last executing test programs:

1m44.855136033s ago: executing program 32 (id=114):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r1, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000019c0)=@newtfilter={0x158, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0xb, 0xb}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0xff, 0x5, 0x1, 0x3, 0x4, {0x6, 0x0, 0x1, 0xf6, 0x2}, {0xfe, 0x1, 0x3, 0x5, 0xfffc, 0x9}, 0x8, 0x3ff, 0x8}}]}]}}, @filter_kind_options=@f_cgroup={{0xb}, {0x8, 0x2, [@TCA_CGROUP_ACT={0x4}]}}, @filter_kind_options=@f_u32={{0x8}, {0xc8, 0x2, [@TCA_U32_SEL={0xc4, 0x5, {0xf, 0x2, 0x3, 0xe78, 0x5, 0x400, 0x327c, 0x1000, [{0x22, 0xffff0001, 0x5, 0x1000}, {0x2, 0x42, 0x800, 0x6132}, {0x1ff, 0x4, 0x6ae, 0x25e}, {0xfffffffe, 0x0, 0x9, 0x400}, {0x8, 0x7, 0xc7, 0x3}, {0xbc4, 0x0, 0x1, 0x5}, {0x7e, 0x7, 0x3ff, 0xfffffc00}, {0x0, 0x7, 0x0, 0xba2}, {0x8, 0x8000, 0xffff0000, 0xfffffff6}, {0x1, 0x2, 0x24000000, 0x4}, {0x489, 0x4, 0x10, 0x3}]}}]}}]}, 0x158}, 0x1, 0x0, 0x0, 0x20041090}, 0xd0)

1m37.050162698s ago: executing program 5 (id=713):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x1b, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000001000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b707000014000000b7030000000000008500000005000000bf0920000000000035090100000000009500000000000000bf020000000000007b9af8ff00000000b5090800000000007b9af0ff00000000bd0000000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018220000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9100000000000056070000000000002400000000000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1m36.027264649s ago: executing program 5 (id=734):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x3, {{0x42}, 0x4}}, 0x10)
close(r0)

1m35.937942932s ago: executing program 5 (id=737):
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x4}]})
socket$vsock_stream(0x28, 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1m35.077871343s ago: executing program 5 (id=765):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1f0519, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2ff, 0x1, @perf_bp={0x0, 0x3}, 0x6025, 0x4005, 0xb, 0x3, 0x2, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
setrlimit(0x9, &(0x7f0000000080)={0x8606, 0xffff})
io_setup(0x4, &(0x7f0000002400))

1m34.970056593s ago: executing program 5 (id=768):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)
mount$bpf(0x0, &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x3a84821, 0x0)

1m34.841405799s ago: executing program 5 (id=775):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fallocate(r0, 0x0, 0x0, 0x8ffff)
symlink(&(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1m33.499898961s ago: executing program 2 (id=837):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x1, @perf_bp={0x0, 0x1}, 0x102802, 0x0, 0x0, 0x3, 0xfff, 0x8001, 0x7fff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
unshare(0x400)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)

1m33.364255126s ago: executing program 2 (id=840):
r0 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x80, 0x0, 0x8000021e}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0)

1m33.159641638s ago: executing program 2 (id=845):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="440000001000ffff26bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="0e290000bcb7040008000a00", @ANYRES32=r1, @ANYBLOB="140012800c0001006d6163767461700004000280080005"], 0x44}, 0x1, 0x0, 0x0, 0x240448d5}, 0x8000002)

1m32.897067339s ago: executing program 2 (id=851):
mkdir(&(0x7f0000000280)='./file0\x00', 0x112)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
rmdir(&(0x7f00000000c0)='./file0\x00')

1m32.869678834s ago: executing program 2 (id=852):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000740)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="31032fbd7000fddbdf250800000008000300", @ANYRES64=r0], 0x2c}, 0x1, 0x0, 0x0, 0x8814}, 0x20000084)

1m32.585888542s ago: executing program 2 (id=860):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x80, 0x7}, 0x4)
setsockopt$packet_int(r0, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)

1m32.585686102s ago: executing program 33 (id=860):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x80, 0x7}, 0x4)
setsockopt$packet_int(r0, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)

1m19.809337976s ago: executing program 34 (id=775):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fallocate(r0, 0x0, 0x0, 0x8ffff)
symlink(&(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1m16.933034194s ago: executing program 0 (id=1318):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r0, &(0x7f0000001180)=[{{&(0x7f0000000240)={0xa, 0x4e21, 0x9, @rand_addr=' \x01\x00', 0x46}, 0x1c, &(0x7f0000000680)=[{&(0x7f0000000280)='Q', 0x1}], 0x1}}, {{&(0x7f00000003c0)={0xa, 0x4e20, 0x7, @private2, 0x4002}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000740)='O', 0x1}], 0x1}}], 0x2, 0x40408d1)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000380)={0xa4, 0x7, 0x8e, 0x87, 0x3e, 0x4, 0xf, 0x0, 0x3, 0x3, 0x7, 0x6, 0x5, 0x2}, 0xe)

1m16.840044706s ago: executing program 0 (id=1321):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200840, &(0x7f0000000280)={[{@nobh}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}]}, 0x0, 0x4f7, &(0x7f0000000540)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)

1m16.502646684s ago: executing program 0 (id=1335):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, r0)
add_key$keyring(&(0x7f00000000c0), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, r1)
keyctl$search(0xa, r0, &(0x7f0000000080)='keyring\x00', &(0x7f0000000100)={'syz', 0x2}, r1)

1m16.407645586s ago: executing program 0 (id=1339):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a0300ea000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x40080)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWSETELEM={0x58, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x2c, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}, {0x1c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x2df31ab3}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x80}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

1m16.248362926s ago: executing program 0 (id=1346):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x7, 0x4, 0x900, 0x1, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x10, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x3}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x5}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000f80)={r1}, 0xc)

1m16.2103507s ago: executing program 0 (id=1348):
ptrace(0x10, 0x1)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

1m14.237963885s ago: executing program 3 (id=1398):
r0 = socket$tipc(0x1e, 0x2, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r1, &(0x7f00000000c0)={&(0x7f0000000000)=@name={0x1e, 0x2, 0x2, {{0x41, 0x1}}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4081}, 0x20044095)

1m14.237713035s ago: executing program 3 (id=1399):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
close(r1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000380)={0x1, &(0x7f0000000280)=[{0x6, 0xfe, 0x0, 0x7ffffffe}]})
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x40, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

1m14.237530264s ago: executing program 3 (id=1400):
perf_event_open(&(0x7f0000000340)={0x2, 0x87, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0x0, 0x200}, 0x106200, 0x10004, 0x30da, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000008}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'vlan0\x00', <r2=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000780)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0100d2f2d16eb32902ce2f0000000c00018008000100", @ANYRES32=r2], 0x20}}, 0x0)

1m14.21652781s ago: executing program 3 (id=1402):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x404, &(0x7f0000000080)={[{@nodelalloc}, {@nobh}, {@grpjquota}, {@bh}]}, 0x3, 0x439, &(0x7f0000002380)="$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")
creat(&(0x7f0000000200)='./bus\x00', 0x268)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
preadv2(r0, &(0x7f0000000000)=[{&(0x7f0000000580)=""/4105, 0x1009}], 0x1, 0x1, 0x8, 0x8)

1m14.093428288s ago: executing program 3 (id=1405):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x2, 0x0, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x80, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x80}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200})
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0xfc, 0x6, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x800000000000002, 0x1}, 0x2008, 0x401, 0x0, 0x0, 0x4, 0x0, 0x7, 0x0, 0x0, 0x0, 0xa5c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f1, &(0x7f0000000080))

1m13.641110584s ago: executing program 3 (id=1417):
openat$autofs(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x88142)
r1 = dup(r0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

1m13.640965024s ago: executing program 35 (id=1417):
openat$autofs(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x88142)
r1 = dup(r0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

1m1.19540592s ago: executing program 36 (id=1348):
ptrace(0x10, 0x1)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

27.690628926s ago: executing program 8 (id=2646):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
listen(r0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r1, &(0x7f0000000340), &(0x7f0000000040)=@tcp=r0}, 0x20)
recvmmsg(r0, &(0x7f00000017c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000300)=""/4096, 0x1000}], 0x1}}], 0x2, 0x10100, 0x0)

27.678358614s ago: executing program 8 (id=2647):
setrlimit(0x40000000000008, &(0x7f0000000000)={0x5, 0x7})
capset(&(0x7f0000a31000)={0x20080522}, &(0x7f0000000080))
r0 = memfd_secret(0x80000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, r0, 0x0)
mlock2(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0)

27.664389112s ago: executing program 8 (id=2648):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x8, 0x0, 0x0, 0x7, 0xc0210, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x6, 0x5}, 0x100b28, 0x5, 0x0, 0x5, 0x8, 0x0, 0xd, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
getpid()
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000880)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000140)={0x15, 0x110, 0xfa00, {r1, 0x1, 0x30, 0x30, 0x0, @in6={0x1b, 0x4000, 0x0, @loopback, 0x10000bff}, @ib={0x1b, 0xd9, 0x100fff, {"4a50abf0c8ed50f638facd57de629163"}, 0x8000000000000001, 0x2, 0x3}}}, 0x118)

27.648909388s ago: executing program 8 (id=2649):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f00000009c0), 0x11, 0x56b, &(0x7f0000000440)="$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")
creat(&(0x7f00000004c0)='./bus\x00', 0x20)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f00000002c0)='./bus\x00', 0x0, 0x131)
preadv2(r0, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4083, 0x1bfd31aa}], 0x1, 0x0, 0x0, 0x1)

27.573889865s ago: executing program 8 (id=2650):
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x106200, 0x10004, 0x30da, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000008}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000340)={0x0, 0xa6ff, &(0x7f0000000300)={&(0x7f00000007c0)={0x38, r1, 0xacf5e67dd0b583a1, 0x0, 0x0, {{0x5}, {@val={0x8}, @val={0xc, 0x99, {0x0, 0xffffffff}}}}, [@NL80211_ATTR_HE_OBSS_PD={0x10, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_SR_CTRL={0x5, 0x6, 0x8}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x24048014}, 0x24000040)

27.458011144s ago: executing program 8 (id=2651):
bind$inet(0xffffffffffffffff, 0x0, 0x0)
iopl(0x3)
setuid(0xee01)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$phonet_pipe(0x23, 0x5, 0x2)

27.457915874s ago: executing program 37 (id=2651):
bind$inet(0xffffffffffffffff, 0x0, 0x0)
iopl(0x3)
setuid(0xee01)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$phonet_pipe(0x23, 0x5, 0x2)

2.445811703s ago: executing program 7 (id=3382):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x10, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x1}, 0x2002, 0x32, 0x43a1bd56, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000003800)=@newtaction={0x88c, 0x30, 0x12f, 0x0, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x80000000, 0x0, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x8001, 0x0, 0x3, 0x0, 0x0, 0xd, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x5, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0xb, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff35, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x1, 0x0, 0x200, 0x0, 0x8000, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf722, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x8, 0x0, 0x0, 0x5, 0x0, 0x0, 0x3, 0x0, 0x1]}], [@TCA_POLICE_RATE={0x404, 0x2, [0x7, 0x6, 0x4, 0x7f, 0x401, 0x2, 0x0, 0x2, 0x80000000, 0x4, 0x5, 0x8, 0x0, 0x7fff, 0x75ba, 0x7fffffff, 0x5, 0xffffffff, 0x7ff, 0x2, 0x9, 0x2, 0x0, 0x1000, 0x1, 0x3, 0x6, 0x0, 0xfa, 0x4, 0x0, 0xf, 0x80000001, 0x7, 0xfffffffb, 0x1, 0x20, 0x5, 0xb, 0x1, 0x2f2, 0x7fff, 0x0, 0x81, 0x206, 0x1ff, 0xb, 0x3, 0x5, 0x3, 0x9, 0x1000, 0x401, 0x1, 0x6, 0x7, 0x2, 0x4, 0x7f, 0x5, 0xfffffffb, 0x1, 0x4, 0x5, 0x8, 0x2000009, 0x9, 0x10, 0x9, 0x7, 0xffffff00, 0x97, 0x0, 0x4, 0x8, 0x8, 0x1, 0x958, 0x1fe, 0x4, 0x6, 0x7, 0x80, 0x5, 0xe53, 0x0, 0xfffffffe, 0x4, 0x8, 0x9, 0x7fff, 0x30, 0x8, 0xfffffff7, 0x4, 0x9, 0x1, 0x40000004, 0x7, 0x9, 0x5, 0x7, 0x6, 0x0, 0x5, 0x2, 0x7, 0x3, 0xcdd, 0x2, 0xd67, 0x7, 0x4, 0x25, 0x9dc6, 0x7, 0xfffffff7, 0x2, 0x400, 0x8, 0x0, 0x7, 0x5, 0x9, 0xa, 0xa, 0x9, 0x5, 0xdb5, 0x101, 0x4, 0x74e3, 0x7fff, 0x7, 0x7fe, 0x1, 0xd70, 0x1, 0x8, 0xa, 0x7, 0x1, 0x82, 0x52e, 0x7, 0x1, 0x5, 0x26, 0x1, 0x1b2a, 0x81, 0x9, 0x1c, 0x767, 0x7, 0x20009, 0x10, 0xc2a, 0xff, 0x7, 0x6, 0x7, 0x3, 0xfffffff4, 0x8, 0x3, 0xfff, 0x8, 0x2, 0x5, 0x6, 0x3, 0xd7c3, 0x2, 0x10000, 0x7fff, 0x5, 0x5, 0x0, 0xfffffff7, 0x4, 0x2, 0x0, 0x6ee1847d, 0x10001, 0x7ff, 0x1, 0xf0, 0x7, 0x2, 0x7, 0x4, 0x6, 0x4, 0x7, 0xffffffff, 0x0, 0x1, 0x4, 0x3, 0xfff, 0x80000001, 0x7, 0x676, 0x3, 0x9, 0x2, 0x4, 0x7fff, 0x4a5, 0x23, 0x4, 0x9, 0x8, 0x0, 0x8000, 0xa, 0x9, 0xca000000, 0x1, 0xfffffffa, 0x3, 0x7, 0x9, 0x7, 0x65fd, 0x9, 0x6, 0x4, 0x80000000, 0x5, 0x801, 0xb848, 0x6, 0x6, 0x800, 0x7, 0x1, 0xb, 0x80, 0x2, 0x3, 0x7e54, 0x9, 0x4, 0x4, 0xc, 0x80000001, 0x5, 0x5, 0x10000002, 0xb, 0x7, 0x5, 0x2, 0x4]}], [@TCA_POLICE_TBF={0x30, 0x1, {0x3, 0x1, 0x7, 0x4, 0x1, {0x7, 0x0, 0x3, 0x7, 0x7, 0x80000001}, {0x4, 0x2, 0x2, 0xa, 0x1ff, 0x1c0000}, 0x9, 0xc0, 0xdf72c67}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x88c}}, 0x0)

2.3783854s ago: executing program 7 (id=3377):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40009, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
writev(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000000)='./bus\x00', 0x804800, &(0x7f00000002c0)=ANY=[@ANYRES8=0x0, @ANYRES16], 0xf9, 0x1223, &(0x7f0000001840)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x145042, 0x2c)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x100000b, 0x2013, r0, 0x0)

1.40932657s ago: executing program 6 (id=3403):
syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x0)
r0 = syz_io_uring_setup(0x497, &(0x7f0000000280)={0x0, 0xf6b1, 0x3180, 0x7ffe, 0x40024e}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4000, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x16, 0x1})
io_uring_enter(r0, 0xd44, 0x44c1, 0x7, 0x0, 0x0)

1.372222674s ago: executing program 7 (id=3405):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000000b00010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}, 0x1, 0x0, 0x0, 0x2000094}, 0x80)
sendmsg$NFT_BATCH(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001200)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x8}}], {0xfffffffffffffec4}}, 0x3c}, 0x1, 0x0, 0x0, 0x4008005}, 0x4000000)

1.238577709s ago: executing program 6 (id=3409):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000500)={0x0, 0x5814, 0x0, 0x1, 0xfffffffe}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffd, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r0, 0x5e4, 0xe0ff, 0x2c, 0x0, 0x0)

1.177994028s ago: executing program 6 (id=3411):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r1=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000080)={r1, 0x1}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000140)={r1, @in6={{0xa, 0x0, 0x4, @empty}}, 0x7}, &(0x7f0000000200)=0x90)

1.052922464s ago: executing program 6 (id=3414):
r0 = gettid()
r1 = socket$kcm(0xf, 0x3, 0x2)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r2=>0x0)
read(r1, &(0x7f0000000180)=""/147, 0x93)
timer_settime(r2, 0x0, &(0x7f0000000280)={{0x77359400}, {0x0, 0x989680}}, 0x0)

1.052452194s ago: executing program 7 (id=3415):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private1, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f00000004c0)=0x8)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000000)={r2, 0x8, 0x2, 0x933}, &(0x7f00000000c0)=0x10)

686.801577ms ago: executing program 1 (id=3436):
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_create1(0x0)
pselect6(0x40, &(0x7f00000001c0)={0x7f}, 0x0, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x2004})

581.972157ms ago: executing program 4 (id=3438):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6gretap0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x70bd2d, 0x25dedbfd, {0x0, 0x0, 0x0, r1, {0xb, 0xd}, {0xc}, {0xe, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x48050}, 0x40004)
syz_genetlink_get_family_id$devlink(&(0x7f0000000180), r2)

581.532657ms ago: executing program 1 (id=3440):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
r1 = syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0xf7fa, 0x3180, 0x8000, 0x1d8, 0x0, r0}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd=r0, 0xffffffffffffffff, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
io_uring_enter(r1, 0x627, 0x4c1, 0x43, 0x0, 0x30)

571.049845ms ago: executing program 4 (id=3441):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000580), 0xaad80)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r1, 0x40045304, &(0x7f0000000100)={{}, {0x0, 0x3}, 0x2})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x402c5342, &(0x7f0000000240)={0x0, 0x9, 0x7, {0x6}, 0xa})

542.6881ms ago: executing program 4 (id=3442):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)={0x24, r1, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_SEC_ENABLED={0x5, 0x29, 0x9}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x24}, 0x1, 0x0, 0x0, 0xc000}, 0x40000)

503.030913ms ago: executing program 4 (id=3443):
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x2, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x41000, 0xd, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_io_uring_setup(0x4175, &(0x7f0000000180)={0x0, 0x1bf58, 0x10000, 0x2, 0x2d0}, &(0x7f0000000440), &(0x7f0000000400))
io_uring_enter(r0, 0x7b1d, 0xe93c, 0xc, 0x0, 0x0)
io_uring_register$IORING_REGISTER_NAPI(r0, 0x1b, &(0x7f00000000c0)={0x5, 0x6}, 0x1)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x200, 0x70bd2d, 0x25dfdbfe, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)

454.816944ms ago: executing program 9 (id=3445):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x40c0080)
fsopen(0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x7542d000)
r0 = mq_open(&(0x7f0000000040)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!Tnux\x00', 0x6e93ebbbcc0884f2, 0x0, 0x0)
pread64(r0, &(0x7f0000001180)=""/95, 0x5f, 0xa)

381.921211ms ago: executing program 9 (id=3446):
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f00000002c0)={0x0, 0x11, 0x6, @remote}, 0x10)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, &(0x7f0000001f00)=[{&(0x7f0000000e40)="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", 0xbba}], 0x1}}], 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x10004, &(0x7f00000000c0), 0x0, 0x4c0, &(0x7f0000000540)="$eJzs3d9rXFUeAPDvnWSStJ1u0t3C/njZbtvdLpTOZLKk0IVlW/ZhF9aC2D+gxmQaQyaZkJnUJBRM/wUVLfggIvjki6DvRcRXfRH1QXzxSRAtFRF8GJk7kzZNMklImkzNfD5wuPfcO5nvORnu+c6cSe4JoGudioiViOiLiGcjYrB1PGmVuNwsjcfdv3drvFGSqNevfZek5xv1WPMzDcdazzkQEc/8N+K5ZGPc6tLy9Fi5XJpv1Qu1mblCdWn5wtTM2GRpsjQ7Mjx6abR4sVgsPra+vvRj7venP7j8rzeeeuvjt99bXEzW9HdtP3ZrZZNjza5nI7fmWG9E/H+vwZ4QPa3+9HW6IexKJiJ+GxGn0+t/MHrSVxMAOMzq9cGoD66tAwCHXePzfy6STL41F5CLTCafb87hnYyjmXKlWjt/o7IwOxHpHNZQZDM3psql4dbc2VBkk0a9mO4/rI+sq/8jIk5ExCv9R9J6frxSnujkGx8A6GLH1uX/H/qb+R8AOOQGOt0AAODAyf8A0H3kfwDoPvI/AHQf+R8Auo/8DwDdR/4HgK7y9NWrjVJfvf/1xM2lhenKzQsTpep0fmZhPD9emZ/LT1Yqk+k9e2a2e75ypTJ3MWYXFgu1UrVWqC4tX5+pLMzWrqf39b5eyh5IrwCArZz4890vkohY+eeRtMSatRzkajjcMp1uANAxPZ1uANAxVvuC7uUzPrDJEr1rZNv/idCd3cc09wCdde6P5v+hW8nB0L3M/0P3Mv8P3ateT6z5DwBdZjdz/Jf34X0I0Dlbf/+/xS1C9vD9PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPza5dKSZPKttcBzkcnk8xHHI2IossmNqXJpOCJ+ExGf92f7G/VipxsNAOxR5puktf7XucGzufVn+5Kf+tNtRLzw+rXXFsdqtfli4/j3D47X7rSOj3Si/QDAdlbz9GoeX3X/3q3x1XKQ7fn2SnNx0Y3xe6M33Q5ENiKO3k9a9abG+5WexxB/5XZE/GGz+EnkIo4MtVY+XR+/Efv4/sePh/Ezj8TPpOea28bv4nePoS3Qbe5eaS5ovvH6y8SpdLv59T+QjlB71378yzwY/3rajH+ndtrHjwb/1zb+7Yg/9W4+/qzGT9rEP7vD+F9Xvny53bn6mxHnNs0/ySOxCrWZuUJ1afnC1MzYZGmyNDsyPHpptHixWCwW0jnqwupM9Ub/fvWzF7fq/9E28Qe26f9fd9j/rz75z4d/2SL+389s/vqf3CJ+Iyf+bYfx3znz/vPtzjXiT7Tp/3av//kdxr/76bs/7/ChAMABqC4tT4+Vy6V5O3b2c6fvyWiGnZ3udHpkAvbbw4u+0y0BAAAAAAAAAAAAAADaOYh/J+p0HwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADi8fgkAAP//ZCDc4A==")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=@base={0x5, 0xa, 0xa, 0x209, 0x40, 0xffffffffffffffff, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000180), 0x3ff, r0}, 0x38)

346.302964ms ago: executing program 1 (id=3447):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="0a000007000000000000aaaaaaaaaa2981006d0086dd67000000003f11"], 0x52)

286.358533ms ago: executing program 9 (id=3448):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x4204, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x106a, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
futex(&(0x7f0000000340)=0x4, 0x5, 0x801, 0x0, &(0x7f0000000380), 0xfffffffc)

182.880763ms ago: executing program 6 (id=3449):
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x9, &(0x7f0000000240)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000002f000000b709000000000000850000000700000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000001300)=r2, 0x4)
syz_emit_ethernet(0x36, &(0x7f00000004c0)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x4e22, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}, 0x0)

182.576383ms ago: executing program 1 (id=3450):
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000000)={0x30000008})
dup3(r0, r1, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')

142.654296ms ago: executing program 7 (id=3451):
timer_create(0x1, &(0x7f0000000080)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}, {0x77359400}}, 0x0)
symlink(0x0, 0x0)

129.726843ms ago: executing program 1 (id=3452):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x121a03, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x7d)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x26)

127.139903ms ago: executing program 6 (id=3453):
syz_mount_image$ext4(&(0x7f0000000240)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000640)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@i_version}, {@noload}, {@auto_da_alloc}, {@usrjquota}]}, 0x1, 0x44d, &(0x7f0000000900)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', 0x22042, 0x20)
pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8000c61)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x200, 0x100000002, 0x7ab2, 0xfff})

105.032589ms ago: executing program 9 (id=3454):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x20, r1, 0x1, 0x70bd2b, 0x0, {0x1a}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000801}, 0x0)

70.767993ms ago: executing program 7 (id=3455):
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r0 = gettid()
tkill(r0, 0x12)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x3fffffffc}, 0x0, 0x4, 0x0, 0x3, 0xfff, 0x8001, 0x7fff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
tkill(r0, 0x14)

70.496883ms ago: executing program 1 (id=3456):
capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000280)={0x0, 0x3, 0x7, 0x0, 0x10040, 0x8f})
syz_open_dev$vcsu(0x0, 0x57e, 0x204840)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000001640), 0x0, 0x0)
io_setup(0x2, &(0x7f00000001c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000012c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x2004, r0, 0x0, 0xfffffe60, 0x800, 0x0, 0x6}])

55.49263ms ago: executing program 4 (id=3457):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x110c23004a)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x1980, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110c230007)
close(r0)

27.096665ms ago: executing program 9 (id=3458):
r0 = socket$igmp6(0xa, 0x3, 0x2)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0x11, &(0x7f0000000180)=0x7ff, 0x4)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)

17.790923ms ago: executing program 4 (id=3459):
r0 = socket(0xa, 0x5, 0x0)
r1 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\x96\xa7f\x9ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\x15n\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z\t\x00\x00\x00\x00\x00\x00\x00\x9b\x01\xf9t\xbb\x1er\x04\xdb\xd3\xcd\xfd\xbdnC\xec#]\xbf\xa2\xa2H\x86\x86[8\x05\xfe\xdc\x11\x04\xa1u\x81', 0x0)
fsetxattr$security_capability(r1, &(0x7f0000000080), 0x0, 0x0, 0x1)
fsetxattr(r1, &(0x7f0000000000)=@known='user.incfs.metadata\x00', 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

0s ago: executing program 9 (id=3460):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x5}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f0000000240)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x501, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20}, 0x50)

kernel console output (not intermixed with test programs):

mapped to illegal pblock 0 (length 1)
[   91.303752][ T3395] delete_channel: no stack
[   91.305785][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   91.376241][ T8014] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   91.410854][ T8014] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   91.442365][   T12] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   92.194449][ T8032] chnl_net:caif_netlink_parms(): no params data found
[   92.345680][ T8032] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.392107][ T8032] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.406972][ T8032] bridge_slave_0: entered allmulticast mode
[   92.430748][ T8032] bridge_slave_0: entered promiscuous mode
[   92.503914][ T8067] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1733'.
[   92.513580][ T8067] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1733'.
[   92.777788][ T8032] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.795338][ T8032] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.802857][ T8032] bridge_slave_1: entered allmulticast mode
[   92.816433][ T8032] bridge_slave_1: entered promiscuous mode
[   92.848303][ T8032] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.859886][ T8032] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.878905][   T30] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.923766][ T8083] set_capacity_and_notify: 2 callbacks suppressed
[   92.923834][ T8083] loop6: detected capacity change from 0 to 1024
[   92.933445][ T8032] team0: Port device team_slave_0 added
[   92.955979][ T8032] team0: Port device team_slave_1 added
[   92.965306][ T8082] loop7: detected capacity change from 0 to 4096
[   92.995997][   T30] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.015106][ T8083] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.043506][ T8032] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.051881][ T8082] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.057142][ T8083] EXT4-fs (loop6): shut down requested (1)
[   93.073692][ T8032] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.103933][ T8032] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.115693][ T8032] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.123266][ T8032] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.124301][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.150685][ T8032] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.184148][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.214125][   T30] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.303215][ T8032] hsr_slave_0: entered promiscuous mode
[   93.309579][ T8032] hsr_slave_1: entered promiscuous mode
[   93.318797][ T8032] debugfs: 'hsr0' already exists in 'hsr'
[   93.326237][ T2183] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   93.326416][ T3402] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   93.343785][ T8032] Cannot create hsr debugfs directory
[   93.399596][   T30] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.494109][ T8131] loop6: detected capacity change from 0 to 512
[   93.514538][ T8131] EXT4-fs: Ignoring removed orlov option
[   93.524718][ T8134] loop7: detected capacity change from 0 to 256
[   93.550555][ T8131] EXT4-fs (loop6): 1 truncate cleaned up
[   93.576942][ T8134] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   93.597438][ T8131] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.610312][   T30] bridge_slave_1: left allmulticast mode
[   93.620224][ T8131] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1749: bg 0: block 465: padding at end of block bitmap is not set
[   93.623740][   T30] bridge_slave_1: left promiscuous mode
[   93.641088][ T8131] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 131075 with max blocks 64 with error 28
[   93.666041][   T30] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.675350][ T8131] EXT4-fs (loop6): This should not happen!! Data will be lost
[   93.675350][ T8131] 
[   93.694516][   T30] bridge_slave_0: left allmulticast mode
[   93.701654][ T8131] EXT4-fs (loop6): Total free blocks count 0
[   93.707936][ T8131] EXT4-fs (loop6): Free/Dirty block details
[   93.708260][   T30] bridge_slave_0: left promiscuous mode
[   93.714359][ T8131] EXT4-fs (loop6): free_blocks=0
[   93.723873][   T30] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.741050][ T8131] EXT4-fs (loop6): dirty_blocks=65
[   93.746686][ T8131] EXT4-fs (loop6): Block reservation details
[   93.789699][ T8131] EXT4-fs (loop6): i_reserved_data_blocks=65
[   93.854207][   T30] gretap0 (unregistering): left promiscuous mode
[   93.854399][ T1728] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   93.919915][   T30] bond0 (unregistering): left promiscuous mode
[   93.936907][   T30] bond_slave_0: left promiscuous mode
[   93.942812][   T30] bond_slave_1: left promiscuous mode
[   93.957168][   T30] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   93.976213][   T30] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   93.995057][   T30] bond0 (unregistering): Released all slaves
[   94.091504][   T30] hsr_slave_0: left promiscuous mode
[   94.104165][   T30] hsr_slave_1: left promiscuous mode
[   94.115086][ T8174] loop8: detected capacity change from 0 to 128
[   94.122339][   T30] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   94.130350][   T30] batman_adv: batadv0: Removing interface: batadv_slave_0
[   94.144629][ T8174] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   94.157113][   T30] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   94.166434][   T30] batman_adv: batadv0: Removing interface: batadv_slave_1
[   94.188304][   T30] veth1_macvtap: left promiscuous mode
[   94.194358][   T30] veth0_macvtap: left promiscuous mode
[   94.200027][   T30] veth1_vlan: left promiscuous mode
[   94.227269][   T30] veth0_vlan: left promiscuous mode
[   94.316483][ T8176] loop6: detected capacity change from 0 to 128
[   94.344551][   T30] team0 (unregistering): Port device team_slave_1 removed
[   94.365061][   T30] team0 (unregistering): Port device team_slave_0 removed
[   94.485735][ T8032] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.497998][ T8032] 8021q: adding VLAN 0 to HW filter on device team0
[   94.509897][ T2183] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.517576][ T2183] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.540484][ T8032] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   94.554419][ T8032] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   94.575555][ T2183] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.583184][ T2183] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.685487][ T8032] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.894092][ T8032] veth0_vlan: entered promiscuous mode
[   94.906405][ T8032] veth1_vlan: entered promiscuous mode
[   94.925172][ T8032] veth0_macvtap: entered promiscuous mode
[   94.945104][ T8032] veth1_macvtap: entered promiscuous mode
[   94.963834][ T8032] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.974565][ T8032] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.132410][ T8250] syzkaller1: entered promiscuous mode
[   95.133979][ T8251] loop8: detected capacity change from 0 to 512
[   95.148288][   T28] kauditd_printk_skb: 25 callbacks suppressed
[   95.148391][   T28] audit: type=1400 audit(2000000058.970:707): avc:  denied  { getopt } for  pid=8243 comm="syz.7.1775" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   95.185362][ T8251] FAT-fs (loop8): Directory bread(block 199916) failed
[   95.192620][ T8251] FAT-fs (loop8): Directory bread(block 199917) failed
[   95.194449][ T8250] syzkaller1: entered allmulticast mode
[   95.236967][ T8251] FAT-fs (loop8): Directory bread(block 199918) failed
[   95.255602][ T8251] FAT-fs (loop8): Directory bread(block 199919) failed
[   95.264153][ T8251] FAT-fs (loop8): Directory bread(block 199920) failed
[   95.271473][ T8251] FAT-fs (loop8): Directory bread(block 199921) failed
[   95.279187][ T8251] FAT-fs (loop8): Directory bread(block 199922) failed
[   95.289217][ T8251] FAT-fs (loop8): Directory bread(block 199923) failed
[   95.301974][ T8251] FAT-fs (loop8): Directory bread(block 199916) failed
[   95.309659][ T8251] FAT-fs (loop8): Directory bread(block 199917) failed
[   95.352211][   T28] audit: type=1400 audit(2000000059.180:708): avc:  denied  { name_bind } for  pid=8263 comm="syz.6.1767" src=65530 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=rawip_socket permissive=1
[   95.420865][ T8269] loop6: detected capacity change from 0 to 128
[   95.501368][ T8282] program syz.7.1776 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   95.801061][ T8269] syz.6.1768: attempt to access beyond end of device
[   95.801061][ T8269] loop6: rw=8390657, sector=128, nr_sectors = 1 limit=128
[   95.837133][ T8269] buffer_io_error: 2 callbacks suppressed
[   95.837153][ T8269] Buffer I/O error on dev loop6, logical block 128, lost async page write
[   95.838564][ T8309] loop7: detected capacity change from 0 to 128
[   95.904834][ T8309] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   95.937500][ T8309] ext4 filesystem being mounted at /145/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   95.996079][ T8319] loop6: detected capacity change from 0 to 128
[   96.009848][ T6576] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   96.020472][   T28] audit: type=1400 audit(2000000059.850:709): avc:  denied  { create } for  pid=8320 comm="syz.4.1790" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   96.047126][ T8327] IPVS: ovf: FWM 3 0x00000003 - no destination available
[   96.087337][ T1506] IPVS: starting estimator thread 0...
[   96.099206][ T8332] netlink: 88 bytes leftover after parsing attributes in process `syz.7.1795'.
[   96.109098][   T28] audit: type=1400 audit(2000000059.850:710): avc:  denied  { ioctl } for  pid=8320 comm="syz.4.1790" path="socket:[20346]" dev="sockfs" ino=20346 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   96.134609][   T28] audit: type=1400 audit(2000000059.850:711): avc:  denied  { connect } for  pid=8320 comm="syz.4.1790" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   96.223802][ T8330] IPVS: using max 2736 ests per chain, 136800 per kthread
[   96.224163][   T28] audit: type=1400 audit(2000000059.850:712): avc:  denied  { write } for  pid=8320 comm="syz.4.1790" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   96.264274][   T28] audit: type=1326 audit(2000000059.860:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8321 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe533c799 code=0x7ffc0000
[   96.294996][   T28] audit: type=1326 audit(2000000059.860:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8321 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe533c799 code=0x7ffc0000
[   96.358015][   T28] audit: type=1326 audit(2000000059.860:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8321 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7f9fe533c799 code=0x7ffc0000
[   96.463760][   T28] audit: type=1326 audit(2000000059.860:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8321 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe533c799 code=0x7ffc0000
[   96.556036][ T8375] xt_hashlimit: size too large, truncated to 1048576
[   96.749514][ T8394] IPv6: NLM_F_REPLACE set, but no existing node found!
[   96.873983][ T8397] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.064129][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.255718][ T8432] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1838'.
[   97.566382][ T8460] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1852'.
[   97.585579][ T8460] netlink: 'syz.4.1852': attribute type 1 has an invalid length.
[   97.585600][ T8461] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   97.624146][ T8453] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   97.667074][ T8453] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[   97.692629][ T8453] FAT-fs (loop7): Filesystem has been set read-only
[   97.704916][ T8453] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[   97.732650][ T8453] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[   97.749821][ T8453] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[   97.759398][ T8453] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[   97.769225][ T8453] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[   97.779112][ T8453] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[   97.788688][ T8453] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[   97.797969][ T8453] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[   97.810683][ T8453] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[   97.847478][ T8479] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1859'.
[   98.507440][ T8509] set_capacity_and_notify: 4 callbacks suppressed
[   98.507459][ T8509] loop7: detected capacity change from 0 to 512
[   98.541372][ T8509] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.567063][ T8509] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.655896][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.094477][   T36] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   99.219907][ T8559] loop8: detected capacity change from 0 to 512
[   99.236808][ T8559] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   99.248175][ T8563] loop9: detected capacity change from 0 to 256
[   99.351675][ T8568] loop9: detected capacity change from 0 to 512
[   99.378490][ T8568] EXT4-fs (loop9): feature flags set on rev 0 fs, running e2fsck is recommended
[   99.393917][ T8568] EXT4-fs (loop9): mounting ext2 file system using the ext4 subsystem
[   99.429446][ T8568] EXT4-fs (loop9): warning: mounting unchecked fs, running e2fsck is recommended
[   99.439128][ T8568] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   99.448701][ T8568] System zones: 0-2, 18-18, 34-35
[   99.455263][ T8568] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.563827][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.712547][ T8585] loop6: detected capacity change from 0 to 1024
[   99.741089][ T8585] EXT4-fs: inline encryption not supported
[   99.773517][ T8590] loop9: detected capacity change from 0 to 512
[   99.786782][ T8585] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.840251][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.043225][ T8610] loop6: detected capacity change from 0 to 128
[  100.115882][ T8617] hub 1-0:1.0: USB hub found
[  100.124268][ T8617] hub 1-0:1.0: 8 ports detected
[  100.165687][ T8622] loop7: detected capacity change from 0 to 128
[  100.190330][ T8620] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1916'.
[  100.200019][ T8620] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1916'.
[  100.252868][   T28] kauditd_printk_skb: 11 callbacks suppressed
[  100.252884][   T28] audit: type=1400 audit(2000000064.080:728): avc:  denied  { ioctl } for  pid=8624 comm="syz.6.1919" path="socket:[21880]" dev="sockfs" ino=21880 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  100.457166][ T8642] loop6: detected capacity change from 0 to 512
[  100.487933][ T8642] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  100.509304][ T8645] netlink: 'syz.8.1927': attribute type 4 has an invalid length.
[  100.571989][ T8622] syz.7.1917: attempt to access beyond end of device
[  100.571989][ T8622] loop7: rw=8390657, sector=128, nr_sectors = 1 limit=128
[  100.587503][ T8622] Buffer I/O error on dev loop7, logical block 128, lost async page write
[  100.608197][ T8647] 9pnet: p9_errstr2errno: server reported unknown error 00000
[  100.699269][ T8657] loop6: detected capacity change from 0 to 1024
[  100.712698][ T8657] EXT4-fs: Ignoring removed bh option
[  100.746813][ T8657] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.801524][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.814420][ T8668] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[  101.283287][ T8696] netlink: 'syz.6.1948': attribute type 3 has an invalid length.
[  101.293903][ T8696] netlink: 'syz.6.1948': attribute type 1 has an invalid length.
[  101.303315][ T8696] netlink: 60387 bytes leftover after parsing attributes in process `syz.6.1948'.
[  101.613053][ T8720] GUP no longer grows the stack in syz.4.1956 (8720): 200000004000-20000000a000 (200000002000)
[  101.624471][ T8720] CPU: 0 UID: 0 PID: 8720 Comm: syz.4.1956 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  101.624511][ T8720] Tainted: [W]=WARN
[  101.624520][ T8720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  101.624533][ T8720] Call Trace:
[  101.624539][ T8720]  <TASK>
[  101.624594][ T8720]  __dump_stack+0x1d/0x30
[  101.624628][ T8720]  dump_stack_lvl+0x95/0xd0
[  101.624648][ T8720]  dump_stack+0x15/0x1b
[  101.624672][ T8720]  __get_user_pages+0x195b/0x1ea0
[  101.624789][ T8720]  ? __rcu_read_unlock+0x4e/0x70
[  101.624807][ T8720]  get_user_pages_remote+0x1d5/0x6b0
[  101.624893][ T8720]  __access_remote_vm+0x15c/0x580
[  101.624916][ T8720]  access_remote_vm+0x32/0x40
[  101.624956][ T8720]  proc_pid_cmdline_read+0x32b/0x6b0
[  101.625019][ T8720]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  101.625036][ T8720]  vfs_readv+0x432/0x6e0
[  101.625057][ T8720]  __x64_sys_preadv+0xfd/0x1c0
[  101.625121][ T8720]  x64_sys_call+0x2915/0x3020
[  101.625193][ T8720]  do_syscall_64+0x12c/0x370
[  101.625208][ T8720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.625225][ T8720] RIP: 0033:0x7fd0199ec799
[  101.625240][ T8720] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  101.625314][ T8720] RSP: 002b:00007fd01843f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  101.625389][ T8720] RAX: ffffffffffffffda RBX: 00007fd019c65fa0 RCX: 00007fd0199ec799
[  101.625400][ T8720] RDX: 0000000000000001 RSI: 0000200000000680 RDI: 0000000000000003
[  101.625409][ T8720] RBP: 00007fd019a82c99 R08: 00000000fffffff9 R09: 0000000000000000
[  101.625428][ T8720] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000000
[  101.625437][ T8720] R13: 00007fd019c66038 R14: 00007fd019c65fa0 R15: 00007ffc452d7168
[  101.625449][ T8720]  </TASK>
[  101.966790][ T8735] EXT4-fs: Ignoring removed orlov option
[  101.986866][ T8735] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.072633][   T28] audit: type=1326 audit(2000000065.900:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8743 comm="syz.4.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  102.099355][   T28] audit: type=1326 audit(2000000065.900:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8743 comm="syz.4.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  102.126879][   T28] audit: type=1326 audit(2000000065.910:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8743 comm="syz.4.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  102.151533][   T28] audit: type=1326 audit(2000000065.910:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8743 comm="syz.4.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  102.175641][   T28] audit: type=1326 audit(2000000065.910:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8743 comm="syz.4.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd0199ec502 code=0x7ffc0000
[  102.200191][   T28] audit: type=1326 audit(2000000065.910:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8743 comm="syz.4.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  102.239365][   T28] audit: type=1326 audit(2000000065.910:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8743 comm="syz.4.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd0199acfce code=0x7ffc0000
[  102.265438][   T28] audit: type=1326 audit(2000000065.910:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8743 comm="syz.4.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd0199ec5c7 code=0x7ffc0000
[  102.298561][   T28] audit: type=1326 audit(2000000065.910:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8743 comm="syz.4.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd0199acfce code=0x7ffc0000
[  102.348160][ T8750] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.405097][ T8750] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  102.454609][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.485788][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.816759][ T8798] tipc: Started in network mode
[  102.822510][ T8798] tipc: Node identity ac1414aa, cluster identity 4711
[  102.831309][ T8798] tipc: Enabled bearer <udp:s>, priority 10
[  102.920513][ T8812] netlink: 'syz.4.1996': attribute type 12 has an invalid length.
[  102.932097][ T8812] netlink: 'syz.4.1996': attribute type 5 has an invalid length.
[  102.940663][ T8812] netlink: 'syz.4.1996': attribute type 2 has an invalid length.
[  102.949284][ T8812] netlink: 'syz.4.1996': attribute type 7 has an invalid length.
[  102.959632][ T8812] netlink: 100 bytes leftover after parsing attributes in process `syz.4.1996'.
[  103.146769][ T8840] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2008'.
[  103.214572][ T8848] syzkaller1: entered promiscuous mode
[  103.228005][ T8848] syzkaller1: entered allmulticast mode
[  103.425622][ T8881] raw_sendmsg: syz.6.2026 forgot to set AF_INET. Fix it!
[  103.516988][ T8888] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  103.538346][ T8888] EXT4-fs (loop6): orphan cleanup on readonly fs
[  103.555471][ T8888] EXT4-fs error (device loop6): ext4_quota_enable:7188: comm syz.6.2028: Bad quota inum: 2, type: 2
[  103.573764][ T8888] loop6: lost filesystem error report for type 5 error -117
[  103.573979][ T8888] EXT4-fs warning (device loop6): ext4_enable_quotas:7236: Failed to enable quota tracking (type=2, err=-117, ino=2). Please run e2fsck to fix.
[  103.598309][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  103.598344][    C0] EXT4-fs (loop6): last error at time 2000000067: ext4_quota_enable:7188
[  103.624037][ T8888] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  103.644564][ T8888] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  103.929487][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.950022][   T35] tipc: Node number set to 2886997162
[  104.187159][ T8926] set_capacity_and_notify: 4 callbacks suppressed
[  104.187179][ T8926] loop8: detected capacity change from 0 to 8192
[  104.205076][ T2183] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  104.618871][ T8956] loop8: detected capacity change from 0 to 1024
[  104.636366][ T8956] EXT4-fs: Ignoring removed orlov option
[  104.647724][ T8956] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.061377][ T7131] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.217556][ T8989] loop8: detected capacity change from 0 to 128
[  105.424782][ T8989] syz.8.2064: attempt to access beyond end of device
[  105.424782][ T8989] loop8: rw=8390657, sector=128, nr_sectors = 1 limit=128
[  105.443822][ T8989] Buffer I/O error on dev loop8, logical block 128, lost async page write
[  105.553239][   T28] kauditd_printk_skb: 29 callbacks suppressed
[  105.553257][   T28] audit: type=1326 audit(2000000069.380:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9002 comm="syz.8.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb12cac799 code=0x7ffc0000
[  105.584135][   T28] audit: type=1326 audit(2000000069.380:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9002 comm="syz.8.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb12cac799 code=0x7ffc0000
[  105.608843][   T28] audit: type=1326 audit(2000000069.420:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9002 comm="syz.8.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=469 compat=0 ip=0x7fcb12cac799 code=0x7ffc0000
[  105.663721][   T28] audit: type=1326 audit(2000000069.420:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9002 comm="syz.8.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb12cac799 code=0x7ffc0000
[  105.690317][   T28] audit: type=1326 audit(2000000069.420:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9002 comm="syz.8.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb12cac799 code=0x7ffc0000
[  105.803509][ T9009] loop8: detected capacity change from 0 to 512
[  105.824739][ T9009] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  105.852076][ T9009] EXT4-fs (loop8): orphan cleanup on readonly fs
[  105.862886][ T9009] EXT4-fs error (device loop8): ext4_quota_enable:7188: comm syz.8.2078: Bad quota inum: 2, type: 2
[  105.874669][ T9009] loop8: lost filesystem error report for type 5 error -117
[  105.879562][ T9009] EXT4-fs warning (device loop8): ext4_enable_quotas:7236: Failed to enable quota tracking (type=2, err=-117, ino=2). Please run e2fsck to fix.
[  105.887151][    C0] EXT4-fs (loop8): error count since last fsck: 1
[  105.887183][    C0] EXT4-fs (loop8): last error at time 2000000069: ext4_quota_enable:7188
[  105.919626][ T9009] EXT4-fs (loop8): Cannot turn on quotas: error -117
[  105.927212][ T9009] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  105.954827][ T7131] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.297709][ T9045] netlink: 'syz.4.2093': attribute type 11 has an invalid length.
[  106.313918][   T28] audit: type=1326 audit(2000000070.140:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9041 comm="syz.6.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74c9abc799 code=0x7ffc0000
[  106.345185][ T9045] netlink: 80 bytes leftover after parsing attributes in process `syz.4.2093'.
[  106.370890][   T28] audit: type=1326 audit(2000000070.140:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9041 comm="syz.6.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74c9abc799 code=0x7ffc0000
[  106.408210][   T28] audit: type=1326 audit(2000000070.140:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9041 comm="syz.6.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74c9abc799 code=0x7ffc0000
[  106.433158][   T28] audit: type=1326 audit(2000000070.140:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9041 comm="syz.6.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f74c9abc799 code=0x7ffc0000
[  106.457757][   T28] audit: type=1326 audit(2000000070.140:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9041 comm="syz.6.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74c9abc799 code=0x7ffc0000
[  107.080597][ T9082] loop9: detected capacity change from 0 to 128
[  107.196190][ T9098] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2123'.
[  107.407065][ T9130] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2119'.
[  107.439330][ T9130] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2119'.
[  107.454713][ T9130] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2119'.
[  107.465873][ T9130] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2119'.
[  107.506338][ T9143] loop7: detected capacity change from 0 to 512
[  107.617916][ T9143] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.633827][ T9143] ext4 filesystem being mounted at /217/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.653934][ T9082] syz.9.2106: attempt to access beyond end of device
[  107.653934][ T9082] loop9: rw=8390657, sector=128, nr_sectors = 1 limit=128
[  107.710454][ T9082] Buffer I/O error on dev loop9, logical block 128, lost async page write
[  107.738804][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.825930][ T9178] geneve2: entered promiscuous mode
[  108.021876][ T9208] loop9: detected capacity change from 0 to 512
[  108.116015][ T9208] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.131461][ T9202] loop6: detected capacity change from 0 to 8192
[  108.145674][ T9208] ext4 filesystem being mounted at /59/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  108.319491][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.349445][ T3486] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  108.384566][ T3486] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  108.422765][ T9233] loop6: detected capacity change from 0 to 4096
[  108.460655][ T9233] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  108.627732][ T9258] SELinux: failed to load policy
[  108.691174][ T9272] loop7: detected capacity change from 0 to 2048
[  108.745328][ T9272] Alternate GPT is invalid, using primary GPT.
[  108.771135][ T9272]  loop7: p1 p2 p3
[  108.842969][ T9289] geneve2: entered promiscuous mode
[  108.930521][ T9301] EXT4-fs: Ignoring removed bh option
[  108.944655][ T9301] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  108.978574][ T9301] EXT4-fs (loop6): 1 truncate cleaned up
[  108.987227][ T9301] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.037021][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.082208][ T9313] 9pnet: p9_errstr2errno: server reported unknown error 
[  109.327026][ T3486] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  109.333579][ T9337] set_capacity_and_notify: 1 callbacks suppressed
[  109.333600][ T9337] loop8: detected capacity change from 0 to 512
[  109.365855][ T9337] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  109.394979][ T9341] loop6: detected capacity change from 0 to 1024
[  109.402229][ T9337] EXT4-fs error (device loop8): ext4_orphan_get:1417: comm syz.8.2187: bad orphan inode 131083
[  109.412295][ T9341] EXT4-fs: Ignoring removed bh option
[  109.418964][ T9337] loop8: lost filesystem error report for type 5 error -117
[  109.420406][ T9337] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.432415][ T9341] EXT4-fs: Ignoring removed oldalloc option
[  109.457333][ T9341] EXT4-fs: Ignoring removed nobh option
[  109.476346][ T9341] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.527904][ T9341] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4222: comm syz.6.2189: Allocating blocks 497-513 which overlap fs metadata
[  109.543422][ T7131] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.598048][ T9341] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4222: comm syz.6.2189: Allocating blocks 497-513 which overlap fs metadata
[  109.636982][ T9341] EXT4-fs (loop6): pa ffff888108629230: logic 16, phys. 129, len 24
[  109.645159][ T9341] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 1
[  109.736286][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.901456][ T9365] loop9: detected capacity change from 0 to 1024
[  109.964546][   T36] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  109.978618][ T9365] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.061315][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.300191][ T9406] loop6: detected capacity change from 0 to 512
[  110.324430][ T9411] tipc: Started in network mode
[  110.341999][ T9406] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  110.343721][ T9411] tipc: Node identity fe80000000000000000000000000002, cluster identity 4711
[  110.379840][ T9406] EXT4-fs error (device loop6): ext4_orphan_get:1417: comm syz.6.2216: bad orphan inode 131083
[  110.379987][ T9411] tipc: Enabled bearer <udp:syz1>, priority 10
[  110.426186][ T9406] loop6: lost filesystem error report for type 5 error -117
[  110.426733][ T9406] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.473798][ T9422] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2223'.
[  110.486891][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.774328][   T28] kauditd_printk_skb: 506 callbacks suppressed
[  110.774347][   T28] audit: type=1400 audit(2000000074.610:1283): avc:  denied  { mount } for  pid=9448 comm="syz.7.2234" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  110.989265][   T28] audit: type=1400 audit(2000000074.820:1284): avc:  denied  { setopt } for  pid=9463 comm="syz.4.2239" lport=43543 faddr=::ffff:172.20.255.187 fport=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  111.070150][   T28] audit: type=1400 audit(2000000074.900:1285): avc:  denied  { listen } for  pid=9467 comm="syz.4.2241" lport=51682 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  111.136861][ T9476] pim6reg1: entered promiscuous mode
[  111.142204][ T9476] pim6reg1: entered allmulticast mode
[  111.394278][ T9486] syzkaller1: entered promiscuous mode
[  111.410890][ T9486] syzkaller1: entered allmulticast mode
[  111.475976][   T28] audit: type=1326 audit(2000000075.310:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9490 comm="syz.7.2251" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbbee08c799 code=0x0
[  111.517034][ T8462] tipc: Node number set to 4269801504
[  111.523070][   T28] audit: type=1326 audit(2000000075.350:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9492 comm="syz.6.2252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74c9abc799 code=0x7ffc0000
[  111.561545][   T28] audit: type=1326 audit(2000000075.350:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9492 comm="syz.6.2252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74c9abc799 code=0x7ffc0000
[  111.905451][ T9520] Invalid argument reading file caps for ./file0
[  111.958075][ T9524] netlink: 48 bytes leftover after parsing attributes in process `syz.6.2265'.
[  112.045353][ T9532] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  112.122384][   T28] audit: type=1400 audit(2000000075.950:1289): avc:  denied  { create } for  pid=9544 comm="syz.6.2274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  112.159457][   T28] audit: type=1400 audit(2000000075.980:1290): avc:  denied  { bind } for  pid=9544 comm="syz.6.2274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  112.184133][   T28] audit: type=1400 audit(2000000075.990:1291): avc:  denied  { write } for  pid=9544 comm="syz.6.2274" path="socket:[25067]" dev="sockfs" ino=25067 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  112.641610][ T9586] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2289'.
[  112.664602][ T9586] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2289'.
[  112.664605][ T9588] netlink: 'syz.9.2291': attribute type 25 has an invalid length.
[  112.688190][ T9590] loop8: detected capacity change from 0 to 1024
[  112.698388][ T9590] EXT4-fs: Ignoring removed bh option
[  112.724103][ T9588] netlink: 'syz.9.2291': attribute type 7 has an invalid length.
[  112.741484][ T9588] netlink: 'syz.9.2291': attribute type 2 has an invalid length.
[  112.787782][ T9590] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[  112.887604][ T7131] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  113.347922][ T9646] loop8: detected capacity change from 0 to 128
[  113.355409][ T9646] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  113.388623][   T28] audit: type=1400 audit(2000000077.220:1292): avc:  denied  { watch watch_reads } for  pid=9645 comm="syz.8.2315" path="/155/file0" dev="loop8" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[  113.684477][ T9670] qrtr: Invalid version 0
[  114.432176][ T9698] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  115.003106][ T9734] netlink: 67 bytes leftover after parsing attributes in process `syz.9.2353'.
[  115.156254][ T9751] loop8: detected capacity change from 0 to 1024
[  115.163121][ T9751] EXT4-fs: inline encryption not supported
[  115.178333][ T9751] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.196296][ T9751] EXT4-fs error (device loop8): ext4_mb_mark_diskspace_used:4222: comm syz.8.2360: Allocating blocks 385-513 which overlap fs metadata
[  115.214629][ T9750] EXT4-fs (loop8): pa ffff888108629230: logic 16, phys. 129, len 24
[  115.222686][ T9750] EXT4-fs error (device loop8): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 8
[  115.248700][ T7131] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.324797][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811d6c6c00: rx timeout, send abort
[  115.333116][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811d6c6c00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  115.413336][ T9776] loop6: detected capacity change from 0 to 512
[  115.444580][ T9776] EXT4-fs error (device loop6): ext4_get_branch:178: inode #11: block 4294967295: comm syz.6.2370: invalid block
[  115.463762][ T9776] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  115.464514][ T9776] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2370: invalid indirect mapped block 4294967295 (level 1)
[  115.474015][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  115.474039][    C1] EXT4-fs (loop6): initial error at time 2000000079: ext4_get_branch:178: inode 11: block 4294967295
[  115.474083][    C1] EXT4-fs (loop6): last error at time 2000000079: ext4_get_branch:178: inode 11: block 4294967295
[  115.527242][ T9776] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  115.527828][ T9776] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2370: invalid indirect mapped block 4294967295 (level 1)
[  115.561702][ T9776] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  115.562148][ T9776] EXT4-fs (loop6): 2 truncates cleaned up
[  115.582636][ T9776] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.650079][ T9776] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  115.739287][   T36] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  115.762208][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.792917][ T9823] loop6: detected capacity change from 0 to 1024
[  115.810431][ T9823] EXT4-fs: Ignoring removed orlov option
[  115.847588][ T9823] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.863065][   T28] kauditd_printk_skb: 4 callbacks suppressed
[  115.863085][   T28] audit: type=1400 audit(2000000079.690:1297): avc:  denied  { add_name } for  pid=9822 comm="syz.6.2390" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  115.895847][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.913748][   T28] audit: type=1400 audit(2000000079.690:1298): avc:  denied  { rename } for  pid=9822 comm="syz.6.2390" name="file0" dev="loop6" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  115.953733][   T28] audit: type=1400 audit(2000000079.690:1299): avc:  denied  { reparent } for  pid=9822 comm="syz.6.2390" name="file0" dev="loop6" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  115.996288][ T9837] loop6: detected capacity change from 0 to 256
[  116.015237][   T28] audit: type=1400 audit(2000000079.690:1300): avc:  denied  { remove_name } for  pid=9822 comm="syz.6.2390" name="file0" dev="loop6" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  116.040018][   T28] audit: type=1400 audit(2000000079.690:1301): avc:  denied  { rmdir } for  pid=9822 comm="syz.6.2390" name="file0" dev="loop6" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  116.046399][ T9837] FAT-fs (loop6): Directory bread(block 64) failed
[  116.075972][ T9837] FAT-fs (loop6): Directory bread(block 65) failed
[  116.082882][ T9837] FAT-fs (loop6): Directory bread(block 66) failed
[  116.090526][ T9837] FAT-fs (loop6): Directory bread(block 67) failed
[  116.097583][ T9837] FAT-fs (loop6): Directory bread(block 68) failed
[  116.106627][ T9837] FAT-fs (loop6): Directory bread(block 69) failed
[  116.115527][ T9837] FAT-fs (loop6): Directory bread(block 70) failed
[  116.122645][ T9837] FAT-fs (loop6): Directory bread(block 71) failed
[  116.129702][ T9837] FAT-fs (loop6): Directory bread(block 72) failed
[  116.137305][ T9837] FAT-fs (loop6): Directory bread(block 73) failed
[  116.200118][ T9837] syz.6.2393: attempt to access beyond end of device
[  116.200118][ T9837] loop6: rw=2049, sector=1224, nr_sectors = 4 limit=256
[  116.416204][ T9868] loop6: detected capacity change from 0 to 164
[  116.423766][ T9868] ISOFS: Bad logical zone size 2816
[  117.196245][ T9877] loop7: detected capacity change from 0 to 256
[  117.210670][ T9877] FAT-fs (loop7): Directory bread(block 64) failed
[  117.217751][ T9877] FAT-fs (loop7): Directory bread(block 65) failed
[  117.225361][ T9877] FAT-fs (loop7): Directory bread(block 66) failed
[  117.232018][ T9877] FAT-fs (loop7): Directory bread(block 67) failed
[  117.238992][ T9877] FAT-fs (loop7): Directory bread(block 68) failed
[  117.245767][ T9877] FAT-fs (loop7): Directory bread(block 69) failed
[  117.252769][ T9877] FAT-fs (loop7): Directory bread(block 70) failed
[  117.274628][ T9877] FAT-fs (loop7): Directory bread(block 71) failed
[  117.284364][ T9877] FAT-fs (loop7): Directory bread(block 72) failed
[  117.293005][ T9877] FAT-fs (loop7): Directory bread(block 73) failed
[  117.364333][ T9877] syz.7.2413: attempt to access beyond end of device
[  117.364333][ T9877] loop7: rw=2049, sector=1224, nr_sectors = 4 limit=256
[  117.444070][   T28] audit: type=1400 audit(2000000081.280:1302): avc:  denied  { mount } for  pid=9886 comm="syz.7.2419" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  117.469073][   T28] audit: type=1400 audit(2000000081.300:1303): avc:  denied  { unmount } for  pid=9886 comm="syz.7.2419" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  117.545931][ T9902] netlink: 'syz.4.2427': attribute type 4 has an invalid length.
[  117.550449][ T9900] loop6: detected capacity change from 0 to 1024
[  117.565690][ T9900] EXT4-fs: Ignoring removed oldalloc option
[  117.578306][ T9900] EXT4-fs: Ignoring removed bh option
[  117.600021][ T9900] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.628189][   T28] audit: type=1400 audit(2000000081.460:1304): avc:  denied  { watch_reads } for  pid=9897 comm="syz.6.2426" path="/360/file1" dev="loop6" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  117.659118][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.683510][ T9908] SELinux: failed to load policy
[  117.804442][ T3642] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  117.861590][ T1506] IPVS: starting estimator thread 0...
[  117.941520][ T9946] loop8: detected capacity change from 0 to 1024
[  117.957269][ T9946] EXT4-fs: Ignoring removed oldalloc option
[  117.963714][ T9940] IPVS: using max 2880 ests per chain, 144000 per kthread
[  117.992919][ T9946] EXT4-fs: Ignoring removed bh option
[  118.032272][ T9946] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.226200][ T7131] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.276819][ T9969] loop7: detected capacity change from 0 to 256
[  118.334585][ T9969] FAT-fs (loop7): Directory bread(block 64) failed
[  118.346938][ T9969] FAT-fs (loop7): Directory bread(block 65) failed
[  118.366194][ T9969] FAT-fs (loop7): Directory bread(block 66) failed
[  118.373026][ T9969] FAT-fs (loop7): Directory bread(block 67) failed
[  118.394848][   T28] audit: type=1400 audit(2000000082.230:1305): avc:  denied  { read } for  pid=9966 comm="syz.6.2451" lport=46994 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  118.423820][ T9969] FAT-fs (loop7): Directory bread(block 68) failed
[  118.430746][ T9969] FAT-fs (loop7): Directory bread(block 69) failed
[  118.442205][ T9983] loop9: detected capacity change from 0 to 1024
[  118.454803][ T9983] EXT4-fs: Ignoring removed orlov option
[  118.469868][ T9969] FAT-fs (loop7): Directory bread(block 70) failed
[  118.489280][ T9969] FAT-fs (loop7): Directory bread(block 71) failed
[  118.499263][ T9969] FAT-fs (loop7): Directory bread(block 72) failed
[  118.508557][ T9969] FAT-fs (loop7): Directory bread(block 73) failed
[  118.521230][ T9983] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.568569][ T9969] syz.7.2453: attempt to access beyond end of device
[  118.568569][ T9969] loop7: rw=8912896, sector=1160, nr_sectors = 4 limit=256
[  118.583356][ T9969] syz.7.2453: attempt to access beyond end of device
[  118.583356][ T9969] loop7: rw=8388608, sector=1160, nr_sectors = 4 limit=256
[  118.600085][ T9969] syz.7.2453: attempt to access beyond end of device
[  118.600085][ T9969] loop7: rw=8388608, sector=1160, nr_sectors = 4 limit=256
[  118.614515][ T9969] syz.7.2453: attempt to access beyond end of device
[  118.614515][ T9969] loop7: rw=8388608, sector=1160, nr_sectors = 4 limit=256
[  118.629166][ T9969] syz.7.2453: attempt to access beyond end of device
[  118.629166][ T9969] loop7: rw=8388608, sector=1160, nr_sectors = 4 limit=256
[  118.644143][ T9969] syz.7.2453: attempt to access beyond end of device
[  118.644143][ T9969] loop7: rw=8388608, sector=1160, nr_sectors = 4 limit=256
[  118.658226][ T9969] syz.7.2453: attempt to access beyond end of device
[  118.658226][ T9969] loop7: rw=8388608, sector=1160, nr_sectors = 4 limit=256
[  118.672245][ T9969] syz.7.2453: attempt to access beyond end of device
[  118.672245][ T9969] loop7: rw=8388608, sector=1160, nr_sectors = 4 limit=256
[  118.784070][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.271903][T10036] EXT4-fs: Ignoring removed orlov option
[  119.322441][T10036] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.364633][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.383583][T10044] IPv6: NLM_F_CREATE should be specified when creating new route
[  119.400184][   T28] audit: type=1326 audit(2000000083.230:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10045 comm="syz.7.2485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbee08c799 code=0x7ffc0000
[  119.520734][T10055] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  119.538395][T10055] FAT-fs (loop7): error, parent dir link count too low (2)
[  119.546102][T10055] FAT-fs (loop7): Filesystem has been set read-only
[  119.563057][ T6576] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  119.944457][T10079] all (unregistering): Released all slaves
[  120.340277][T10132] set_capacity_and_notify: 3 callbacks suppressed
[  120.340298][T10132] loop7: detected capacity change from 0 to 1024
[  120.382617][T10132] EXT4-fs: inline encryption not supported
[  120.390369][T10132] EXT4-fs: Ignoring removed bh option
[  120.427776][T10141] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2529'.
[  120.438517][T10132] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.503626][T10132] EXT4-fs error (device loop7): mb_free_blocks:2047: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt.
[  120.525688][T10132] EXT4-fs (loop7): Remounting filesystem read-only
[  120.539372][T10144] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  120.604426][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.621677][T10150] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2533'.
[  120.664481][T10160] loop7: detected capacity change from 0 to 128
[  120.736253][T10169] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.2535'.
[  120.747029][T10160] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.2535'.
[  120.821082][T10178] netlink: 63 bytes leftover after parsing attributes in process `syz.6.2544'.
[  120.858340][T10180] loop6: detected capacity change from 0 to 164
[  121.468543][T10192] loop9: detected capacity change from 0 to 1024
[  121.498675][ T2183] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  121.509675][T10192] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.755372][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.824945][   T12] Bluetooth: hci0: Frame reassembly failed (-84)
[  121.932073][   T28] kauditd_printk_skb: 8 callbacks suppressed
[  121.932097][   T28] audit: type=1400 audit(2000000085.760:1315): avc:  denied  { getopt } for  pid=10207 comm="syz.4.2557" lport=41624 faddr=255.255.255.254 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  122.686703][T10233] netlink: 63 bytes leftover after parsing attributes in process `syz.8.2568'.
[  122.686761][T10234] loop9: detected capacity change from 0 to 512
[  122.702985][T10234] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem
[  122.732553][T10234] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -2
[  122.746646][T10234] EXT4-fs error (device loop9): ext4_orphan_get:1417: comm syz.9.2569: bad orphan inode 4
[  122.767770][T10234] loop9: lost filesystem error report for type 5 error -117
[  122.770119][T10234] EXT4-fs (loop9): 1 orphan inode deleted
[  122.777595][    C1] EXT4-fs (loop9): error count since last fsck: 1
[  122.777617][    C1] EXT4-fs (loop9): initial error at time 2000000086: ext4_orphan_get:1417
[  122.777641][    C1] EXT4-fs (loop9): last error at time 2000000086: ext4_orphan_get:1417
[  122.807734][T10234] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.823087][T10234] netlink: 92 bytes leftover after parsing attributes in process `syz.9.2569'.
[  122.845181][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.865378][   T28] audit: type=1400 audit(2000000086.700:1316): avc:  denied  { connect } for  pid=10249 comm="syz.4.2576" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  122.954875][T10258] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2579'.
[  122.966115][T10258] gtp1: entered promiscuous mode
[  122.971071][T10258] gtp1: entered allmulticast mode
[  123.011231][T10263] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2581'.
[  123.020434][T10263] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  123.037599][T10263] batman_adv: batadv0: Removing interface: batadv_slave_0
[  123.109353][T10267] tipc: Started in network mode
[  123.114308][T10267] tipc: Node identity ac14142f, cluster identity 4711
[  123.121395][T10267] tipc: New replicast peer: 0.0.0.0
[  123.127140][T10267] tipc: Enabled bearer <udp:syz2>, priority 10
[  123.134934][T10267] tipc: New replicast peer: fc01:0000:0000:0000:0000:0000:0000:0001
[  123.883836][ T9820] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  123.890328][ T3642] Bluetooth: hci0: command 0x1003 tx timeout
[  123.934928][T10315] netlink: 92 bytes leftover after parsing attributes in process `syz.9.2606'.
[  123.949286][T10317] netlink: 'syz.6.2607': attribute type 21 has an invalid length.
[  123.958400][T10317] IPv6: NLM_F_CREATE should be specified when creating new route
[  123.967082][T10317] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  123.974798][T10317] IPv6: NLM_F_CREATE should be set when creating new route
[  123.982098][T10317] IPv6: NLM_F_CREATE should be set when creating new route
[  123.989373][T10317] IPv6: NLM_F_CREATE should be set when creating new route
[  124.182011][T10337] team0: Port device team_slave_0 removed
[  124.243755][ T3486] tipc: Node number set to 2886997039
[  124.264766][T10341] loop6: detected capacity change from 0 to 512
[  124.286154][T10341] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.299518][T10341] ext4 filesystem being mounted at /398/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  124.313621][T10341] bond0: Unable to set up delay as MII monitoring is disabled
[  124.330399][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.360392][T10345] xt_hashlimit: size too large, truncated to 1048576
[  124.478244][T10351] loop6: detected capacity change from 0 to 1024
[  124.491588][T10351] EXT4-fs: Ignoring removed bh option
[  124.497921][T10351] EXT4-fs: inline encryption not supported
[  124.504328][T10351] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  124.516340][T10351] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  124.526459][T10351] EXT4-fs error (device loop6): ext4_map_blocks:776: inode #3: block 2: comm syz.6.2620: lblock 2 mapped to illegal pblock 2 (length 1)
[  124.541490][T10351] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  124.541649][T10351] Quota error (device loop6): qtree_write_dquot: dquota write failed
[  124.543677][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  124.551417][T10351] EXT4-fs error (device loop6): __ext4_get_inode_loc:4782: comm syz.6.2620: Invalid inode table block 1 in block_group 0
[  124.559543][    C1] EXT4-fs (loop6): initial error at time 2000000088: ext4_map_blocks:776: inode 3: block 2
[  124.559588][    C1] EXT4-fs (loop6): last error at time 2000000088: ext4_map_blocks:776
[  124.566961][T10351] loop6: lost filesystem error report for type 5 error -117
[  124.579120][    C1] : inode 3: block 2
[  124.609963][T10351] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6246: Corrupt filesystem
[  124.620024][T10351] loop6: lost filesystem error report for type 5 error -117
[  124.620254][T10351] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #3: comm syz.6.2620: mark_inode_dirty error
[  124.639608][T10351] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  124.639755][T10351] Quota error (device loop6): v2_write_file_info: Can't write info structure
[  124.658456][T10351] EXT4-fs error (device loop6): ext4_acquire_dquot:7001: comm syz.6.2620: Failed to acquire dquot type 0
[  124.670036][T10351] loop6: lost filesystem error report for type 5 error -117
[  124.678014][T10351] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6246: Corrupt filesystem
[  124.692610][T10351] loop6: lost filesystem error report for type 5 error -117
[  124.692779][T10351] EXT4-fs error (device loop6): ext4_evict_inode:255: inode #11: comm syz.6.2620: mark_inode_dirty error
[  124.711527][T10351] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  124.711650][T10351] EXT4-fs warning (device loop6): ext4_evict_inode:258: couldn't mark inode dirty (err -117)
[  124.731999][T10351] EXT4-fs (loop6): 1 orphan inode deleted
[  124.738653][T10351] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.774181][   T36] EXT4-fs error (device loop6): ext4_map_blocks:776: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  124.788723][   T36] Quota error (device loop6): remove_tree: Can't read quota data block 1
[  124.797383][   T36] EXT4-fs error (device loop6): ext4_release_dquot:7037: comm kworker/u8:2: Failed to release dquot type 0
[  124.822101][   T28] audit: type=1400 audit(2000000088.650:1317): avc:  denied  { write } for  pid=10358 comm="syz.8.2623" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  124.871737][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.885222][ T5538] EXT4-fs error (device loop6): __ext4_get_inode_loc:4782: comm syz-executor: Invalid inode table block 1 in block_group 0
[  124.898695][ T5538] loop6: lost filesystem error report for type 5 error -117
[  124.898999][ T5538] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6246: Corrupt filesystem
[  124.916208][ T5538] loop6: lost filesystem error report for type 5 error -117
[  124.916477][ T5538] EXT4-fs error (device loop6): ext4_quota_off:7285: inode #3: comm syz-executor: mark_inode_dirty error
[  124.939131][ T5538] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  125.147604][T10384] netlink: 'syz.4.2635': attribute type 3 has an invalid length.
[  125.178806][T10384] netlink: 'syz.4.2635': attribute type 7 has an invalid length.
[  125.187880][T10384] netlink: 'syz.4.2635': attribute type 8 has an invalid length.
[  125.196291][T10384] netlink: 'syz.4.2635': attribute type 7 has an invalid length.
[  125.334956][T10401] loop8: detected capacity change from 0 to 256
[  125.506803][T10415] loop8: detected capacity change from 0 to 1024
[  125.525731][T10415] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.560900][ T7131] EXT4-fs error (device loop8): ext4_lookup:1789: inode #2: comm syz-executor: deleted inode referenced: 11
[  125.574570][ T7131] EXT4-fs error (device loop8): ext4_lookup:1789: inode #2: comm syz-executor: deleted inode referenced: 11
[  125.600344][ T7399] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.805687][T10420] chnl_net:caif_netlink_parms(): no params data found
[  125.843410][T10420] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.851304][T10420] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.858735][T10420] bridge_slave_0: entered allmulticast mode
[  125.865612][T10420] bridge_slave_0: entered promiscuous mode
[  125.872695][T10420] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.880179][T10420] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.887601][T10420] bridge_slave_1: entered allmulticast mode
[  125.894350][T10420] bridge_slave_1: entered promiscuous mode
[  125.910980][T10420] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  125.922017][T10420] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  125.947915][T10420] team0: Port device team_slave_0 added
[  125.955295][T10420] team0: Port device team_slave_1 added
[  125.973079][T10420] batman_adv: batadv0: Adding interface: batadv_slave_0
[  125.980164][T10420] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  126.006226][T10420] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  126.017681][T10420] batman_adv: batadv0: Adding interface: batadv_slave_1
[  126.022361][T10438] __nla_validate_parse: 4 callbacks suppressed
[  126.022379][T10438] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2654'.
[  126.024938][T10420] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  126.067100][T10420] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  126.103270][T10440] futex_wake_op: syz.4.2655 tries to shift op by -1; fix this program
[  126.123144][T10420] hsr_slave_0: entered promiscuous mode
[  126.129817][T10420] hsr_slave_1: entered promiscuous mode
[  126.137070][T10420] debugfs: 'hsr0' already exists in 'hsr'
[  126.142962][T10420] Cannot create hsr debugfs directory
[  126.237503][T10420] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.244748][T10420] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.252389][T10420] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.259473][T10420] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.289771][T10420] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.302431][ T2183] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.312712][ T2183] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.324412][T10465] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  126.324412][T10465] The task syz.6.2662 (10465) triggered the difference, watch for misbehavior.
[  126.348311][T10420] 8021q: adding VLAN 0 to HW filter on device team0
[  126.360311][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.367673][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.381626][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.388916][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.455659][T10420] 8021q: adding VLAN 0 to HW filter on device batadv0
[  126.564436][T10420] veth0_vlan: entered promiscuous mode
[  126.572487][T10420] veth1_vlan: entered promiscuous mode
[  126.589840][T10420] veth0_macvtap: entered promiscuous mode
[  126.597745][T10420] veth1_macvtap: entered promiscuous mode
[  126.608990][T10420] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.620528][T10420] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.671429][   T28] audit: type=1326 audit(2000000090.500:1318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10487 comm="syz.1.2652" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f44aad6c799 code=0x0
[  127.087595][T10499] syzkaller1: entered promiscuous mode
[  127.093296][T10499] syzkaller1: entered allmulticast mode
[  127.162378][ T2244] bridge_slave_1: left allmulticast mode
[  127.168126][ T2244] bridge_slave_1: left promiscuous mode
[  127.174503][ T2244] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.182571][ T2244] bridge_slave_0: left allmulticast mode
[  127.188445][ T2244] bridge_slave_0: left promiscuous mode
[  127.194550][ T2244] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.260584][T10507] loop7: detected capacity change from 0 to 512
[  127.267527][T10507] EXT4-fs: Ignoring removed bh option
[  127.284255][T10507] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  127.295417][T10507] EXT4-fs (loop7): 1 truncate cleaned up
[  127.314554][T10507] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.356546][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.387360][ T2244] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  127.399435][ T2244] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  127.411528][ T2244] bond0 (unregistering): Released all slaves
[  127.475014][ T2244] hsr_slave_0: left promiscuous mode
[  127.481323][T10520] loop9: detected capacity change from 0 to 512
[  127.488948][ T2244] hsr_slave_1: left promiscuous mode
[  127.516274][ T2244] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  127.539145][ T2244] batman_adv: batadv0: Removing interface: batadv_slave_0
[  127.548017][ T2244] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  127.559929][ T2244] batman_adv: batadv0: Removing interface: batadv_slave_1
[  127.585930][T10528] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=58 sclass=netlink_audit_socket pid=10528 comm=syz.7.2682
[  127.599085][   T28] audit: type=1400 audit(2000000091.420:1319): avc:  denied  { map } for  pid=10529 comm="syz.6.2683" path="socket:[28883]" dev="sockfs" ino=28883 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  127.641980][ T2244] veth1_macvtap: left promiscuous mode
[  127.649843][ T2244] veth0_macvtap: left promiscuous mode
[  127.656215][   T28] audit: type=1400 audit(2000000091.420:1320): avc:  denied  { read accept } for  pid=10529 comm="syz.6.2683" path="socket:[28883]" dev="sockfs" ino=28883 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  127.686156][ T2244] veth1_vlan: left promiscuous mode
[  127.701149][ T2244] veth0_vlan: left promiscuous mode
[  127.763060][T10550] loop6: detected capacity change from 0 to 512
[  127.814583][T10550] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.838007][T10550] ext4 filesystem being mounted at /416/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.879720][T10550] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  127.916520][T10550] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 2 with error 28
[  127.932273][ T2244] team0 (unregistering): Port device team_slave_1 removed
[  127.949550][ T2244] team0 (unregistering): Port device team_slave_0 removed
[  127.971335][T10550] EXT4-fs (loop6): This should not happen!! Data will be lost
[  127.971335][T10550] 
[  128.001611][T10550] EXT4-fs (loop6): Total free blocks count 0
[  128.024425][T10550] EXT4-fs (loop6): Free/Dirty block details
[  128.030745][T10550] EXT4-fs (loop6): free_blocks=65280
[  128.050186][T10550] EXT4-fs (loop6): dirty_blocks=31
[  128.086617][T10550] EXT4-fs (loop6): Block reservation details
[  128.094012][T10550] EXT4-fs (loop6): i_reserved_data_blocks=31
[  128.100507][T10550] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 1 with error 28
[  128.365976][ T2244] IPVS: stop unused estimator thread 0...
[  128.663542][T10619] sch_tbf: peakrate 3 is lower than or equals to rate 183 !
[  128.786377][   T28] audit: type=1400 audit(2000000092.620:1321): avc:  denied  { ioctl } for  pid=10617 comm="syz.9.2718" path="socket:[29069]" dev="sockfs" ino=29069 ioctlcmd=0xf511 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  128.822266][T10633] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2724'.
[  128.831895][T10635] loop6: detected capacity change from 0 to 512
[  128.874377][T10641] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2727'.
[  128.905043][T10635] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.933574][T10635] ext4 filesystem being mounted at /423/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  128.987720][   T28] audit: type=1400 audit(2000000092.820:1322): avc:  denied  { create } for  pid=10634 comm="syz.6.2725" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=blk_file permissive=1
[  129.053783][T10635] EXT4-fs error (device loop6): ext4_do_update_inode:5569: inode #2: comm syz.6.2725: corrupted inode contents
[  129.101193][   T28] audit: type=1326 audit(2000000092.930:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10660 comm="syz.4.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  129.136073][T10635] EXT4-fs error (device loop6): ext4_dirty_inode:6450: inode #2: comm syz.6.2725: mark_inode_dirty error
[  129.150317][T10635] EXT4-fs error (device loop6): ext4_do_update_inode:5569: inode #2: comm syz.6.2725: corrupted inode contents
[  129.154461][   T28] audit: type=1326 audit(2000000092.930:1324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10660 comm="syz.4.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  129.184899][T10635] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #2: comm syz.6.2725: mark_inode_dirty error
[  129.220578][T10655] EXT4-fs warning (device loop6): ext4_es_cache_extent:1082: inode #2: comm syz.6.2725: ES cache extent failed: add [0,1,21,0x1] conflict with existing [0,8,576460752303423487,0x18]
[  129.220578][T10655] 
[  129.224819][   T28] audit: type=1326 audit(2000000092.930:1325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10660 comm="syz.4.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  129.274013][   T28] audit: type=1326 audit(2000000092.930:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10660 comm="syz.4.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  129.323532][T10663] loop1: detected capacity change from 0 to 256
[  129.331523][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.348491][   T28] audit: type=1326 audit(2000000092.930:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10660 comm="syz.4.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  129.375948][T10663] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  129.397259][T10663] FAT-fs (loop1): Filesystem has been set read-only
[  129.405352][T10669] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2739'.
[  129.480668][T10683] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2744'.
[  129.522640][   T28] audit: type=1400 audit(2000000093.350:1328): avc:  denied  { append } for  pid=10688 comm="syz.6.2748" name="ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  129.540156][T10691] loop6: detected capacity change from 0 to 512
[  129.595422][T10691] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.612817][T10691] ext4 filesystem being mounted at /428/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  129.626535][T10691] EXT4-fs error (device loop6): ext4_do_update_inode:5569: inode #2: comm syz.6.2749: corrupted inode contents
[  129.639119][T10691] EXT4-fs error (device loop6): ext4_dirty_inode:6450: inode #2: comm syz.6.2749: mark_inode_dirty error
[  129.652029][T10691] EXT4-fs error (device loop6): ext4_do_update_inode:5569: inode #2: comm syz.6.2749: corrupted inode contents
[  129.664298][T10691] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #2: comm syz.6.2749: mark_inode_dirty error
[  129.676834][T10696] EXT4-fs warning (device loop6): ext4_es_cache_extent:1082: inode #2: comm syz.6.2749: ES cache extent failed: add [0,1,22,0x1] conflict with existing [0,8,576460752303423487,0x18]
[  129.676834][T10696] 
[  129.714855][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.878016][T10712] unsupported nla_type 210
[  129.979545][T10721] loop9: detected capacity change from 0 to 1024
[  130.009843][T10721] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  130.018800][T10721] System zones: 0-1, 3-36
[  130.024379][T10721] EXT4-fs error (device loop9): ext4_orphan_get:1417: comm syz.9.2761: bad orphan inode 134217728
[  130.035454][T10721] loop9: lost filesystem error report for type 5 error -117
[  130.036072][T10721] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.076265][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.225896][T10732] sctp: [Deprecated]: syz.4.2765 (pid 10732) Use of struct sctp_assoc_value in delayed_ack socket option.
[  130.225896][T10732] Use struct sctp_sack_info instead
[  130.389841][T10740] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10740 comm=syz.4.2769
[  130.627709][T10747] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2771'.
[  130.690372][T10749] loop1: detected capacity change from 0 to 1024
[  130.725215][T10749] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.819073][T10749] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  130.855210][T10749] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  130.867920][T10749] EXT4-fs (loop1): This should not happen!! Data will be lost
[  130.867920][T10749] 
[  130.878597][T10749] EXT4-fs (loop1): Total free blocks count 0
[  130.885523][T10758] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 60 with error 28
[  130.923330][T10749] EXT4-fs (loop1): Free/Dirty block details
[  130.958056][T10749] EXT4-fs (loop1): free_blocks=20480
[  130.963498][T10749] EXT4-fs (loop1): dirty_blocks=80
[  130.990576][T10769] loop7: detected capacity change from 0 to 1764
[  131.014038][T10758] EXT4-fs (loop1): This should not happen!! Data will be lost
[  131.014038][T10758] 
[  131.034061][T10749] EXT4-fs (loop1): Block reservation details
[  131.287374][T10790] loop7: detected capacity change from 0 to 512
[  131.331083][T10790] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  131.394325][T10790] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.424088][T10790] ext4 filesystem being mounted at /323/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  131.564217][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.649226][T10819] loop7: detected capacity change from 0 to 1024
[  131.680029][T10819] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.696873][T10819] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  131.722135][T10819] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  131.774936][T10819] EXT4-fs (loop7): This should not happen!! Data will be lost
[  131.774936][T10819] 
[  131.791976][T10829] loop1: detected capacity change from 0 to 1024
[  131.813983][T10819] EXT4-fs (loop7): Total free blocks count 0
[  131.823571][T10830] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 60 with error 28
[  131.846461][T10829] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.863985][T10819] EXT4-fs (loop7): Free/Dirty block details
[  131.868181][T10830] EXT4-fs (loop7): This should not happen!! Data will be lost
[  131.868181][T10830] 
[  131.876850][T10819] EXT4-fs (loop7): free_blocks=20480
[  131.880683][T10830] EXT4-fs (loop7): Total free blocks count 0
[  131.892186][T10830] EXT4-fs (loop7): Free/Dirty block details
[  131.951024][T10833] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4222: comm syz.1.2804: Allocating blocks 497-513 which overlap fs metadata
[  132.152923][T10833] EXT4-fs (loop1): pa ffff8881086f64d0: logic 0, phys. 113, len 25
[  132.161674][T10833] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 1
[  132.188593][T10420] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.282357][T10862] loop7: detected capacity change from 0 to 512
[  132.305976][T10862] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.323893][T10862] ext4 filesystem being mounted at /327/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  132.337346][T10862] EXT4-fs error (device loop7): ext4_do_update_inode:5569: inode #2: comm syz.7.2819: corrupted inode contents
[  132.351304][T10862] EXT4-fs error (device loop7): ext4_dirty_inode:6450: inode #2: comm syz.7.2819: mark_inode_dirty error
[  132.364095][T10862] EXT4-fs error (device loop7): ext4_do_update_inode:5569: inode #2: comm syz.7.2819: corrupted inode contents
[  132.378156][T10862] EXT4-fs error (device loop7): __ext4_ext_dirty:207: inode #2: comm syz.7.2819: mark_inode_dirty error
[  132.391545][T10875] EXT4-fs warning (device loop7): ext4_es_cache_extent:1082: inode #2: comm syz.7.2819: ES cache extent failed: add [0,1,22,0x1] conflict with existing [0,8,576460752303423487,0x18]
[  132.391545][T10875] 
[  132.460796][T10879] loop6: detected capacity change from 0 to 1764
[  132.469233][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.747796][T10908] xt_hashlimit: size too large, truncated to 1048576
[  132.896697][T10915] loop1: detected capacity change from 0 to 512
[  132.935081][T10915] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.950860][T10923] sctp: [Deprecated]: syz.7.2843 (pid 10923) Use of struct sctp_assoc_value in delayed_ack socket option.
[  132.950860][T10923] Use struct sctp_sack_info instead
[  132.953238][T10915] ext4 filesystem being mounted at /28/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  132.999833][T10915] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.2839: corrupted inode contents
[  133.013063][T10915] EXT4-fs error (device loop1): ext4_dirty_inode:6450: inode #2: comm syz.1.2839: mark_inode_dirty error
[  133.026031][T10915] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.2839: corrupted inode contents
[  133.039572][T10923] loop7: detected capacity change from 0 to 2048
[  133.046153][T10915] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.2839: mark_inode_dirty error
[  133.062786][T10915] EXT4-fs warning (device loop1): ext4_es_cache_extent:1082: inode #2: comm syz.1.2839: ES cache extent failed: add [0,1,22,0x1] conflict with existing [0,8,576460752303423487,0x18]
[  133.062786][T10915] 
[  133.092991][T10934] loop6: detected capacity change from 0 to 512
[  133.104206][ T6641]  loop7: p3 < > p4 < >
[  133.110936][T10420] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.121921][ T6641] loop7: partition table partially beyond EOD, truncated
[  133.138472][ T6641] loop7: p3 start 4284289 is beyond EOD, truncated
[  133.161535][T10934] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2847: invalid indirect mapped block 256 (level 2)
[  133.176234][T10923]  loop7: p3 < > p4 < >
[  133.180517][T10923] loop7: partition table partially beyond EOD, truncated
[  133.228544][T10923] loop7: p3 start 4284289 is beyond EOD, truncated
[  133.266246][T10939] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.283738][T10934] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  133.293675][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  133.309746][    C1] EXT4-fs (loop6): initial error at time 2000000097: ext4_free_branches:1023: inode 11
[  133.320141][    C1] EXT4-fs (loop6): last error at time 2000000097: ext4_free_branches:1023: inode 11
[  133.346208][T10934] EXT4-fs (loop6): 2 truncates cleaned up
[  133.360918][T10934] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.413227][T10934] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.2847: bg 0: block 5: invalid block bitmap
[  133.460103][T10949] EXT4-fs error (device loop9): ext4_mb_mark_diskspace_used:4222: comm syz.9.2850: Allocating blocks 497-513 which overlap fs metadata
[  133.476252][T10948] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2853'.
[  133.487936][T10948] vlan2: entered allmulticast mode
[  133.495702][T10948] bridge0: port 3(vlan2) entered blocking state
[  133.510409][T10948] bridge0: port 3(vlan2) entered disabled state
[  133.523939][T10934] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  133.524596][T10948] vlan2: entered promiscuous mode
[  133.624584][T10934] EXT4-fs (loop6): This should not happen!! Data will be lost
[  133.624584][T10934] 
[  133.656024][T10934] EXT4-fs (loop6): Total free blocks count 0
[  133.662383][T10934] EXT4-fs (loop6): Free/Dirty block details
[  133.672061][T10951] hub 1-0:1.0: USB hub found
[  133.690724][T10951] hub 1-0:1.0: 8 ports detected
[  133.698616][T10938] EXT4-fs (loop9): pa ffff8881086f6540: logic 0, phys. 113, len 25
[  133.706716][T10938] EXT4-fs error (device loop9): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 1
[  133.734410][T10934] EXT4-fs (loop6): free_blocks=0
[  133.749743][T10934] EXT4-fs (loop6): dirty_blocks=67
[  133.764326][T10934] EXT4-fs (loop6): Block reservation details
[  133.780676][T10934] EXT4-fs (loop6): i_reserved_data_blocks=67
[  133.809942][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.875671][   T50] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28
[  134.009354][T10960] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=e842c018, mo2=0002]
[  134.047490][T10960] System zones: 0-5
[  134.074070][T10960] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.127699][   T28] kauditd_printk_skb: 38 callbacks suppressed
[  134.127716][   T28] audit: type=1400 audit(2000000097.960:1367): avc:  denied  { lock } for  pid=10959 comm="syz.9.2859" path="/206/file3/file1" dev="loop9" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  134.197470][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.348490][T10978] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.421872][T10986] tipc: Started in network mode
[  134.426136][T10931] kexec: Could not allocate control_code_buffer
[  134.439474][T10986] tipc: Node identity 56c342fa5af7, cluster identity 4711
[  134.459207][T10987] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4222: comm syz.7.2866: Allocating blocks 497-513 which overlap fs metadata
[  134.479778][T10986] tipc: Enabled bearer <eth:xfrm0>, priority 17
[  134.600969][T10987] EXT4-fs (loop7): pa ffff888108629230: logic 0, phys. 113, len 25
[  134.609396][T10987] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 1
[  134.649047][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.666199][T11001] tipc: Enabled bearer <udp:syz1>, priority 10
[  134.809219][   T28] audit: type=1326 audit(2000000098.640:1368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11026 comm="syz.4.2885" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x0
[  134.983334][T11047] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.984174][T11049] netlink: 792 bytes leftover after parsing attributes in process `syz.4.2896'.
[  135.022413][T11049] netlink: 792 bytes leftover after parsing attributes in process `syz.4.2896'.
[  135.035469][T11049] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2896'.
[  135.052395][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.338269][T11082] EXT4-fs: inline encryption not supported
[  135.348774][T11082] EXT4-fs: Ignoring removed nobh option
[  135.356520][T11082] EXT4-fs: Ignoring removed bh option
[  135.399914][T11082] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.419143][   T28] audit: type=1326 audit(2000000099.250:1369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11090 comm="syz.1.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  135.443989][   T28] audit: type=1326 audit(2000000099.250:1370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11090 comm="syz.1.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  135.468607][   T28] audit: type=1326 audit(2000000099.250:1371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11090 comm="syz.1.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  135.493529][   T28] audit: type=1326 audit(2000000099.250:1372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11090 comm="syz.1.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  135.518648][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.520578][   T28] audit: type=1326 audit(2000000099.250:1373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11090 comm="syz.1.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  135.551856][   T28] audit: type=1326 audit(2000000099.250:1374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11090 comm="syz.1.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  135.625432][   T28] audit: type=1326 audit(2000000099.250:1375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11090 comm="syz.1.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  135.650895][   T28] audit: type=1326 audit(2000000099.250:1376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11090 comm="syz.1.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  135.683789][ T3486] tipc: Node number set to 204751610
[  135.865314][T11126] set_capacity_and_notify: 6 callbacks suppressed
[  135.865335][T11126] loop6: detected capacity change from 0 to 1024
[  135.957902][T11126] EXT4-fs: inline encryption not supported
[  135.969765][T11126] EXT4-fs: Ignoring removed nobh option
[  136.033730][T11126] EXT4-fs: Ignoring removed bh option
[  136.076937][T11126] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.156561][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.311652][T11158] loop9: detected capacity change from 0 to 256
[  136.485531][T11174] loop9: detected capacity change from 0 to 512
[  136.532159][T11174] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  136.563935][T11174] ext4 filesystem being mounted at /217/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  136.608404][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  136.738819][T11190] loop7: detected capacity change from 0 to 512
[  136.778102][T11190] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  136.810672][T11190] EXT4-fs warning (device loop7): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  136.831249][T11190] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.2964: bg 0: block 248: padding at end of block bitmap is not set
[  136.846389][T11190] loop7: lost filesystem error report for type 5 error -117
[  136.846814][T11190] EXT4-fs error (device loop7): ext4_acquire_dquot:7001: comm syz.7.2964: Failed to acquire dquot type 1
[  136.854485][    C0] EXT4-fs (loop7): error count since last fsck: 1
[  136.854509][    C0] EXT4-fs (loop7): last error at time 2000000100: ext4_validate_block_bitmap:441
[  136.883283][T11190] loop7: lost filesystem error report for type 5 error -117
[  136.886990][T11190] EXT4-fs (loop7): 1 truncate cleaned up
[  136.902056][T11190] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  136.918303][T11190] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  136.928366][T11196] loop6: detected capacity change from 0 to 128
[  136.943822][T11196] FAT-fs (loop6): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  136.955742][ T2244] FAT-fs (loop6): error, invalid FAT chain (i_pos 548, last_block 8)
[  136.968120][ T2244] FAT-fs (loop6): Filesystem has been set read-only
[  136.975583][ T2244] FAT-fs (loop6): error, corrupted file size (i_pos 548, 522)
[  137.023527][T11201] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  137.096777][ T3429] IPVS: starting estimator thread 0...
[  137.131463][T11210] loop7: detected capacity change from 0 to 1024
[  137.139446][T11210] EXT4-fs (loop7): filesystem is read-only
[  137.145998][T11210] EXT4-fs (loop7): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  137.157840][T11210] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (11891!=20869)
[  137.168612][T11210] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  137.179196][T11210] EXT4-fs error (device loop7): ext4_get_journal_inode:5863: comm syz.7.2962: inode #1: comm syz.7.2962: iget: illegal inode #
[  137.193469][T11210] loop7: lost filesystem error report for type 5 error -117
[  137.193609][T11210] EXT4-fs (loop7): no journal found
[  137.193654][    C0] EXT4-fs (loop7): error count since last fsck: 1
[  137.193685][    C0] EXT4-fs (loop7): initial error at time 2000000101: ext4_get_journal_inode:5863
[  137.193727][    C0] EXT4-fs (loop7): last error at time 2000000101: ext4_get_journal_inode:5863
[  137.193795][T11206] IPVS: using max 2784 ests per chain, 139200 per kthread
[  137.242120][T11210] EXT4-fs (loop7): can't get journal size
[  137.250072][T11210] EXT4-fs error (device loop7): __ext4_fill_super:5563: inode #2: comm syz.7.2962: iget: special inode unallocated
[  137.262980][T11210] loop7: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117
[  137.263150][T11210] EXT4-fs (loop7): get root inode failed
[  137.278707][T11210] EXT4-fs (loop7): mount failed
[  137.290892][T11210] loop7: detected capacity change from 0 to 512
[  137.316961][T11210] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  137.335682][T11210] ext4 filesystem being mounted at /350/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.362821][T11222] loop1: detected capacity change from 0 to 128
[  137.373111][T11222] bio_check_eod: 8591 callbacks suppressed
[  137.373131][T11222] syz.1.2966: attempt to access beyond end of device
[  137.373131][T11222] loop1: rw=8388611, sector=138, nr_sectors = 6 limit=128
[  137.394821][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  137.404060][T11222] syz.1.2966: attempt to access beyond end of device
[  137.404060][T11222] loop1: rw=8390659, sector=144, nr_sectors = 106 limit=128
[  137.465643][T11226] loop1: detected capacity change from 0 to 128
[  137.482719][T11226] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  137.497458][T11226] ext4 filesystem being mounted at /66/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  137.538328][T11231] veth0: entered promiscuous mode
[  137.553403][T11229] loop7: detected capacity change from 0 to 2048
[  137.566607][T11229] EXT4-fs: Ignoring removed i_version option
[  137.573878][T11230] veth0: left promiscuous mode
[  137.601372][T10420] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  137.601646][T11229] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.633396][T11229] ext4 filesystem being mounted at /352/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.782571][ T6576] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.886683][T11265] netlink: 16 bytes leftover after parsing attributes in process `syz.9.2984'.
[  137.901123][T11265] netlink: 20 bytes leftover after parsing attributes in process `syz.9.2984'.
[  139.136139][T11352] netlink: 16 bytes leftover after parsing attributes in process `syz.9.3020'.
[  139.160296][   T28] kauditd_printk_skb: 73 callbacks suppressed
[  139.160316][   T28] audit: type=1400 audit(2000000102.990:1448): avc:  denied  { read } for  pid=11348 comm="syz.1.3022" path="socket:[31283]" dev="sockfs" ino=31283 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  139.203974][T11352] bond1: option primary_reselect: invalid value (8)
[  139.218624][T11352] bond1 (unregistering): Released all slaves
[  139.220309][T11358] xt_hashlimit: size too large, truncated to 1048576
[  139.244999][T11360] EXT4-fs: Ignoring removed oldalloc option
[  139.267781][T11360] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.3025: invalid indirect mapped block 4294967295 (level 1)
[  139.282279][T11360] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  139.283656][    C1] EXT4-fs (loop1): error count since last fsck: 1
[  139.300010][    C1] EXT4-fs (loop1): initial error at time 2000000103: ext4_free_branches:1023: inode 11
[  139.309979][    C1] EXT4-fs (loop1): last error at time 2000000103: ext4_free_branches:1023: inode 11
[  139.310208][T11360] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.3025: invalid indirect mapped block 4294967295 (level 1)
[  139.359590][T11360] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  139.364039][T11360] EXT4-fs (loop1): 2 truncates cleaned up
[  139.381178][T11360] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.570250][T10420] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.621628][T11383] netlink: 'syz.1.3032': attribute type 3 has an invalid length.
[  139.648806][T11383] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.3032'.
[  139.728065][T11395] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.759847][   T28] audit: type=1326 audit(2000000103.590:1449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11399 comm="syz.1.3040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  139.791041][   T28] audit: type=1326 audit(2000000103.620:1450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11399 comm="syz.1.3040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  139.815450][   T28] audit: type=1326 audit(2000000103.620:1451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11399 comm="syz.1.3040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  139.819752][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.840186][   T28] audit: type=1326 audit(2000000103.620:1452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11399 comm="syz.1.3040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  139.934788][   T28] audit: type=1400 audit(2000000103.770:1453): avc:  denied  { mount } for  pid=11408 comm="syz.7.3044" name="/" dev="rpc_pipefs" ino=31413 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  139.969591][T11413] EXT4-fs: Ignoring removed nobh option
[  139.997854][T11413] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  140.012372][T11413] EXT4-fs (loop1): 1 truncate cleaned up
[  140.019158][T11413] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.055573][T10420] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.073793][T11423] netlink: 63503 bytes leftover after parsing attributes in process `syz.9.3050'.
[  140.192723][   T28] audit: type=1400 audit(2000000104.020:1454): avc:  denied  { ioctl } for  pid=11441 comm="syz.4.3059" path="socket:[30458]" dev="sockfs" ino=30458 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  140.524976][T11465] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.569471][   T28] audit: type=1400 audit(2000000104.400:1455): avc:  denied  { mount } for  pid=11470 comm="syz.4.3070" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  140.572300][T11465] ext4 filesystem being mounted at /83/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  140.679413][T11475] EXT4-fs (loop9): filesystem is read-only
[  140.716940][T11475] EXT4-fs (loop9): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  140.729134][T11465] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.3067: corrupted inode contents
[  140.753387][T11475] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (11891!=20869)
[  140.774711][T11465] EXT4-fs error (device loop1): ext4_dirty_inode:6450: inode #2: comm syz.1.3067: mark_inode_dirty error
[  140.775314][T11480] EXT4-fs (loop1): shut down requested (2)
[  140.788528][T11475] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  140.822875][T11475] EXT4-fs error (device loop9): ext4_get_journal_inode:5863: comm syz.9.3071: inode #1: comm syz.9.3071: iget: illegal inode #
[  140.837754][T11465] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.3067: corrupted inode contents
[  140.863771][T11475] loop9: lost filesystem error report for type 5 error -117
[  140.863912][T11475] EXT4-fs (loop9): no journal found
[  140.876584][    C1] EXT4-fs (loop9): error count since last fsck: 1
[  140.876611][    C1] EXT4-fs (loop9): initial error at time 2000000104: ext4_get_journal_inode:5863
[  140.876642][    C1] EXT4-fs (loop9): last error at time 2000000104: ext4_get_journal_inode:5863
[  140.944938][T10420] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.954596][T11475] EXT4-fs (loop9): can't get journal size
[  140.957823][T11485] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3076'.
[  140.963936][   T30] Quota error (device loop1): dquot_write_dquot: Can't write quota structure (error -5). Quota may get out of sync!
[  140.969632][T11485] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3076'.
[  141.018368][T11475] EXT4-fs error (device loop9): __ext4_fill_super:5563: inode #2: comm syz.9.3071: iget: special inode unallocated
[  141.041559][T11475] loop9: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117
[  141.041732][T11475] EXT4-fs (loop9): get root inode failed
[  141.101187][T11475] EXT4-fs (loop9): mount failed
[  141.119036][T11496] set_capacity_and_notify: 8 callbacks suppressed
[  141.119060][T11496] loop6: detected capacity change from 0 to 1024
[  141.162245][T11496] EXT4-fs: inline encryption not supported
[  141.183395][T11496] EXT4-fs: Ignoring removed bh option
[  141.186646][T11498] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3081'.
[  141.217512][T11475] loop9: detected capacity change from 0 to 512
[  141.225841][T11496] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.275479][T11475] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  141.303205][T11475] ext4 filesystem being mounted at /250/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.318081][   T28] audit: type=1400 audit(2000000105.150:1456): avc:  denied  { unlink } for  pid=5538 comm="syz-executor" name="bus" dev="loop6" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  141.361775][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.398253][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  141.721810][T11532] loop6: detected capacity change from 0 to 512
[  141.736229][T11532] EXT4-fs (loop6): 1 truncate cleaned up
[  141.736938][T11437] kexec: Could not allocate control_code_buffer
[  141.750083][T11532] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.777040][T11535] loop7: detected capacity change from 0 to 128
[  141.785901][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.851810][T11543] loop7: detected capacity change from 0 to 128
[  141.866419][T11543] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  141.891901][   T30] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  142.160323][T11561] xt_hashlimit: size too large, truncated to 1048576
[  142.369616][T11569] loop1: detected capacity change from 0 to 1024
[  142.392345][T11569] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (29950!=20869)
[  142.402359][T11576] sctp: [Deprecated]: syz.9.3114 (pid 11576) Use of int in max_burst socket option deprecated.
[  142.402359][T11576] Use struct sctp_assoc_value instead
[  142.406929][T11569] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  142.438580][T11569] EXT4-fs error (device loop1): ext4_get_journal_inode:5863: comm syz.1.3110: inode #4294967295: comm syz.1.3110: iget: illegal inode #
[  142.454542][T11569] loop1: lost filesystem error report for type 5 error -117
[  142.454689][T11569] EXT4-fs (loop1): no journal found
[  142.468755][    C0] EXT4-fs (loop1): error count since last fsck: 1
[  142.468782][    C0] EXT4-fs (loop1): initial error at time 2000000106: ext4_get_journal_inode:5863
[  142.468804][    C0] EXT4-fs (loop1): last error at time 2000000106: ext4_get_journal_inode:5863
[  142.496430][T11569] EXT4-fs (loop1): can't get journal size
[  142.503431][T11569] EXT4-fs (loop1): failed to initialize system zone (-22)
[  142.511098][T11569] EXT4-fs (loop1): mount failed
[  142.787049][T11595] loop6: detected capacity change from 0 to 512
[  142.806589][T11595] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  142.816536][T11595] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  142.826520][T11595] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  142.835347][T11595] System zones: 0-2, 18-18, 34-35
[  142.841058][T11595] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  142.855819][T11595] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[  142.865544][T11595] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  142.874334][T11595] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  142.898135][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.083440][T11600] loop6: detected capacity change from 0 to 4096
[  143.097040][T11600] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.172247][ T5538] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.880937][T11684] syzkaller1: entered promiscuous mode
[  143.886929][T11684] syzkaller1: entered allmulticast mode
[  144.083366][T11712] loop1: detected capacity change from 0 to 2048
[  144.121383][T11712] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.149659][T10420] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.402224][T11729] netlink: 'syz.6.3175': attribute type 1 has an invalid length.
[  144.410322][T11729] netlink: 76 bytes leftover after parsing attributes in process `syz.6.3175'.
[  144.486959][   T28] kauditd_printk_skb: 32 callbacks suppressed
[  144.486976][   T28] audit: type=1400 audit(2000000108.320:1489): avc:  denied  { checkpoint_restore } for  pid=11737 comm="syz.9.3180" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  144.671270][T11758] loop9: detected capacity change from 0 to 512
[  144.889912][T11783] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.907878][T11782] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  144.922545][T11782] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  144.931961][T11782] FAT-fs (loop1): Filesystem has been set read-only
[  144.934457][   T28] audit: type=1400 audit(2000000108.760:1490): avc:  denied  { mounton } for  pid=11781 comm="syz.9.3199" path="/" dev="loop9" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  144.940215][T11782] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  144.970030][T11782] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  144.981085][T11782] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  144.990508][T11782] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  145.000037][T11782] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  145.000521][ T8032] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.010222][T11782] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  145.028075][T11782] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  145.037141][T11782] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  145.047151][T11782] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  145.047163][   T28] audit: type=1326 audit(2000000108.880:1491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  145.047208][   T28] audit: type=1326 audit(2000000108.880:1492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  145.104967][   T28] audit: type=1326 audit(2000000108.940:1493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  145.150773][T11798] ext4 filesystem being mounted at /392/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.163952][   T28] audit: type=1326 audit(2000000108.940:1494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  145.188916][   T28] audit: type=1326 audit(2000000108.940:1495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  145.215257][   T28] audit: type=1326 audit(2000000108.940:1496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  145.239447][   T28] audit: type=1326 audit(2000000108.940:1497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  145.263926][   T28] audit: type=1326 audit(2000000108.940:1498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0199ec799 code=0x7ffc0000
[  145.294287][ T2183] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  145.319764][ T2183] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 4095 with max blocks 1 with error 28
[  145.332467][ T2183] EXT4-fs (loop7): This should not happen!! Data will be lost
[  145.332467][ T2183] 
[  145.342677][ T2183] EXT4-fs (loop7): Total free blocks count 0
[  145.349237][ T2183] EXT4-fs (loop7): Free/Dirty block details
[  145.355557][ T2183] EXT4-fs (loop7): free_blocks=65280
[  145.361262][ T2183] EXT4-fs (loop7): dirty_blocks=1
[  145.366830][ T2183] EXT4-fs (loop7): Block reservation details
[  145.372999][ T2183] EXT4-fs (loop7): i_reserved_data_blocks=1
[  145.411571][T11805] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  145.688670][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811bdb4200: rx timeout, send abort
[  145.697526][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811bdb4200: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  146.125542][T11863] set_capacity_and_notify: 4 callbacks suppressed
[  146.125561][T11863] loop6: detected capacity change from 0 to 128
[  146.155088][T11863] ext4 filesystem being mounted at /524/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  146.253692][T11875] serio: Serial port ptm0
[  146.322146][T11884] vhci_hcd vhci_hcd.3: default hub control req: 6016 v000e i0006 l0
[  146.433254][T11897] netlink: 'syz.6.3248': attribute type 83 has an invalid length.
[  146.589026][T11908] loop9: detected capacity change from 0 to 1024
[  146.617256][T11908] EXT4-fs: Ignoring removed orlov option
[  146.688077][T11908] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[  146.726262][T11917] Invalid argument reading file caps for ./file0
[  146.752717][T11901] loop1: detected capacity change from 0 to 4096
[  147.086214][T11949] loop1: detected capacity change from 0 to 128
[  147.169729][T11944] loop9: detected capacity change from 0 to 8192
[  147.247506][T11950] Process accounting resumed
[  147.275231][T11955] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3273'.
[  147.489478][T11977] Process accounting resumed
[  147.513444][T11981] sctp: [Deprecated]: syz.1.3285 (pid 11981) Use of int in max_burst socket option deprecated.
[  147.513444][T11981] Use struct sctp_assoc_value instead
[  148.087025][T12020] netlink: 100 bytes leftover after parsing attributes in process `syz.4.3303'.
[  148.129537][T12014] loop9: detected capacity change from 0 to 4096
[  148.471430][T12046] loop6: detected capacity change from 0 to 1024
[  148.487069][T12046] EXT4-fs: Ignoring removed orlov option
[  148.692184][ T3402] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  148.718064][ T3402] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  148.792209][T12080] loop6: detected capacity change from 0 to 512
[  148.827491][T12080] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.3328: bg 0: block 5: invalid block bitmap
[  148.848841][T12080] loop6: lost filesystem error report for type 5 error -117
[  148.849085][T12080] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  148.856721][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  148.856746][    C0] EXT4-fs (loop6): initial error at time 2000000112: ext4_validate_block_bitmap:432
[  148.856781][    C0] EXT4-fs (loop6): last error at time 2000000112: ext4_validate_block_bitmap:432
[  148.893848][T12080] loop6: lost filesystem error report for type 5 error -117
[  148.895013][T12080] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.3328: invalid indirect mapped block 3 (level 2)
[  148.920117][T12080] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  148.920471][T12080] EXT4-fs (loop6): 1 orphan inode deleted
[  148.949368][T12080] EXT4-fs (loop6): 1 truncate cleaned up
[  148.957271][T12090] loop7: detected capacity change from 0 to 256
[  149.004869][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  149.052358][T12097] bridge_slave_0: invalid flags given to default FDB implementation
[  149.081066][T12097] bridge_slave_0: invalid flags given to default FDB implementation
[  149.118206][T12105] loop1: detected capacity change from 0 to 1024
[  149.135453][T12105] EXT4-fs: Ignoring removed orlov option
[  149.568583][   T28] kauditd_printk_skb: 28 callbacks suppressed
[  149.568601][   T28] audit: type=1400 audit(2000000113.400:1527): avc:  denied  { write } for  pid=12119 comm="syz.6.3343" path="socket:[32519]" dev="sockfs" ino=32519 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  149.784213][T12127] netlink: 'syz.7.3347': attribute type 30 has an invalid length.
[  149.784689][T12124] ext4 filesystem being mounted at /549/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.805191][ T3395] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  149.886703][   T28] audit: type=1326 audit(2000000113.720:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12095 comm="syz.9.3337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe533c799 code=0x7fc00000
[  150.046013][   T28] audit: type=1400 audit(2000000113.880:1529): avc:  denied  { associate } for  pid=12149 comm="syz.4.3357" name="792" dev="tmpfs" ino=4086 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:hwdata_t:s0"
[  150.302322][T12171] netlink: 'syz.1.3364': attribute type 39 has an invalid length.
[  150.318894][T12167] sctp: [Deprecated]: syz.9.3363 (pid 12167) Use of struct sctp_assoc_value in delayed_ack socket option.
[  150.318894][T12167] Use struct sctp_sack_info instead
[  150.343342][T12171] hsr_slave_1 (unregistering): left promiscuous mode
[  150.838870][T12201] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  150.851778][T12201] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  150.861071][ T8462] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  150.861463][T12201] FAT-fs (loop7): Filesystem has been set read-only
[  150.877102][T12201] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  150.886218][T12201] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  150.895722][T12201] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  150.904762][T12201] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  150.914178][T12201] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  150.924693][T12201] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  150.926840][ T1506] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  150.934661][T12201] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  150.952236][T12201] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  150.961710][T12201] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  151.263279][ T8462] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  151.287577][ T8462] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  151.305771][T12227] set_capacity_and_notify: 3 callbacks suppressed
[  151.305793][T12227] loop6: detected capacity change from 0 to 4096
[  151.339643][T12227] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  151.480271][T12239] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3395'.
[  151.490489][T12239] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.504854][T12239] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.563728][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  151.572155][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  151.684857][T12249] loop6: detected capacity change from 0 to 128
[  151.800586][   T28] audit: type=1326 audit(2000000115.630:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.1.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  151.854061][   T28] audit: type=1326 audit(2000000115.630:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.1.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  151.884562][ T3429] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  151.931698][   T28] audit: type=1326 audit(2000000115.630:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.1.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  151.975405][   T28] audit: type=1326 audit(2000000115.630:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.1.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  152.013217][   T28] audit: type=1326 audit(2000000115.660:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.1.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44aad6c799 code=0x7ffc0000
[  152.044535][ T3402] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  152.051016][T12275] syzkaller1: entered promiscuous mode
[  152.059025][T12275] syzkaller1: entered allmulticast mode
[  152.080289][T12278] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  152.103950][T12271] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3410'.
[  152.117827][T12271] netlink: 64 bytes leftover after parsing attributes in process `syz.1.3410'.
[  152.129060][   T28] audit: type=1400 audit(2000000115.950:1535): avc:  denied  { read } for  pid=12277 comm="syz.6.3414" path="socket:[32734]" dev="sockfs" ino=32734 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  152.206751][ T3429] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  152.242617][T12303] 9p: Bad value for 'wfdno'
[  152.309763][T12311] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3429'.
[  152.337238][T12311] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3429'.
[  152.358997][   T30] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  152.359029][T12311] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3429'.
[  152.359055][T12311] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3429'.
[  152.375107][   T30] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  152.441009][T12324] Invalid argument reading file caps for ./file0
[  152.490645][   T30] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  152.529349][   T30] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  152.747939][T12348] loop9: detected capacity change from 0 to 512
[  152.781028][T12348] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002]
[  152.792853][T12348] System zones: 0-2, 18-18, 34-35
[  152.810493][T12348] ext4 filesystem being mounted at /321/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.978364][T12356] futex_wake_op: syz.9.3448 tries to shift op by -1; fix this program
[  153.035091][T12366] loop6: detected capacity change from 0 to 512
[  153.043721][T12366] EXT4-fs: Ignoring removed i_version option
[  153.067358][T12366] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  153.106630][T12366] EXT4-fs (loop6): 1 truncate cleaned up
[  153.159128][T12366] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.3453: invalid indirect mapped block 4294901760 (level 0)
[  153.184942][T12382] ==================================================================
[  153.193188][T12382] BUG: KCSAN: data-race in bq_flush_to_queue / cpu_map_kthread_run
[  153.201382][T12382] 
[  153.203721][T12382] write to 0xffff88811ad52888 of 8 bytes by task 12383 on cpu 0:
[  153.211619][T12382]  cpu_map_kthread_run+0x4fe/0x1680
[  153.216925][T12382]  kthread+0x22a/0x280
[  153.221379][T12382]  ret_from_fork+0x150/0x360
[  153.226375][T12382]  ret_from_fork_asm+0x1a/0x30
[  153.231346][T12382] 
[  153.233684][T12382] read to 0xffff88811ad52888 of 8 bytes by task 12382 on cpu 1:
[  153.241340][T12382]  bq_flush_to_queue+0x124/0x360
[  153.246319][T12382]  __cpu_map_flush+0x47/0xa0
[  153.251260][T12382]  xdp_do_flush+0xf8/0x160
[  153.256042][T12382]  bpf_test_run_xdp_live+0xe8a/0x1360
[  153.261693][T12382]  bpf_prog_test_run_xdp+0x57b/0xa10
[  153.267185][T12382]  bpf_prog_test_run+0x204/0x340
[  153.272271][T12382]  __sys_bpf+0x52e/0x7e0
[  153.276579][T12382]  __x64_sys_bpf+0x41/0x50
[  153.281126][T12382]  x64_sys_call+0x10cb/0x3020
[  153.285841][T12382]  do_syscall_64+0x12c/0x370
[  153.290432][T12382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.296503][T12382] 
[  153.298826][T12382] value changed: 0xffff88816a5aa070 -> 0x0000000000000000
[  153.306042][T12382] 
[  153.308366][T12382] Reported by Kernel Concurrency Sanitizer on:
[  153.314611][T12382] CPU: 1 UID: 0 PID: 12382 Comm: syz.9.3460 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  153.325671][T12382] Tainted: [W]=WARN
[  153.329561][T12382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  153.339623][T12382] ==================================================================
[  153.351780][T12366] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.3453: invalid indirect mapped block 4294967295 (level 1)
[  154.774678][ T2183] net_ratelimit: 6 callbacks suppressed
[  154.774700][ T2183] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  155.003804][ T3429] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  156.044476][ T3395] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  157.083915][ T3395] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  157.813876][ T3402] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  157.965206][ T3395] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  158.124343][ T3395] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  159.163864][ T3429] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  159.244028][ T3395] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  160.203773][ T3429] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  160.524346][ T3486] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  160.532948][   T30] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  161.243871][ T3395] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  161.804694][ T3429] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  162.283879][ T3429] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog