ 250.108223][ T9907] ? set_normalized_timespec64+0xf0/0x1a0 [ 250.113951][ T9907] ? __ext4_journal_get_write_access+0x84/0x570 [ 250.120224][ T9907] report_bug_entry+0x16a/0x220 [ 250.125107][ T9907] ? ext4_xattr_inode_update_ref+0x4dc/0x570 [ 250.131115][ T9907] ? ext4_xattr_inode_update_ref+0x4e1/0x570 [ 250.137200][ T9907] handle_bug+0xca/0x200 [ 250.141675][ T9907] exc_invalid_op+0x1a/0x50 [ 250.146181][ T9907] asm_exc_invalid_op+0x1a/0x20 [ 250.151029][ T9907] RIP: 0010:ext4_xattr_inode_update_ref+0x4dc/0x570 [ 250.157611][ T9907] Code: 74 08 4c 89 ef e8 84 85 9a ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 bd fe ff ff e8 c0 d2 cd 08 44 89 [ 250.177396][ T9907] RSP: 0018:ffffc900037e7100 EFLAGS: 00010246 [ 250.183528][ T9907] RAX: 0000000000000000 RBX: 1ffff1100b5c32f9 RCX: dffffc0000000000 [ 250.191576][ T9907] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff8f888230 [ 250.199538][ T9907] RBP: ffffc900037e71f8 R08: ffff88805ae197cf R09: 1ffff1100b5c32f9 [ 250.207516][ T9907] R10: dffffc0000000000 R11: ffffed100b5c32fa R12: ffffffff8f888230 [ 250.215495][ T9907] R13: 000000000000000b R14: 1ffff1100b5c32c4 R15: ffff88805ae19620 [ 250.223749][ T9907] ? __pfx_inode_set_ctime_to_ts+0x10/0x10 [ 250.229562][ T9907] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10 [ 250.235894][ T9907] ? ext4_xattr_inode_iget+0x3d2/0x5f0 [ 250.241347][ T9907] ext4_xattr_set_entry+0xabb/0x1e20 [ 250.246644][ T9907] ext4_xattr_ibody_set+0x254/0x6a0 [ 250.251928][ T9907] ext4_expand_extra_isize_ea+0x13ad/0x1ea0 [ 250.257827][ T9907] __ext4_expand_extra_isize+0x30d/0x400 [ 250.263457][ T9907] __ext4_mark_inode_dirty+0x45c/0x6e0 [ 250.268920][ T9907] ext4_evict_inode+0x79c/0xe60 [ 250.273768][ T9907] ? __pfx_ext4_evict_inode+0x10/0x10 [ 250.279135][ T9907] ? do_raw_spin_unlock+0x122/0x240 [ 250.284362][ T9907] ? __pfx_ext4_evict_inode+0x10/0x10 [ 250.289827][ T9907] evict+0x5f4/0xae0 [ 250.293731][ T9907] ? __pfx_evict+0x10/0x10 [ 250.298158][ T9907] ? _raw_spin_unlock+0x28/0x50 [ 250.303144][ T9907] ? iput+0xcc6/0x1030 [ 250.307219][ T9907] ext4_orphan_cleanup+0xc20/0x1460 [ 250.312507][ T9907] ? __pfx_ext4_orphan_cleanup+0x10/0x10 [ 250.318235][ T9907] ? ext4_register_li_request+0x259/0x720 [ 250.323975][ T9907] ? errseq_check_and_advance+0x66/0x120 [ 250.329624][ T9907] ext4_fill_super+0x58a1/0x6160 [ 250.334578][ T9907] ? __pfx_ext4_fill_super+0x10/0x10 [ 250.339865][ T9907] ? snprintf+0xda/0x120 [ 250.344116][ T9907] ? __pfx_snprintf+0x10/0x10 [ 250.348785][ T9907] ? set_blocksize+0x21e/0x500 [ 250.353543][ T9907] ? sb_set_blocksize+0x155/0x240 [ 250.358601][ T9907] ? setup_bdev_super+0x4c1/0x5b0 [ 250.363620][ T9907] get_tree_bdev_flags+0x40e/0x4d0 [ 250.368823][ T9907] ? __pfx_ext4_fill_super+0x10/0x10 [ 250.374371][ T9907] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 250.379999][ T9907] vfs_get_tree+0x92/0x2a0 [ 250.384408][ T9907] do_new_mount+0x302/0xa10 [ 250.388904][ T9907] ? apparmor_capable+0x137/0x1a0 [ 250.393931][ T9907] ? __pfx_do_new_mount+0x10/0x10 [ 250.398953][ T9907] ? ns_capable+0x8a/0xf0 [ 250.403285][ T9907] ? kmem_cache_free+0x197/0x620 [ 250.408304][ T9907] __se_sys_mount+0x313/0x410 [ 250.412999][ T9907] ? __pfx___se_sys_mount+0x10/0x10 [ 250.418314][ T9907] ? do_syscall_64+0xbe/0xf80 [ 250.422989][ T9907] ? __x64_sys_mount+0x20/0xc0 [ 250.427751][ T9907] do_syscall_64+0xfa/0xf80 [ 250.432253][ T9907] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.438399][ T9907] ? clear_bhb_loop+0x60/0xb0 [ 250.443067][ T9907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.449124][ T9907] RIP: 0033:0x7faa87390eea [ 250.453538][ T9907] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 250.473136][ T9907] RSP: 002b:00007faa882d5e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 250.481549][ T9907] RAX: ffffffffffffffda RBX: 00007faa882d5ef0 RCX: 00007faa87390eea [ 250.490393][ T9907] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007faa882d5eb0 [ 250.498540][ T9907] RBP: 0000200000000180 R08: 00007faa882d5ef0 R09: 0000000000800700 [ 250.506694][ T9907] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 250.515114][ T9907] R13: 00007faa882d5eb0 R14: 000000000000046f R15: 000000000000002c [ 250.523184][ T9907] [ 250.526716][ T9907] Kernel Offset: disabled [ 250.531042][ T9907] Rebooting in 86400 seconds..