last executing test programs: 2m6.244228252s ago: executing program 3 (id=1424): openat$cgroup_type(0xffffffffffffffff, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) syz_clone(0x24084200, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001a40)) 2m4.247454461s ago: executing program 3 (id=1428): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) getpid() socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000080000000800000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/17], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) 2m0.664563237s ago: executing program 3 (id=1436): socket$netlink(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = socket$inet(0x2, 0x2, 0x1) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000300)='batadv_slave_1\x00', 0x10) sendmsg$inet(r3, &(0x7f0000000040)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x35}}, 0x10, &(0x7f00000004c0)=[{&(0x7f00000000c0)="08001eb3b0335d00", 0x8}, {&(0x7f00000007c0)="9401f2dcdd8248dc8203433a75faf9e247de51863f68b4067b1265055a31798a25b6c794823d1146ddff85ecc4189aae5d24d393486dc06931b2df1f0cc1b24933c5a76edd3e703c853e7912119f812956e1e68abb024460e2a2796e056d68dd77d119909730a321d2a355e2176f93ba62b1d638b94a9b18bd28eaf3a2159eb40d5d0debbd36469b6d47682ebc2b7bf035a27593527b825e9cbeb5b30a00ef7cb966711e0358bae67fd9bedff38ae9476611c723087def5a01ddb71837", 0xbd}, {&(0x7f0000000680)="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", 0x111}, {&(0x7f00000001c0)="70c3feec9815cf533b988bb6f05f53831425c8237c4e3b446d4029e1eb5fa04fbc13", 0x22}], 0x4, 0x0, 0x0, 0xe0000000}, 0x8004) 1m59.023133805s ago: executing program 3 (id=1438): socket$inet6_tcp(0xa, 0x1, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r1}, 0x10) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x1, 0x803, 0x0) pipe(&(0x7f0000000100)) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x58}}, 0x0) 1m58.094550449s ago: executing program 3 (id=1441): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @multicast1}, 0x2}}, 0x2e) r2 = socket$pppl2tp(0x18, 0x1, 0x1) socket$nl_sock_diag(0x10, 0x3, 0x4) bpf$MAP_CREATE(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r6}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x8, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x3a) r7 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r7, 0x0, 0x0) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x88001, 0x0) ioctl$TCSBRKP(r8, 0x5425, 0x5) 1m56.620475816s ago: executing program 3 (id=1449): prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) socket$nl_generic(0x10, 0x3, 0x10) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5dc77000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYBLOB, @ANYRES32=0x0], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TCFLSH(r4, 0x400455c8, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 1m41.594730435s ago: executing program 32 (id=1449): prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) socket$nl_generic(0x10, 0x3, 0x10) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5dc77000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYBLOB, @ANYRES32=0x0], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TCFLSH(r4, 0x400455c8, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 18.837018006s ago: executing program 0 (id=1650): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) r3 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0) symlinkat(&(0x7f0000000040)='./file0\x00', r3, &(0x7f0000000080)='./file0\x00') 18.609473377s ago: executing program 0 (id=1651): sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000c00)={0x0, 0x0, 0x0}, 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x15, 0xfd3649826d894c67, 0x0, 0x20000, {{@in6=@local, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}}}, 0xb8}}, 0x0) 16.678585535s ago: executing program 5 (id=1657): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @multicast1}, 0x2}}, 0x2e) r2 = socket$pppl2tp(0x18, 0x1, 0x1) socket$nl_sock_diag(0x10, 0x3, 0x4) bpf$MAP_CREATE(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000fff07006706000020000000170200000ee60000bf050000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffad35010000000000840400000000000014000000000000009500000000000000db13d5d8b741f2cdaabc83df03395287fd51a700ea6553f304000000815dcf00c3eebc52267b042d196bde7c382d21ff79a8583a7482c5994747e19325b1ee980cbd800d845dac"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x8, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x3a) r7 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r7, 0x0, 0x0) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x88001, 0x0) ioctl$TCSBRKP(r8, 0x5425, 0x5) 15.37097705s ago: executing program 5 (id=1659): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @multicast1}, 0x2}}, 0x2e) r2 = socket$pppl2tp(0x18, 0x1, 0x1) socket$nl_sock_diag(0x10, 0x3, 0x4) bpf$MAP_CREATE(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000fff07006706000020000000170200000ee60000bf050000000000002d350000000000006507000002080000070700004c0000001f75000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x8, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x3a) r7 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r7, 0x0, 0x0) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x88001, 0x0) ioctl$TCSBRKP(r8, 0x5425, 0x5) 11.139057257s ago: executing program 2 (id=1663): mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@nfs_export_on}], [], 0x2c}) 11.005681467s ago: executing program 2 (id=1664): ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c000280050001000000000008000740000000"], 0x64}}, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000790000ff000000000000ea0485"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = socket$unix(0x1, 0x1, 0x0) bind$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) getgroups(0x1, &(0x7f0000000000)=[0x0]) listen(r2, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) connect$unix(r3, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) connect$unix(r2, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 10.964957697s ago: executing program 4 (id=1665): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0xc) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@nfs_export_on}], [], 0x2c}) 10.840419868s ago: executing program 1 (id=1666): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000800)={0x20, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x4}]}, 0x20}}, 0x0) 10.748826038s ago: executing program 1 (id=1667): r0 = inotify_init1(0x0) inotify_add_watch(r0, 0x0, 0x4000000e) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) r4 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0) write$FUSE_CREATE_OPEN(r4, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x4, 0x1, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0) sendfile(r4, r4, &(0x7f0000000080), 0x7f03) 10.633214468s ago: executing program 0 (id=1668): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000340)={0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) 9.590182433s ago: executing program 5 (id=1670): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x87}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 9.563029382s ago: executing program 4 (id=1671): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$inet(0x2, 0x4000000000000001, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e00", @ANYRES32], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00') readv(r3, &(0x7f00000009c0)=[{&(0x7f0000000300)=""/198, 0xc6}, {&(0x7f00000004c0)=""/253, 0xfd}, {&(0x7f0000000840)=""/247, 0xf7}, {&(0x7f0000001940)=""/4096, 0x1000}, {0x0}, {&(0x7f0000000940)=""/125, 0x7d}], 0x6) 9.197920114s ago: executing program 2 (id=1672): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000280)={'batadv0\x00', 0x0}) sendmsg$nl_route(r3, &(0x7f0000001600)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000400)={&(0x7f0000001540)=@ipv6_getaddrlabel={0x8c, 0x4a, 0x300, 0x70bd2a, 0x25dfdbff, {0xa, 0x0, 0x1f, 0x0, r4, 0xab68}, [@IFAL_ADDRESS={0x14, 0x1, @mcast1}, @IFAL_ADDRESS={0x14, 0x1, @dev={0xfe, 0x80, '\x00', 0x35}}, @IFAL_LABEL={0x8, 0x2, 0x5}, @IFAL_ADDRESS={0x14, 0x1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @IFAL_ADDRESS={0x14, 0x1, @mcast1}, @IFAL_LABEL={0x8, 0x2, 0x1}, @IFAL_LABEL={0x8, 0x2, 0x3}, @IFAL_LABEL={0x8, 0x2, 0xc}]}, 0x8c}, 0x1, 0x0, 0x0, 0xc040}, 0x4000015) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan1\x00', 0x0}) r6 = socket$pppoe(0x18, 0x1, 0x0) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10) close(r6) r9 = accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @empty}, &(0x7f0000000040)=0x10) setsockopt$inet_opts(r9, 0x0, 0x9, &(0x7f0000000440)="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", 0xffe) r10 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$NL80211_CMD_TDLS_OPER(r10, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000980)={0x20, r11, 0x1, 0x0, 0x0, {{0x8}, {@void, @val={0xc, 0x99, {0x1}}}}}, 0x20}}, 0x0) r12 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000240)={'wlan1\x00'}) r13 = socket(0x8000000010, 0x2, 0x0) bind$packet(r13, &(0x7f00000000c0)={0x11, 0x9, 0x0, 0x1, 0x1, 0x6, @link_local}, 0x14) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_TDLS_OPER(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000800000008000300", @ANYRES32=r5, @ANYRESDEC=r10, @ANYRES64=r10], 0x30}, 0x1, 0x0, 0x0, 0x40880}, 0x0) 8.897769465s ago: executing program 1 (id=1673): sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000c00)={0x0, 0x0, 0x0}, 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x15, 0xfd3649826d894c67, 0x0, 0x20000, {{@in6=@local, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}}}, 0xb8}}, 0x0) 7.591828091s ago: executing program 4 (id=1674): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$inet(0x2, 0x4000000000000001, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e00", @ANYRES32], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00') readv(r3, &(0x7f00000009c0)=[{&(0x7f0000000300)=""/198, 0xc6}, {&(0x7f00000004c0)=""/253, 0xfd}, {&(0x7f0000000840)=""/247, 0xf7}, {&(0x7f0000001940)=""/4096, 0x1000}, {0x0}, {&(0x7f0000000940)=""/125, 0x7d}], 0x6) 5.844603107s ago: executing program 1 (id=1675): prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) socket$nl_generic(0x10, 0x3, 0x10) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5dc77000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYBLOB, @ANYRES32=0x0], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 5.838040147s ago: executing program 4 (id=1676): mkdirat(0xffffffffffffff9c, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@nfs_export_on}], [], 0x2c}) 5.789630007s ago: executing program 2 (id=1677): sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000c00)={0x0, 0x0, 0x0}, 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x15, 0xfd3649826d894c67, 0x0, 0x20000, {{@in6=@local, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}}}, 0xb8}}, 0x0) 5.776050777s ago: executing program 5 (id=1678): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000800)={0x20, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x4}]}, 0x20}}, 0x0) 5.628622838s ago: executing program 5 (id=1679): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000300)='./bus\x00', 0x1008002, &(0x7f0000000c40)={[{@test_dummy_encryption_v1}, {@delalloc}, {@noblock_validity}, {@debug}, {@test_dummy_encryption}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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") pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) r5 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0) symlinkat(&(0x7f0000000040)='./file0\x00', r5, &(0x7f0000000080)='./file0\x00') 5.628153078s ago: executing program 4 (id=1680): socket$inet_udplite(0x2, 0x2, 0x88) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x800, &(0x7f0000000100)=ANY=[], 0x1, 0x155d, &(0x7f0000003380)="$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") bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, 0x0) r1 = syz_open_dev$evdev(&(0x7f00000002c0), 0x200, 0x0) ioctl$EVIOCSCLOCKID(r1, 0x400445a0, &(0x7f0000000300)=0x2) r2 = syz_open_pts(r0, 0x141601) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={0x0, r3}, 0x18) r4 = socket(0x10, 0x3, 0x9) sendmsg$TIPC_CMD_GET_MAX_PORTS(r4, &(0x7f0000000b00)={&(0x7f0000000a00), 0xc, 0x0}, 0x1) r5 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r5}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) write(r2, &(0x7f0000000000)="d5", 0xfffffedf) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0xfffffffc, 0x0, 0x0, "682341f2fd71a6a76177920ea7e60c0ac7a4a5"}) 5.355604869s ago: executing program 0 (id=1681): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0xc) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@nfs_export_on}], [], 0x2c}) 4.414537743s ago: executing program 2 (id=1682): ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c000280050001000000000008000740000000"], 0x64}}, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000790000ff000000000000ea0485"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = socket$unix(0x1, 0x1, 0x0) bind$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) getgroups(0x1, &(0x7f0000000000)=[0x0]) listen(r2, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) connect$unix(r3, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) connect$unix(r2, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 3.328370217s ago: executing program 0 (id=1683): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x87}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 3.112806708s ago: executing program 2 (id=1684): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$inet(0x2, 0x4000000000000001, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e00", @ANYRES32], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00') readv(r3, &(0x7f00000009c0)=[{&(0x7f0000000300)=""/198, 0xc6}, {&(0x7f00000004c0)=""/253, 0xfd}, {&(0x7f0000000840)=""/247, 0xf7}, {&(0x7f0000001940)=""/4096, 0x1000}, {0x0}, {&(0x7f0000000940)=""/125, 0x7d}], 0x6) 1.890524383s ago: executing program 0 (id=1685): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYRESOCT, @ANYRES16=r0, @ANYRES8=r0, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r4 = dup(0xffffffffffffffff) sendmsg$inet(r4, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600), 0x0, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}, @ip_retopts={{0x18, 0x0, 0x7, {[@timestamp={0x44, 0x4, 0x73}, @noop]}}}], 0x38}, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800e0001007769726567756172640000000400028008000a00b8"], 0x40}}, 0x0) 1.884532963s ago: executing program 5 (id=1686): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x87}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 1.883961313s ago: executing program 4 (id=1687): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$inet(0x2, 0x4000000000000001, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e0000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00') readv(r3, &(0x7f00000009c0)=[{&(0x7f0000000300)=""/198, 0xc6}, {&(0x7f00000004c0)=""/253, 0xfd}, {&(0x7f0000000840)=""/247, 0xf7}, {&(0x7f0000001940)=""/4096, 0x1000}, {0x0}, {&(0x7f0000000940)=""/125, 0x7d}], 0x6) 1.879544123s ago: executing program 1 (id=1688): sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000c00)={0x0, 0x0, 0x0}, 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) pipe2$watch_queue(&(0x7f0000000240), 0x80) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x15, 0xfd3649826d894c67, 0x0, 0x20000, {{@in6=@local, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}}}, 0xb8}}, 0x0) 0s ago: executing program 1 (id=1689): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x87}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): attributes in process `syz.2.460'. [ 205.051350][ T5900] loop2: detected capacity change from 0 to 4096 [ 205.624468][ T5915] device ip6tnl0 entered promiscuous mode [ 205.640568][ T5915] device vlan2 entered promiscuous mode [ 205.658160][ T5915] device ip6tnl0 left promiscuous mode [ 206.316532][ T5931] device ip6tnl0 entered promiscuous mode [ 206.322331][ T5931] device vlan2 entered promiscuous mode [ 206.387677][ T5931] device ip6tnl0 left promiscuous mode [ 207.524965][ T5953] netlink: 28 bytes leftover after parsing attributes in process `syz.0.472'. [ 207.593790][ T5954] netlink: 'syz.4.474': attribute type 29 has an invalid length. [ 207.634284][ T5954] netlink: 'syz.4.474': attribute type 29 has an invalid length. [ 207.883568][ T5959] device ip6tnl0 entered promiscuous mode [ 207.889359][ T5959] device vlan2 entered promiscuous mode [ 207.897668][ T5961] netlink: 20 bytes leftover after parsing attributes in process `syz.0.476'. [ 207.936653][ T5959] device ip6tnl0 left promiscuous mode [ 208.456580][ T5967] overlayfs: missing 'lowerdir' [ 208.486374][ T5967] fuse: Unknown parameter './file0' [ 211.752642][ T5996] netlink: 28 bytes leftover after parsing attributes in process `syz.3.486'. [ 213.036220][ T6002] loop4: detected capacity change from 0 to 256 [ 213.113021][ T6002] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 213.141856][ T6002] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 213.203444][ T6002] exFAT-fs (loop4): invalid boot region [ 213.236129][ T6002] exFAT-fs (loop4): failed to recognize exfat type [ 213.263293][ T6008] device ip6tnl0 entered promiscuous mode [ 213.287286][ T6008] device vlan2 entered promiscuous mode [ 214.203553][ T6008] device ip6tnl0 left promiscuous mode [ 215.083927][ T6022] overlayfs: missing 'lowerdir' [ 216.015995][ T6034] device ip6tnl0 entered promiscuous mode [ 216.022305][ T6034] device vlan2 entered promiscuous mode [ 216.038372][ T6034] device ip6tnl0 left promiscuous mode [ 217.091402][ T6042] netlink: 'syz.2.499': attribute type 29 has an invalid length. [ 217.103395][ T6042] netlink: 'syz.2.499': attribute type 29 has an invalid length. [ 217.198960][ T6044] netlink: 28 bytes leftover after parsing attributes in process `syz.3.500'. [ 219.042546][ T6057] loop0: detected capacity change from 0 to 512 [ 219.185566][ T6057] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 219.289949][ T6057] EXT4-fs (loop0): 1 truncate cleaned up [ 219.303378][ T6057] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 221.272933][ T6088] device ip6tnl0 entered promiscuous mode [ 221.303361][ T6088] device vlan2 entered promiscuous mode [ 221.327083][ T6088] device ip6tnl0 left promiscuous mode [ 221.961293][ T6096] netlink: 28 bytes leftover after parsing attributes in process `syz.2.513'. [ 222.824779][ T6103] loop4: detected capacity change from 0 to 512 [ 222.991890][ T6103] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 223.010443][ T6103] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 225.445526][ T6122] overlayfs: failed to resolve './file0': -2 [ 225.540319][ T6126] loop0: detected capacity change from 0 to 512 [ 225.740182][ T6126] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 225.975127][ T6126] EXT4-fs (loop0): 1 truncate cleaned up [ 225.996109][ T6126] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 226.530855][ T6140] netlink: 28 bytes leftover after parsing attributes in process `syz.2.524'. [ 227.745186][ T6135] loop3: detected capacity change from 0 to 4096 [ 228.795914][ T6144] loop1: detected capacity change from 0 to 256 [ 228.843962][ T6144] exFAT-fs (loop1): Invalid exboot-signature(sector = 7): 0xaa00006c [ 228.978640][ T6144] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 229.031829][ T6144] exFAT-fs (loop1): invalid boot region [ 229.043172][ T6144] exFAT-fs (loop1): failed to recognize exfat type [ 230.662836][ T6153] loop2: detected capacity change from 0 to 512 [ 232.508384][ T6153] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 232.710680][ T6153] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 234.982700][ T6182] loop3: detected capacity change from 0 to 512 [ 235.151611][ T6182] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 235.191378][ T6182] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 237.097954][ T6204] netlink: 28 bytes leftover after parsing attributes in process `syz.1.539'. [ 237.748274][ T6208] loop2: detected capacity change from 0 to 256 [ 237.818238][ T6209] loop4: detected capacity change from 0 to 512 [ 237.881887][ T6208] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 237.952041][ T6209] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 237.964690][ T6208] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 238.030673][ T6209] EXT4-fs (loop4): 1 truncate cleaned up [ 238.076631][ T6208] exFAT-fs (loop2): invalid boot region [ 238.082377][ T6208] exFAT-fs (loop2): failed to recognize exfat type [ 238.133708][ T6209] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 239.700997][ T6225] device ip6gre0 entered promiscuous mode [ 239.734561][ T6225] device vlan2 entered promiscuous mode [ 239.742452][ T6225] device ip6gre0 left promiscuous mode [ 242.036074][ T6245] netlink: 28 bytes leftover after parsing attributes in process `syz.2.551'. [ 242.085897][ T6245] netlink: 28 bytes leftover after parsing attributes in process `syz.2.551'. [ 243.595912][ T6259] netlink: 28 bytes leftover after parsing attributes in process `syz.1.554'. [ 245.786522][ T6266] loop1: detected capacity change from 0 to 256 [ 245.849476][ T6266] exFAT-fs (loop1): Invalid exboot-signature(sector = 7): 0xaa00006c [ 245.884443][ T6266] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 245.991231][ T6266] exFAT-fs (loop1): invalid boot region [ 246.180657][ T6266] exFAT-fs (loop1): failed to recognize exfat type [ 248.281509][ T6282] loop0: detected capacity change from 0 to 512 [ 248.487068][ T6282] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 248.561852][ T6282] ext4 filesystem being mounted at /104/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 253.864986][ T6319] device ip6gre0 entered promiscuous mode [ 253.891267][ T6319] device vlan2 entered promiscuous mode [ 253.942001][ T6319] device ip6gre0 left promiscuous mode [ 254.288772][ T6327] device ip6gre0 entered promiscuous mode [ 254.315372][ T6327] device vlan2 entered promiscuous mode [ 254.336848][ T6327] device ip6gre0 left promiscuous mode [ 255.501689][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.508080][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.721867][ T6344] netlink: 28 bytes leftover after parsing attributes in process `syz.0.575'. [ 255.924103][ T6344] netlink: 28 bytes leftover after parsing attributes in process `syz.0.575'. [ 258.077142][ T6344] device team0 entered promiscuous mode [ 258.082739][ T6344] device team_slave_0 entered promiscuous mode [ 258.094955][ T6344] device team_slave_1 entered promiscuous mode [ 258.113063][ T6344] device team0 left promiscuous mode [ 258.119609][ T6344] device team_slave_0 left promiscuous mode [ 258.130868][ T6344] device team_slave_1 left promiscuous mode [ 259.409885][ T6357] loop3: detected capacity change from 0 to 512 [ 259.801176][ T6370] netlink: 28 bytes leftover after parsing attributes in process `syz.1.584'. [ 260.149088][ T6357] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 260.206232][ T6357] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 262.646936][ T6390] loop2: detected capacity change from 0 to 4096 [ 264.362406][ T6396] netlink: 28 bytes leftover after parsing attributes in process `syz.2.591'. [ 264.479106][ T6396] netlink: 28 bytes leftover after parsing attributes in process `syz.2.591'. [ 264.946028][ T6405] loop3: detected capacity change from 0 to 512 [ 265.310521][ T6405] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 265.383858][ T6405] ext4 filesystem being mounted at /139/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 271.142809][ T6467] loop3: detected capacity change from 0 to 256 [ 271.274559][ T6467] exFAT-fs (loop3): Invalid exboot-signature(sector = 7): 0xaa00006c [ 271.287186][ T6467] exFAT-fs (loop3): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 271.323487][ T6467] exFAT-fs (loop3): invalid boot region [ 271.329071][ T6467] exFAT-fs (loop3): failed to recognize exfat type [ 271.330093][ T6471] loop1: detected capacity change from 0 to 512 [ 271.416319][ T6472] loop4: detected capacity change from 0 to 4096 [ 271.451367][ T6471] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 271.540344][ T6471] EXT4-fs (loop1): 1 truncate cleaned up [ 271.577971][ T6471] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 277.215299][ T6513] usb usb7: usbfs: process 6513 (syz.0.621) did not claim interface 0 before use [ 277.418726][ T6513] loop0: detected capacity change from 0 to 512 [ 277.660024][ T6524] loop2: detected capacity change from 0 to 256 [ 277.749496][ T6524] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 277.764842][ T6513] EXT4-fs error (device loop0): ext4_orphan_get:1401: inode #16: comm syz.0.621: casefold flag without casefold feature [ 277.798022][ T6513] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.621: couldn't read orphan inode 16 (err -117) [ 277.819369][ T6524] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 277.994939][ T6524] exFAT-fs (loop2): invalid boot region [ 278.041417][ T6513] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 278.122587][ T6524] exFAT-fs (loop2): failed to recognize exfat type [ 278.239876][ T6530] loop3: detected capacity change from 0 to 512 [ 278.272040][ T6513] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 278.581661][ T6530] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 278.611648][ T6530] ext4 filesystem being mounted at /147/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 278.623678][ T26] audit: type=1326 audit(1731176911.048:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.0.621" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3fd9294719 code=0x0 [ 278.680323][ T6527] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 64: padding at end of block bitmap is not set [ 278.807882][ T6536] device sit0 entered promiscuous mode [ 278.819726][ T6536] device vlan2 entered promiscuous mode [ 278.847589][ T6536] device sit0 left promiscuous mode [ 284.702470][ T6580] loop3: detected capacity change from 0 to 512 [ 284.981690][ T6585] device ip6tnl0 entered promiscuous mode [ 284.996423][ T6580] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #16: comm syz.3.638: casefold flag without casefold feature [ 285.050052][ T6585] device vlan2 entered promiscuous mode [ 285.057243][ T6580] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.638: couldn't read orphan inode 16 (err -117) [ 285.076618][ T6585] device ip6tnl0 left promiscuous mode [ 285.088173][ T6580] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 285.159996][ T6580] ext4 filesystem being mounted at /150/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 285.191842][ T6589] device sit0 entered promiscuous mode [ 285.218414][ T6589] device vlan2 entered promiscuous mode [ 285.239720][ T6589] device sit0 left promiscuous mode [ 285.268661][ T26] audit: type=1326 audit(1731176917.708:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6575 comm="syz.3.638" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff375e06719 code=0x0 [ 285.570623][ T6594] loop0: detected capacity change from 0 to 512 [ 285.713854][ T6594] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 285.725241][ T6594] ext4 filesystem being mounted at /119/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 291.606153][ T6632] overlayfs: failed to resolve './file0': -2 [ 292.553295][ T6637] loop4: detected capacity change from 0 to 512 [ 292.584518][ T6640] device sit0 entered promiscuous mode [ 292.598975][ T6640] device vlan2 entered promiscuous mode [ 292.624903][ T6640] device sit0 left promiscuous mode [ 292.837602][ T6637] EXT4-fs error (device loop4): ext4_orphan_get:1401: inode #16: comm syz.4.654: casefold flag without casefold feature [ 293.743473][ T6637] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.654: couldn't read orphan inode 16 (err -117) [ 293.872577][ T6637] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 294.049678][ T6637] ext4 filesystem being mounted at /131/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 295.618430][ T6648] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 64: padding at end of block bitmap is not set [ 298.215261][ T6681] loop3: detected capacity change from 0 to 512 [ 299.074997][ T6684] fuse: Unknown parameter './file0' [ 299.487752][ T6681] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 299.526260][ T6681] ext4 filesystem being mounted at /158/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 302.453892][ T6703] device ip6_vti0 entered promiscuous mode [ 302.462144][ T6703] device vlan2 entered promiscuous mode [ 302.504837][ T6703] device ip6_vti0 left promiscuous mode [ 303.136599][ T6707] device ip6tnl0 entered promiscuous mode [ 303.162441][ T6707] device vlan2 entered promiscuous mode [ 303.199148][ T6707] device ip6tnl0 left promiscuous mode [ 303.215574][ T6711] netlink: 20 bytes leftover after parsing attributes in process `syz.4.675'. [ 305.055973][ T6730] loop4: detected capacity change from 0 to 512 [ 305.159461][ T6730] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 305.188316][ T6730] EXT4-fs (loop4): 1 truncate cleaned up [ 305.326250][ T6735] fuse: Unknown parameter './file0' [ 305.850169][ T6730] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 306.164602][ T6738] netlink: 28 bytes leftover after parsing attributes in process `syz.3.682'. [ 306.174172][ T6738] netlink: 28 bytes leftover after parsing attributes in process `syz.3.682'. [ 308.366487][ T6751] loop3: detected capacity change from 0 to 512 [ 308.401485][ T6748] loop1: detected capacity change from 0 to 4096 [ 308.585681][ T6751] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #16: comm syz.3.687: casefold flag without casefold feature [ 308.757907][ T6751] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.687: couldn't read orphan inode 16 (err -117) [ 308.961239][ T6751] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 309.283026][ T6751] ext4 filesystem being mounted at /162/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 309.432461][ T26] audit: type=1326 audit(1731176941.868:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6750 comm="syz.3.687" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff375e06719 code=0x0 [ 309.471472][ T6762] loop4: detected capacity change from 0 to 256 [ 309.511321][ T6759] device ip6_vti0 entered promiscuous mode [ 309.542793][ T6762] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 309.570029][ T6759] device vlan2 entered promiscuous mode [ 309.611922][ T6762] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 309.612891][ T6759] device ip6_vti0 left promiscuous mode [ 309.630307][ T6762] exFAT-fs (loop4): invalid boot region [ 309.642798][ T6762] exFAT-fs (loop4): failed to recognize exfat type [ 312.787324][ T6787] fuse: Unknown parameter './file0' [ 313.525497][ T6799] loop2: detected capacity change from 0 to 512 [ 314.028582][ T6799] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #16: comm syz.2.700: casefold flag without casefold feature [ 314.146858][ T6799] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.700: couldn't read orphan inode 16 (err -117) [ 314.301820][ T6799] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 314.427962][ T6799] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 314.529779][ T6809] device ip6tnl0 entered promiscuous mode [ 314.596874][ T6809] device vlan2 entered promiscuous mode [ 314.610247][ T26] audit: type=1326 audit(1731176947.048:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6798 comm="syz.2.700" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x0 [ 314.745977][ T6809] device ip6tnl0 left promiscuous mode [ 315.121826][ T6817] loop2: detected capacity change from 0 to 256 [ 315.208894][ T6817] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 315.307619][ T6817] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 315.383219][ T6817] exFAT-fs (loop2): invalid boot region [ 315.399230][ T6817] exFAT-fs (loop2): failed to recognize exfat type [ 315.501132][ T6823] device ip6_vti0 entered promiscuous mode [ 315.540048][ T6823] device vlan2 entered promiscuous mode [ 315.558648][ T6823] device ip6_vti0 left promiscuous mode [ 316.205756][ T6835] loop0: detected capacity change from 0 to 512 [ 318.163616][ T6845] fuse: Unknown parameter './file0' [ 318.849936][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 318.850073][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.940482][ T6835] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 319.065825][ T6835] EXT4-fs (loop0): 1 truncate cleaned up [ 319.066256][ T6835] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 319.412869][ T6855] netlink: 20 bytes leftover after parsing attributes in process `syz.1.717'. [ 319.461197][ T6857] loop4: detected capacity change from 0 to 512 [ 319.579223][ T6857] EXT4-fs error (device loop4): ext4_orphan_get:1401: inode #16: comm syz.4.714: casefold flag without casefold feature [ 319.592632][ T6857] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.714: couldn't read orphan inode 16 (err -117) [ 319.606953][ T6857] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 319.734544][ T6857] ext4 filesystem being mounted at /143/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 319.961159][ T6862] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 64: padding at end of block bitmap is not set [ 320.463505][ T26] audit: type=1326 audit(1731176952.878:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6856 comm="syz.4.714" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efe53b22719 code=0x0 [ 320.979049][ T6876] netlink: 28 bytes leftover after parsing attributes in process `syz.1.722'. [ 321.156748][ T6876] netlink: 28 bytes leftover after parsing attributes in process `syz.1.722'. [ 321.234501][ T6882] loop4: detected capacity change from 0 to 256 [ 321.269728][ T6876] device team0 entered promiscuous mode [ 321.296126][ T6876] device team_slave_0 entered promiscuous mode [ 321.307463][ T6876] device team_slave_1 entered promiscuous mode [ 321.383837][ T6882] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 321.426354][ T6876] device team0 left promiscuous mode [ 321.431680][ T6876] device team_slave_0 left promiscuous mode [ 321.437467][ T6882] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 321.470226][ T6882] exFAT-fs (loop4): invalid boot region [ 321.482571][ T6882] exFAT-fs (loop4): failed to recognize exfat type [ 321.490247][ T6876] device team_slave_1 left promiscuous mode [ 321.773323][ T6893] fuse: Unknown parameter './file0' [ 322.320567][ T6898] loop2: detected capacity change from 0 to 512 [ 322.482692][ T6898] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 322.632391][ T6898] EXT4-fs (loop2): 1 truncate cleaned up [ 322.643430][ T6898] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 325.977622][ T6915] loop1: detected capacity change from 0 to 512 [ 326.259194][ T6915] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #16: comm syz.1.731: casefold flag without casefold feature [ 327.411061][ T6915] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.731: couldn't read orphan inode 16 (err -117) [ 327.505500][ T6915] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 327.573667][ T6915] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 327.725609][ T26] audit: type=1326 audit(1731176960.168:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6914 comm="syz.1.731" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 327.773676][ T6933] loop0: detected capacity change from 0 to 4096 [ 328.823298][ T6927] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 64: padding at end of block bitmap is not set [ 329.165745][ T6944] loop2: detected capacity change from 0 to 256 [ 330.863418][ T6952] fuse: Unknown parameter './file0' [ 331.339748][ T6944] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 331.355463][ T6944] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 331.379022][ T6956] loop3: detected capacity change from 0 to 512 [ 331.407493][ T6944] exFAT-fs (loop2): invalid boot region [ 331.413221][ T6944] exFAT-fs (loop2): failed to recognize exfat type [ 331.646834][ T6956] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 332.972979][ T6956] EXT4-fs (loop3): 1 truncate cleaned up [ 332.992547][ T6956] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 339.418758][ T7015] fuse: Unknown parameter './file0' [ 341.230009][ T7025] loop3: detected capacity change from 0 to 512 [ 341.428395][ T7023] device ip6_vti0 entered promiscuous mode [ 341.443241][ T7023] device vlan2 entered promiscuous mode [ 341.449655][ T7025] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 341.572650][ T7023] device ip6_vti0 left promiscuous mode [ 342.321663][ T7025] EXT4-fs (loop3): 1 truncate cleaned up [ 342.333330][ T7025] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 344.681186][ T7038] netlink: 20 bytes leftover after parsing attributes in process `syz.0.763'. [ 345.150749][ T7049] loop1: detected capacity change from 0 to 256 [ 345.434587][ T7049] exFAT-fs (loop1): Invalid exboot-signature(sector = 7): 0xaa00006c [ 346.983411][ T7061] fuse: Unknown parameter './file0' [ 347.294351][ T7049] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 347.357475][ T7049] exFAT-fs (loop1): invalid boot region [ 347.363057][ T7049] exFAT-fs (loop1): failed to recognize exfat type [ 347.720070][ T7069] netlink: 28 bytes leftover after parsing attributes in process `syz.4.772'. [ 347.743158][ T7069] netlink: 28 bytes leftover after parsing attributes in process `syz.4.772'. [ 347.907379][ T7078] netlink: 24 bytes leftover after parsing attributes in process `syz.2.773'. [ 348.299934][ T7083] loop4: detected capacity change from 0 to 512 [ 348.680425][ T7083] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 350.850923][ T7083] EXT4-fs (loop4): 1 truncate cleaned up [ 350.886565][ T7083] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 353.406444][ T7108] netlink: 28 bytes leftover after parsing attributes in process `syz.0.782'. [ 353.452810][ T7108] netlink: 28 bytes leftover after parsing attributes in process `syz.0.782'. [ 353.516575][ T7108] device dummy0 entered promiscuous mode [ 353.604226][ T7108] device bond0 entered promiscuous mode [ 353.613836][ T7108] device bond_slave_0 entered promiscuous mode [ 353.662960][ T7108] device bond_slave_1 entered promiscuous mode [ 353.720062][ T7108] debugfs: Directory 'hsr1' with parent 'hsr' already present! [ 353.728056][ T7108] Cannot create hsr debugfs directory [ 353.734750][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): hsr1: link becomes ready [ 353.744455][ T7119] netlink: 28 bytes leftover after parsing attributes in process `syz.4.785'. [ 353.754235][ T7119] netlink: 28 bytes leftover after parsing attributes in process `syz.4.785'. [ 354.880639][ T7128] loop4: detected capacity change from 0 to 256 [ 355.106203][ T7132] overlayfs: missing 'lowerdir' [ 357.453793][ T7128] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 357.542835][ T7128] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 357.612345][ T7128] exFAT-fs (loop4): invalid boot region [ 357.630069][ T7141] device ip6_vti0 entered promiscuous mode [ 357.633242][ T7128] exFAT-fs (loop4): failed to recognize exfat type [ 357.645626][ T7141] device vlan2 entered promiscuous mode [ 357.653928][ T7141] device ip6_vti0 left promiscuous mode [ 358.798950][ T7155] loop4: detected capacity change from 0 to 512 [ 358.995796][ T7155] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 359.383466][ T7155] EXT4-fs (loop4): 1 truncate cleaned up [ 359.790953][ T7155] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 365.155355][ T7197] netlink: 28 bytes leftover after parsing attributes in process `syz.2.804'. [ 365.223376][ T7197] netlink: 28 bytes leftover after parsing attributes in process `syz.2.804'. [ 367.712372][ T7218] device ip6tnl0 entered promiscuous mode [ 367.718829][ T7218] device vlan2 entered promiscuous mode [ 367.756971][ T7218] device ip6tnl0 left promiscuous mode [ 369.788497][ T7234] loop3: detected capacity change from 0 to 512 [ 369.885930][ T7238] Zero length message leads to an empty skb [ 369.937495][ T26] audit: type=1326 audit(1731177002.378:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7227 comm="syz.4.815" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efe53b22719 code=0x0 [ 369.979473][ T7234] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #16: comm syz.3.816: casefold flag without casefold feature [ 370.168653][ T7234] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.816: couldn't read orphan inode 16 (err -117) [ 370.190356][ T7234] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 371.046147][ T7234] ext4 filesystem being mounted at /186/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 371.070750][ T7245] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 64: padding at end of block bitmap is not set [ 371.105451][ T7254] netlink: 28 bytes leftover after parsing attributes in process `syz.1.820'. [ 371.116655][ T7254] netlink: 28 bytes leftover after parsing attributes in process `syz.1.820'. [ 371.135159][ T26] audit: type=1326 audit(1731177003.578:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7233 comm="syz.3.816" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff375e06719 code=0x0 [ 371.191531][ T7254] device erspan0 entered promiscuous mode [ 371.229521][ T7254] device erspan0 left promiscuous mode [ 376.472554][ T26] audit: type=1326 audit(1731177008.878:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7294 comm="syz.1.832" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 376.589072][ T7304] netlink: 20 bytes leftover after parsing attributes in process `syz.0.833'. [ 376.929939][ T7310] device ip6_vti0 entered promiscuous mode [ 376.947407][ T7310] device vlan2 entered promiscuous mode [ 376.956808][ T7308] loop3: detected capacity change from 0 to 512 [ 376.998348][ T7310] device ip6_vti0 left promiscuous mode [ 377.025569][ T7312] loop2: detected capacity change from 0 to 512 [ 377.083309][ T7312] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 377.142178][ T7312] EXT4-fs (loop2): 1 truncate cleaned up [ 377.152249][ T7308] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #16: comm syz.3.834: casefold flag without casefold feature [ 377.186056][ T7312] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 377.190814][ T7308] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.834: couldn't read orphan inode 16 (err -117) [ 377.448988][ T7308] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 377.977537][ T7308] ext4 filesystem being mounted at /189/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 378.593273][ T26] audit: type=1326 audit(1731177011.018:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7307 comm="syz.3.834" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff375e06719 code=0x0 [ 379.056279][ T7339] overlayfs: missing 'lowerdir' [ 382.966257][ T7364] device ip6tnl0 entered promiscuous mode [ 382.972042][ T7364] device vlan2 entered promiscuous mode [ 383.016722][ T7364] device ip6tnl0 left promiscuous mode [ 383.042481][ T26] audit: type=1326 audit(1731177015.478:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7365 comm="syz.4.851" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efe53b22719 code=0x0 [ 383.247914][ T7371] netlink: 28 bytes leftover after parsing attributes in process `syz.0.852'. [ 383.273555][ T7371] netlink: 28 bytes leftover after parsing attributes in process `syz.0.852'. [ 383.503586][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.509909][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 383.516878][ T7374] loop3: detected capacity change from 0 to 512 [ 383.616010][ T7375] device ip6tnl0 entered promiscuous mode [ 383.643320][ T7375] device vlan2 entered promiscuous mode [ 383.663613][ T7375] device ip6tnl0 left promiscuous mode [ 383.672579][ T7374] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 383.700226][ T7374] EXT4-fs (loop3): 1 truncate cleaned up [ 383.713237][ T7374] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 384.875284][ T7388] overlayfs: missing 'lowerdir' [ 385.954420][ T7395] netlink: 20 bytes leftover after parsing attributes in process `syz.2.859'. [ 386.067724][ T7402] device ip6tnl0 entered promiscuous mode [ 386.073683][ T7402] device vlan2 entered promiscuous mode [ 386.081981][ T7402] device ip6tnl0 left promiscuous mode [ 386.165387][ T7404] loop3: detected capacity change from 0 to 256 [ 386.239649][ T7404] exFAT-fs (loop3): Invalid exboot-signature(sector = 7): 0xaa00006c [ 386.303644][ T7404] exFAT-fs (loop3): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 386.378580][ T7404] exFAT-fs (loop3): invalid boot region [ 386.410897][ T7404] exFAT-fs (loop3): failed to recognize exfat type [ 386.791167][ T7417] netlink: 'syz.1.864': attribute type 29 has an invalid length. [ 386.893553][ T7417] netlink: 'syz.1.864': attribute type 29 has an invalid length. [ 387.795880][ T7423] device ip6tnl0 entered promiscuous mode [ 387.808825][ T7425] loop1: detected capacity change from 0 to 512 [ 387.818367][ T7423] device vlan2 entered promiscuous mode [ 387.859659][ T7423] device ip6tnl0 left promiscuous mode [ 387.867977][ T7425] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 388.036078][ T7425] EXT4-fs (loop1): 1 truncate cleaned up [ 388.041772][ T7425] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 389.755578][ T7448] netlink: 24 bytes leftover after parsing attributes in process `syz.4.872'. [ 389.963346][ T7446] netlink: 28 bytes leftover after parsing attributes in process `syz.0.871'. [ 390.138677][ T7446] netlink: 28 bytes leftover after parsing attributes in process `syz.0.871'. [ 397.468390][ T7490] loop3: detected capacity change from 0 to 512 [ 397.476635][ T7477] netlink: 'syz.2.878': attribute type 29 has an invalid length. [ 397.519301][ T7477] netlink: 'syz.2.878': attribute type 29 has an invalid length. [ 397.805154][ T7490] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 399.103226][ T7490] EXT4-fs (loop3): 1 truncate cleaned up [ 399.109074][ T7490] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 399.130621][ T7511] netlink: 28 bytes leftover after parsing attributes in process `syz.4.889'. [ 399.223442][ T7511] netlink: 28 bytes leftover after parsing attributes in process `syz.4.889'. [ 402.440814][ T7541] loop2: detected capacity change from 0 to 512 [ 402.462179][ T7542] netlink: 28 bytes leftover after parsing attributes in process `syz.4.897'. [ 402.530658][ T7542] netlink: 28 bytes leftover after parsing attributes in process `syz.4.897'. [ 402.566631][ T7544] netlink: 28 bytes leftover after parsing attributes in process `syz.3.893'. [ 402.576540][ T7544] netlink: 28 bytes leftover after parsing attributes in process `syz.3.893'. [ 403.635799][ T7541] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #16: comm syz.2.898: casefold flag without casefold feature [ 403.737900][ T7541] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.898: couldn't read orphan inode 16 (err -117) [ 403.793598][ T7541] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 403.868296][ T7541] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 403.889916][ T7565] netlink: 'syz.3.901': attribute type 29 has an invalid length. [ 403.900155][ T7563] loop0: detected capacity change from 0 to 512 [ 403.965048][ T7565] netlink: 'syz.3.901': attribute type 29 has an invalid length. [ 404.057275][ T26] audit: type=1326 audit(1731177036.498:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7538 comm="syz.2.898" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x0 [ 404.281494][ T7563] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 404.817161][ T7563] EXT4-fs (loop0): 1 truncate cleaned up [ 404.822850][ T7563] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 404.978812][ T7574] netlink: 'syz.4.908': attribute type 29 has an invalid length. [ 404.998713][ T7574] netlink: 'syz.4.908': attribute type 29 has an invalid length. [ 407.866636][ T7604] netlink: 28 bytes leftover after parsing attributes in process `syz.2.913'. [ 407.911370][ T7604] netlink: 28 bytes leftover after parsing attributes in process `syz.2.913'. [ 408.087652][ T7609] netlink: 28 bytes leftover after parsing attributes in process `syz.0.915'. [ 408.133414][ T7609] netlink: 28 bytes leftover after parsing attributes in process `syz.0.915'. [ 408.184408][ T7615] loop2: detected capacity change from 0 to 512 [ 408.365273][ T7615] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #16: comm syz.2.918: casefold flag without casefold feature [ 408.592098][ T7615] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.918: couldn't read orphan inode 16 (err -117) [ 408.740423][ T7615] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 409.223346][ T7615] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 409.549162][ T26] audit: type=1326 audit(1731177041.948:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7614 comm="syz.2.918" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x0 [ 411.813583][ T7647] device sit0 entered promiscuous mode [ 411.858644][ T7647] device vlan2 entered promiscuous mode [ 412.176871][ T7647] device sit0 left promiscuous mode [ 414.908517][ T26] audit: type=1326 audit(1731177047.348:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.1.930" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 414.946877][ T7674] loop3: detected capacity change from 0 to 512 [ 416.106910][ T7674] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #16: comm syz.3.931: casefold flag without casefold feature [ 416.147812][ T7674] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.931: couldn't read orphan inode 16 (err -117) [ 416.266517][ T7674] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 416.537266][ T7689] netlink: 28 bytes leftover after parsing attributes in process `syz.4.937'. [ 416.554489][ T7689] netlink: 28 bytes leftover after parsing attributes in process `syz.4.937'. [ 416.563793][ T7674] ext4 filesystem being mounted at /204/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 416.635289][ T7692] overlayfs: missing 'lowerdir' [ 417.327595][ T7704] netlink: 20 bytes leftover after parsing attributes in process `syz.1.944'. [ 417.370172][ T7697] netlink: 28 bytes leftover after parsing attributes in process `syz.0.940'. [ 417.604604][ T7697] netlink: 28 bytes leftover after parsing attributes in process `syz.0.940'. [ 419.600810][ T26] audit: type=1326 audit(1731177052.038:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7722 comm="syz.1.948" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 420.927124][ T7735] netlink: 'syz.4.949': attribute type 29 has an invalid length. [ 420.983851][ T7735] netlink: 'syz.4.949': attribute type 29 has an invalid length. [ 421.199449][ T7738] netlink: 28 bytes leftover after parsing attributes in process `syz.0.950'. [ 421.239216][ T7738] netlink: 28 bytes leftover after parsing attributes in process `syz.0.950'. [ 421.280342][ T7742] usb usb7: usbfs: process 7742 (syz.4.952) did not claim interface 0 before use [ 421.609374][ T7745] device ip6tnl0 entered promiscuous mode [ 421.629815][ T7742] loop4: detected capacity change from 0 to 512 [ 421.664652][ T7745] device vlan2 entered promiscuous mode [ 421.700152][ T7745] device ip6tnl0 left promiscuous mode [ 421.832987][ T7742] EXT4-fs error (device loop4): ext4_orphan_get:1401: inode #16: comm syz.4.952: casefold flag without casefold feature [ 421.883958][ T7742] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.952: couldn't read orphan inode 16 (err -117) [ 421.943913][ T7742] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 421.974708][ T7742] ext4 filesystem being mounted at /198/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 422.044701][ T7757] loop0: detected capacity change from 0 to 256 [ 422.122283][ T7757] exFAT-fs (loop0): Invalid exboot-signature(sector = 7): 0xaa00006c [ 422.141768][ T7757] exFAT-fs (loop0): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 422.169783][ T7757] exFAT-fs (loop0): invalid boot region [ 422.206020][ T26] audit: type=1326 audit(1731177054.648:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7741 comm="syz.4.952" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efe53b22719 code=0x0 [ 422.230220][ T7757] exFAT-fs (loop0): failed to recognize exfat type [ 424.829619][ T26] audit: type=1326 audit(1731177057.268:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.2.963" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fde21a8c719 code=0x0 [ 425.988041][ T7796] netlink: 20 bytes leftover after parsing attributes in process `syz.3.966'. [ 426.048453][ T7800] netlink: 28 bytes leftover after parsing attributes in process `syz.2.968'. [ 426.076163][ T7800] netlink: 28 bytes leftover after parsing attributes in process `syz.2.968'. [ 426.099097][ T7778] syz.0.961[7778] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 426.099207][ T7778] syz.0.961[7778] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 426.251573][ T7805] netlink: 'syz.2.970': attribute type 29 has an invalid length. [ 426.291072][ T7805] netlink: 'syz.2.970': attribute type 29 has an invalid length. [ 426.854486][ T7810] device ip6tnl0 entered promiscuous mode [ 426.860287][ T7810] device vlan2 entered promiscuous mode [ 426.917415][ T7810] device ip6tnl0 left promiscuous mode [ 427.038914][ T7815] device ip6tnl0 entered promiscuous mode [ 427.059960][ T7815] device vlan2 entered promiscuous mode [ 427.156124][ T7815] device ip6tnl0 left promiscuous mode [ 427.231490][ T7814] netlink: 28 bytes leftover after parsing attributes in process `syz.3.972'. [ 427.749706][ T7814] netlink: 28 bytes leftover after parsing attributes in process `syz.3.972'. [ 427.927577][ T7821] device ip6tnl0 entered promiscuous mode [ 427.941567][ T7821] device vlan2 entered promiscuous mode [ 427.952867][ T7821] device ip6tnl0 left promiscuous mode [ 427.952936][ T7823] netlink: 'syz.4.976': attribute type 29 has an invalid length. [ 428.016298][ T7825] netlink: 20 bytes leftover after parsing attributes in process `syz.3.977'. [ 428.039481][ T7823] netlink: 'syz.4.976': attribute type 29 has an invalid length. [ 429.200425][ T7835] netlink: 20 bytes leftover after parsing attributes in process `syz.2.980'. [ 430.554891][ T7838] device ip6tnl0 entered promiscuous mode [ 430.605002][ T7838] device vlan2 entered promiscuous mode [ 430.615555][ T7838] device ip6tnl0 left promiscuous mode [ 430.641510][ T7850] netlink: 'syz.3.985': attribute type 29 has an invalid length. [ 430.919346][ T7850] netlink: 'syz.3.985': attribute type 29 has an invalid length. [ 431.197818][ T7860] loop0: detected capacity change from 0 to 256 [ 432.098693][ T7860] exFAT-fs (loop0): Invalid exboot-signature(sector = 7): 0xaa00006c [ 432.184058][ T7860] exFAT-fs (loop0): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 432.217053][ T7860] exFAT-fs (loop0): invalid boot region [ 432.222642][ T7860] exFAT-fs (loop0): failed to recognize exfat type [ 432.526955][ T7878] netlink: 28 bytes leftover after parsing attributes in process `syz.3.991'. [ 432.536364][ T7878] netlink: 28 bytes leftover after parsing attributes in process `syz.3.991'. [ 433.551532][ T7882] netlink: 28 bytes leftover after parsing attributes in process `syz.2.993'. [ 433.570922][ T7882] netlink: 28 bytes leftover after parsing attributes in process `syz.2.993'. [ 433.875286][ T26] audit: type=1326 audit(1731177066.318:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7889 comm="syz.1.996" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 433.917761][ T7897] device ip6tnl0 entered promiscuous mode [ 433.925623][ T7897] device vlan2 entered promiscuous mode [ 433.938225][ T7897] device ip6tnl0 left promiscuous mode [ 437.256449][ T7922] syz.2.1002[7922] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 437.256924][ T7922] syz.2.1002[7922] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 443.350119][ T7961] netlink: 'syz.4.1017': attribute type 29 has an invalid length. [ 443.374921][ T7961] netlink: 'syz.4.1017': attribute type 29 has an invalid length. [ 443.685440][ T7974] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1023'. [ 443.716693][ T7974] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1023'. [ 445.041322][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.051882][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.828334][ T7982] device ip6tnl0 entered promiscuous mode [ 445.853810][ T7982] device vlan2 entered promiscuous mode [ 445.934005][ T7986] loop4: detected capacity change from 0 to 256 [ 446.453010][ T7990] syz.3.1024[7990] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 446.453147][ T7990] syz.3.1024[7990] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 446.770754][ T7986] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 447.082548][ T7982] device ip6tnl0 left promiscuous mode [ 447.132752][ T7986] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 447.227670][ T7986] exFAT-fs (loop4): invalid boot region [ 447.258502][ T7986] exFAT-fs (loop4): failed to recognize exfat type [ 448.735099][ T8011] device ip6tnl0 entered promiscuous mode [ 448.740892][ T8011] device vlan2 entered promiscuous mode [ 448.750358][ T8017] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1036'. [ 448.996164][ T8011] device ip6tnl0 left promiscuous mode [ 450.905827][ T8028] netlink: 'syz.1.1039': attribute type 29 has an invalid length. [ 451.436577][ T8028] netlink: 'syz.1.1039': attribute type 29 has an invalid length. [ 451.498113][ T8031] device ip6tnl0 entered promiscuous mode [ 451.523692][ T8031] device vlan2 entered promiscuous mode [ 451.557888][ T8031] device ip6tnl0 left promiscuous mode [ 452.225082][ T8042] device ip6tnl0 entered promiscuous mode [ 452.261124][ T8042] device vlan2 entered promiscuous mode [ 452.279915][ T8042] device ip6tnl0 left promiscuous mode [ 452.340720][ T8047] netlink: 'syz.1.1045': attribute type 29 has an invalid length. [ 452.482369][ T8047] netlink: 'syz.1.1045': attribute type 29 has an invalid length. [ 453.011226][ T8056] loop4: detected capacity change from 0 to 256 [ 453.017186][ T8052] device ip6tnl0 entered promiscuous mode [ 453.659210][ T8052] device vlan2 entered promiscuous mode [ 453.685640][ T8056] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 453.687133][ T8056] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 453.687163][ T8056] exFAT-fs (loop4): invalid boot region [ 453.687178][ T8056] exFAT-fs (loop4): failed to recognize exfat type [ 453.758682][ T8052] device ip6tnl0 left promiscuous mode [ 453.842814][ T8061] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1049'. [ 453.860429][ T8061] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1049'. [ 453.906599][ T8061] device dummy0 entered promiscuous mode [ 453.914888][ T8061] device bond0 entered promiscuous mode [ 453.920539][ T8061] device bond_slave_0 entered promiscuous mode [ 453.927665][ T8061] device bond_slave_1 entered promiscuous mode [ 453.943383][ T8061] debugfs: Directory 'hsr1' with parent 'hsr' already present! [ 453.961039][ T8061] Cannot create hsr debugfs directory [ 453.974353][ T7411] IPv6: ADDRCONF(NETDEV_CHANGE): hsr1: link becomes ready [ 454.196384][ T8072] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1052'. [ 454.240806][ T8073] device ip6tnl0 entered promiscuous mode [ 454.259594][ T8073] device vlan2 entered promiscuous mode [ 454.276008][ T8073] device ip6tnl0 left promiscuous mode [ 455.609277][ T8084] device ip6tnl0 entered promiscuous mode [ 455.620455][ T8084] device vlan2 entered promiscuous mode [ 455.662947][ T8084] device ip6tnl0 left promiscuous mode [ 457.237167][ T8087] device ip6tnl0 entered promiscuous mode [ 457.242973][ T8087] device vlan2 entered promiscuous mode [ 457.250317][ T8087] device ip6tnl0 left promiscuous mode [ 458.191884][ T8108] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1066'. [ 458.228588][ T8112] netlink: 'syz.1.1068': attribute type 29 has an invalid length. [ 458.394214][ T8108] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1066'. [ 459.635724][ T8108] device team0 entered promiscuous mode [ 459.690456][ T8108] device team_slave_0 entered promiscuous mode [ 459.727028][ T8108] device team_slave_1 entered promiscuous mode [ 459.771622][ T8108] device team0 left promiscuous mode [ 459.777023][ T8108] device team_slave_0 left promiscuous mode [ 459.785587][ T8108] device team_slave_1 left promiscuous mode [ 459.805966][ T8112] netlink: 'syz.1.1068': attribute type 29 has an invalid length. [ 459.848387][ T8125] loop3: detected capacity change from 0 to 512 [ 460.382590][ T8125] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #16: comm syz.3.1072: casefold flag without casefold feature [ 460.700996][ T8125] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.1072: couldn't read orphan inode 16 (err -117) [ 460.756048][ T8125] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 460.806908][ T8125] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 460.929617][ T26] audit: type=1326 audit(1731177093.368:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8124 comm="syz.3.1072" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff375e06719 code=0x0 [ 461.586487][ T8143] device sit0 entered promiscuous mode [ 461.709823][ T8143] device vlan2 entered promiscuous mode [ 461.801266][ T8152] loop2: detected capacity change from 0 to 256 [ 461.853560][ T8143] device sit0 left promiscuous mode [ 461.874117][ T8152] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 461.894804][ T8154] loop4: detected capacity change from 0 to 256 [ 461.901681][ T8152] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 461.932447][ T8152] exFAT-fs (loop2): invalid boot region [ 461.947083][ T8152] exFAT-fs (loop2): failed to recognize exfat type [ 461.989514][ T8154] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 462.130397][ T8154] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 462.163148][ T8154] exFAT-fs (loop4): invalid boot region [ 462.179742][ T8154] exFAT-fs (loop4): failed to recognize exfat type [ 463.133391][ T8171] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1086'. [ 463.142396][ T8171] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1086'. [ 463.215744][ T8171] device team0 entered promiscuous mode [ 463.221333][ T8171] device team_slave_0 entered promiscuous mode [ 463.241419][ T8171] device team_slave_1 entered promiscuous mode [ 463.269085][ T8171] device team0 left promiscuous mode [ 463.289541][ T8171] device team_slave_0 left promiscuous mode [ 463.324898][ T8171] device team_slave_1 left promiscuous mode [ 464.008211][ C0] dccp_check_seqno: Step 6 failed for CLOSE packet, (LSWL(266860725225276) <= P.seqno(266860725225275) <= S.SWH(266860725225350)) and (P.ackno exists or LAWL(154967270596685) <= P.ackno(154967270596685) <= S.AWH(154967270596685), sending SYNC... [ 464.725647][ T8186] loop2: detected capacity change from 0 to 512 [ 464.819978][ T8190] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1092'. [ 465.125145][ T8186] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #16: comm syz.2.1090: casefold flag without casefold feature [ 465.305753][ T8186] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1090: couldn't read orphan inode 16 (err -117) [ 465.548153][ T8186] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 465.674626][ T8186] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 465.717886][ T8197] loop3: detected capacity change from 0 to 256 [ 465.741441][ T8199] loop4: detected capacity change from 0 to 256 [ 465.849987][ T8197] exFAT-fs (loop3): Invalid exboot-signature(sector = 7): 0xaa00006c [ 465.884942][ T26] audit: type=1326 audit(1731177098.328:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.2.1090" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x0 [ 465.916023][ T8197] exFAT-fs (loop3): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 465.944509][ T8197] exFAT-fs (loop3): invalid boot region [ 465.955974][ T8199] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 465.961378][ T8197] exFAT-fs (loop3): failed to recognize exfat type [ 466.149288][ T8199] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 466.283791][ T8199] exFAT-fs (loop4): invalid boot region [ 466.436861][ T8199] exFAT-fs (loop4): failed to recognize exfat type [ 466.915741][ T26] audit: type=1326 audit(1731177099.358:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.3.1099" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff375e06719 code=0x0 [ 468.154105][ T8233] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1103'. [ 468.193223][ T8233] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1103'. [ 468.214944][ T8233] device team0 entered promiscuous mode [ 468.230825][ T8233] device team_slave_0 entered promiscuous mode [ 468.263651][ T8233] device team_slave_1 entered promiscuous mode [ 468.291821][ T8239] loop3: detected capacity change from 0 to 512 [ 468.304437][ T8233] device team0 left promiscuous mode [ 468.322267][ T8233] device team_slave_0 left promiscuous mode [ 468.331791][ T8244] loop0: detected capacity change from 0 to 256 [ 468.342884][ T8233] device team_slave_1 left promiscuous mode [ 468.389984][ T8244] exFAT-fs (loop0): Invalid exboot-signature(sector = 7): 0xaa00006c [ 468.410331][ T8244] exFAT-fs (loop0): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 468.419978][ T8239] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #16: comm syz.3.1106: casefold flag without casefold feature [ 468.421943][ T8244] exFAT-fs (loop0): invalid boot region [ 468.447829][ T8244] exFAT-fs (loop0): failed to recognize exfat type [ 468.459336][ T8239] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.1106: couldn't read orphan inode 16 (err -117) [ 468.500776][ T8239] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 468.541859][ T8239] ext4 filesystem being mounted at /235/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 468.680519][ T26] audit: type=1326 audit(1731177101.118:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8235 comm="syz.3.1106" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff375e06719 code=0x0 [ 469.669689][ T8263] loop1: detected capacity change from 0 to 256 [ 469.785702][ T8263] exFAT-fs (loop1): Invalid exboot-signature(sector = 7): 0xaa00006c [ 469.809935][ T8263] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 469.828826][ T8263] exFAT-fs (loop1): invalid boot region [ 469.838143][ T8263] exFAT-fs (loop1): failed to recognize exfat type [ 469.870646][ T26] audit: type=1326 audit(1731177102.308:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8265 comm="syz.2.1116" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fde21a8c719 code=0x0 [ 471.898538][ T8292] loop2: detected capacity change from 0 to 256 [ 471.915020][ T8284] device ip6tnl0 entered promiscuous mode [ 471.937596][ T8284] device vlan2 entered promiscuous mode [ 471.996853][ T8284] device ip6tnl0 left promiscuous mode [ 472.054123][ T8292] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 472.290083][ T8292] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 472.332818][ T8296] loop1: detected capacity change from 0 to 512 [ 472.337632][ T8292] exFAT-fs (loop2): invalid boot region [ 472.833702][ T8292] exFAT-fs (loop2): failed to recognize exfat type [ 474.578265][ T8296] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #16: comm syz.1.1125: casefold flag without casefold feature [ 474.653221][ T8296] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.1125: couldn't read orphan inode 16 (err -117) [ 474.836625][ T8296] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 474.884106][ T8296] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 475.173843][ T26] audit: type=1326 audit(1731177107.518:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8294 comm="syz.1.1125" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 476.803265][ T8309] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 64: padding at end of block bitmap is not set [ 480.049218][ T8368] loop4: detected capacity change from 0 to 256 [ 480.232481][ T8374] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1144'. [ 480.304286][ T8368] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 480.492765][ T8368] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 480.549289][ T8374] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1144'. [ 480.848809][ T8368] exFAT-fs (loop4): invalid boot region [ 480.856640][ T8368] exFAT-fs (loop4): failed to recognize exfat type [ 482.959600][ T26] audit: type=1326 audit(1731177115.398:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.0.1146" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3fd9294719 code=0x0 [ 485.205257][ T8424] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1159'. [ 485.279576][ T8424] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1159'. [ 485.492269][ T8424] device team0 entered promiscuous mode [ 485.543656][ T8424] device team_slave_0 entered promiscuous mode [ 485.550850][ T8424] device team_slave_1 entered promiscuous mode [ 486.641624][ T8424] device team0 left promiscuous mode [ 486.647161][ T8424] device team_slave_0 left promiscuous mode [ 486.677735][ T8424] device team_slave_1 left promiscuous mode [ 486.765153][ T8432] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1161'. [ 486.807575][ T8432] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1161'. [ 490.724118][ T26] audit: type=1326 audit(1731177123.108:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8450 comm="syz.1.1166" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 490.796716][ T8461] device ip6tnl0 entered promiscuous mode [ 490.810571][ T8463] loop2: detected capacity change from 0 to 256 [ 490.834890][ T8461] device vlan2 entered promiscuous mode [ 490.852875][ T8461] device ip6tnl0 left promiscuous mode [ 490.957151][ T8463] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 491.007260][ T8463] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 491.077790][ T8463] exFAT-fs (loop2): invalid boot region [ 491.112073][ T8463] exFAT-fs (loop2): failed to recognize exfat type [ 492.486003][ T8482] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1175'. [ 492.513404][ T8482] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1175'. [ 492.547108][ T8482] device team0 entered promiscuous mode [ 492.593349][ T8482] device team_slave_0 entered promiscuous mode [ 492.634996][ T8482] device team_slave_1 entered promiscuous mode [ 492.668926][ T8482] device team0 left promiscuous mode [ 493.908006][ T8482] device team_slave_0 left promiscuous mode [ 493.908224][ T8482] device team_slave_1 left promiscuous mode [ 494.011037][ T8487] device ip6tnl0 entered promiscuous mode [ 494.011083][ T8487] device vlan2 entered promiscuous mode [ 494.013792][ T8487] device ip6tnl0 left promiscuous mode [ 494.300934][ T8491] device ip6tnl0 entered promiscuous mode [ 495.033448][ T8491] device vlan2 entered promiscuous mode [ 495.362525][ T8491] device ip6tnl0 left promiscuous mode [ 496.225904][ T8513] device ip6tnl0 entered promiscuous mode [ 496.231687][ T8513] device vlan2 entered promiscuous mode [ 496.340192][ T8513] device ip6tnl0 left promiscuous mode [ 496.378575][ T8519] loop4: detected capacity change from 0 to 256 [ 496.427866][ T8519] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 496.444025][ T8519] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 496.459917][ T8519] exFAT-fs (loop4): invalid boot region [ 496.489152][ T8519] exFAT-fs (loop4): failed to recognize exfat type [ 496.494699][ T8525] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1187'. [ 496.655758][ T8529] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1189'. [ 496.683281][ T8529] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1189'. [ 497.580063][ T8536] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1190'. [ 497.830037][ T8547] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1195'. [ 499.877315][ T26] audit: type=1326 audit(1731177132.318:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8559 comm="syz.2.1198" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fde21a8c719 code=0x0 [ 501.507176][ T8573] device ip6tnl0 entered promiscuous mode [ 501.513396][ T8573] device vlan2 entered promiscuous mode [ 501.550175][ T8573] device ip6tnl0 left promiscuous mode [ 501.934175][ T8577] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1202'. [ 502.298975][ T8577] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1202'. [ 503.348934][ T8577] device team0 entered promiscuous mode [ 503.362533][ T8577] device team_slave_0 entered promiscuous mode [ 503.371100][ T8577] device team_slave_1 entered promiscuous mode [ 503.382170][ T8577] device team0 left promiscuous mode [ 503.389334][ T8577] device team_slave_0 left promiscuous mode [ 503.395749][ T8577] device team_slave_1 left promiscuous mode [ 503.463407][ T8591] loop1: detected capacity change from 0 to 256 [ 503.540207][ T8587] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1206'. [ 503.555890][ T8587] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1206'. [ 503.639649][ T8591] exFAT-fs (loop1): Invalid exboot-signature(sector = 7): 0xaa00006c [ 503.694009][ T8591] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 503.747268][ T8591] exFAT-fs (loop1): invalid boot region [ 503.784373][ T8591] exFAT-fs (loop1): failed to recognize exfat type [ 505.540476][ T8607] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1211'. [ 507.846407][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 507.852732][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 508.620352][ T8632] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1220'. [ 509.078929][ T8632] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1220'. [ 509.892857][ T8632] device team0 entered promiscuous mode [ 509.923235][ T8632] device team_slave_0 entered promiscuous mode [ 509.997651][ T8632] device team_slave_1 entered promiscuous mode [ 510.218977][ T8643] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1223'. [ 511.362146][ T8632] device team0 left promiscuous mode [ 511.367849][ T8632] device team_slave_0 left promiscuous mode [ 511.415963][ T8632] device team_slave_1 left promiscuous mode [ 511.449743][ T8636] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1215'. [ 511.691900][ T8656] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1225'. [ 511.842617][ T8661] loop1: detected capacity change from 0 to 256 [ 512.288277][ T8668] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1226'. [ 513.761054][ T8669] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1228'. [ 513.847093][ T8661] exFAT-fs (loop1): Invalid exboot-signature(sector = 7): 0xaa00006c [ 513.870737][ T8661] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 513.932761][ T8661] exFAT-fs (loop1): invalid boot region [ 514.003093][ T8661] exFAT-fs (loop1): failed to recognize exfat type [ 517.716257][ T8702] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1237'. [ 518.464938][ T8700] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1238'. [ 518.519053][ T8700] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1238'. [ 518.594512][ T8700] device team0 entered promiscuous mode [ 518.600224][ T8700] device team_slave_0 entered promiscuous mode [ 518.639042][ T8700] device team_slave_1 entered promiscuous mode [ 518.731655][ T8700] device team0 left promiscuous mode [ 518.742964][ T8700] device team_slave_0 left promiscuous mode [ 518.769942][ T8700] device team_slave_1 left promiscuous mode [ 521.072300][ T8723] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1244'. [ 522.057992][ T8726] loop1: detected capacity change from 0 to 256 [ 523.877434][ T8726] exFAT-fs (loop1): Invalid exboot-signature(sector = 7): 0xaa00006c [ 523.930514][ T8726] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 524.100479][ T8726] exFAT-fs (loop1): invalid boot region [ 524.106140][ T8726] exFAT-fs (loop1): failed to recognize exfat type [ 524.270072][ T8741] device ip6tnl0 entered promiscuous mode [ 524.313457][ T8741] device vlan2 entered promiscuous mode [ 524.807330][ T8741] device ip6tnl0 left promiscuous mode [ 526.488458][ T8761] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1258'. [ 526.497716][ T8761] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1258'. [ 526.869745][ T8762] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1257'. [ 527.780691][ T8774] device ip6tnl0 entered promiscuous mode [ 527.786532][ T8774] device vlan2 entered promiscuous mode [ 527.823357][ T8774] device ip6tnl0 left promiscuous mode [ 528.005230][ T8781] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1266'. [ 530.179828][ T8794] loop2: detected capacity change from 0 to 256 [ 531.384965][ T8794] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 531.399054][ T8794] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 531.413177][ T8794] exFAT-fs (loop2): invalid boot region [ 531.423987][ T8794] exFAT-fs (loop2): failed to recognize exfat type [ 538.083697][ T8840] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1280'. [ 539.095586][ T8843] device ip6tnl0 entered promiscuous mode [ 539.111739][ T8843] device vlan2 entered promiscuous mode [ 539.123967][ T8843] device ip6tnl0 left promiscuous mode [ 540.431994][ T8853] loop1: detected capacity change from 0 to 256 [ 540.656838][ T8853] exFAT-fs (loop1): Invalid exboot-signature(sector = 7): 0xaa00006c [ 540.670903][ T8859] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1286'. [ 540.744666][ T8853] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 540.760504][ T8853] exFAT-fs (loop1): invalid boot region [ 540.772813][ T8853] exFAT-fs (loop1): failed to recognize exfat type [ 543.322019][ T8890] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1295'. [ 543.486481][ T8889] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1290'. [ 546.441732][ T8897] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1296'. [ 547.086945][ T8907] device ip6tnl0 entered promiscuous mode [ 547.142698][ T8907] device vlan2 entered promiscuous mode [ 547.177092][ T8907] device ip6tnl0 left promiscuous mode [ 548.336247][ T8915] loop0: detected capacity change from 0 to 256 [ 548.564801][ T8917] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1302'. [ 549.326798][ T8919] syz.4.1304[8919] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 549.326910][ T8919] syz.4.1304[8919] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 549.772919][ T8915] exFAT-fs (loop0): Invalid exboot-signature(sector = 7): 0xaa00006c [ 549.860889][ T8915] exFAT-fs (loop0): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 550.021817][ T8915] exFAT-fs (loop0): invalid boot region [ 550.027664][ T8915] exFAT-fs (loop0): failed to recognize exfat type [ 550.162526][ T8928] device ip6tnl0 entered promiscuous mode [ 550.180881][ T8928] device vlan2 entered promiscuous mode [ 550.195282][ T8928] device ip6tnl0 left promiscuous mode [ 553.006935][ T26] audit: type=1326 audit(1731177185.438:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8940 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 554.059900][ T8961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1316'. [ 554.077893][ T26] audit: type=1326 audit(1731177185.438:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8940 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 555.239382][ T26] audit: type=1326 audit(1731177185.438:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8940 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 555.355540][ T26] audit: type=1326 audit(1731177185.448:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8940 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 555.383866][ T26] audit: type=1326 audit(1731177185.448:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8940 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 555.476666][ T8975] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1318'. [ 555.654275][ T26] audit: type=1326 audit(1731177185.448:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8940 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 556.181539][ T26] audit: type=1326 audit(1731177185.448:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8940 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 556.224473][ T26] audit: type=1326 audit(1731177185.448:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8940 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 556.281778][ T8979] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1320'. [ 556.338468][ T8980] loop2: detected capacity change from 0 to 256 [ 556.463716][ T8980] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 556.496317][ T8980] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 556.560580][ T8980] exFAT-fs (loop2): invalid boot region [ 556.575398][ T8980] exFAT-fs (loop2): failed to recognize exfat type [ 558.019667][ T9000] syz.3.1325[9000] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 558.019928][ T9000] syz.3.1325[9000] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 561.609659][ T9021] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1331'. [ 561.936089][ T9028] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1334'. [ 562.108942][ T9032] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1333'. [ 562.997214][ T9036] loop0: detected capacity change from 0 to 256 [ 564.923385][ T9036] exFAT-fs (loop0): Invalid exboot-signature(sector = 7): 0xaa00006c [ 564.931915][ T26] audit: type=1326 audit(1731177197.248:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9042 comm="syz.4.1340" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efe53b22719 code=0x0 [ 564.968833][ T9036] exFAT-fs (loop0): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 565.010668][ T9051] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1341'. [ 565.032265][ T9036] exFAT-fs (loop0): invalid boot region [ 565.093337][ T9036] exFAT-fs (loop0): failed to recognize exfat type [ 565.102297][ T9051] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1341'. [ 565.138738][ T9051] device team0 entered promiscuous mode [ 565.163132][ T9051] device team_slave_0 entered promiscuous mode [ 565.169473][ T9051] device team_slave_1 entered promiscuous mode [ 565.194680][ T9051] device team0 left promiscuous mode [ 565.202419][ T9051] device team_slave_0 left promiscuous mode [ 565.237789][ T9051] device team_slave_1 left promiscuous mode [ 565.283848][ T9054] device ip6tnl0 entered promiscuous mode [ 565.303374][ T9054] device vlan2 entered promiscuous mode [ 565.332958][ T9054] device ip6tnl0 left promiscuous mode [ 566.099631][ T9075] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1349'. [ 566.828417][ T26] audit: type=1326 audit(1731177199.268:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz.3.1353" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff375e06719 code=0x0 [ 568.538849][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.545242][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.672518][ T9090] loop0: detected capacity change from 0 to 256 [ 568.745009][ T9093] loop1: detected capacity change from 0 to 512 [ 568.805942][ T9090] exFAT-fs (loop0): Invalid exboot-signature(sector = 7): 0xaa00006c [ 568.834804][ T9090] exFAT-fs (loop0): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 568.888290][ T9090] exFAT-fs (loop0): invalid boot region [ 568.931499][ T9090] exFAT-fs (loop0): failed to recognize exfat type [ 568.940950][ T9093] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #16: comm syz.1.1355: casefold flag without casefold feature [ 568.964579][ T9093] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.1355: couldn't read orphan inode 16 (err -117) [ 569.008103][ T9093] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 569.039740][ T9101] syz.4.1350[9101] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 569.040288][ T9101] syz.4.1350[9101] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 569.207481][ T9093] ext4 filesystem being mounted at /281/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 569.777785][ T9100] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1356'. [ 569.798901][ T9100] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1356'. [ 569.824294][ T26] audit: type=1326 audit(1731177202.268:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9092 comm="syz.1.1355" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 569.895005][ T9100] device team0 entered promiscuous mode [ 569.900596][ T9100] device team_slave_0 entered promiscuous mode [ 569.924543][ T9100] device team_slave_1 entered promiscuous mode [ 569.961275][ T9100] device team0 left promiscuous mode [ 569.977148][ T9100] device team_slave_0 left promiscuous mode [ 570.013314][ T9100] device team_slave_1 left promiscuous mode [ 570.156445][ T9112] device ip6tnl0 entered promiscuous mode [ 570.170709][ T9117] loop3: detected capacity change from 0 to 256 [ 570.221221][ T9112] device vlan2 entered promiscuous mode [ 570.343356][ T9117] exFAT-fs (loop3): Invalid exboot-signature(sector = 7): 0xaa00006c [ 570.418519][ T9112] device ip6tnl0 left promiscuous mode [ 570.504870][ T9117] exFAT-fs (loop3): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 570.728839][ T9117] exFAT-fs (loop3): invalid boot region [ 570.875506][ T9117] exFAT-fs (loop3): failed to recognize exfat type [ 571.955685][ T26] audit: type=1326 audit(1731177204.398:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9127 comm="syz.0.1366" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3fd9294719 code=0x0 [ 572.270924][ T9139] loop4: detected capacity change from 0 to 256 [ 572.322115][ T9138] loop2: detected capacity change from 0 to 512 [ 572.346909][ T9139] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 573.205731][ T9139] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 573.244295][ T9139] exFAT-fs (loop4): invalid boot region [ 573.252062][ T9139] exFAT-fs (loop4): failed to recognize exfat type [ 573.265312][ T9138] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #16: comm syz.2.1368: casefold flag without casefold feature [ 573.312974][ T9138] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1368: couldn't read orphan inode 16 (err -117) [ 573.325878][ T9138] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 573.337341][ T9138] ext4 filesystem being mounted at /249/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 573.419927][ T9157] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1375'. [ 573.437581][ T9157] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1375'. [ 573.459895][ T26] audit: type=1326 audit(1731177205.888:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9136 comm="syz.2.1368" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x0 [ 573.511478][ T9157] device team0 entered promiscuous mode [ 573.532310][ T9157] device team_slave_0 entered promiscuous mode [ 573.545013][ T9157] device team_slave_1 entered promiscuous mode [ 574.443678][ T9157] device team0 left promiscuous mode [ 574.449054][ T9157] device team_slave_0 left promiscuous mode [ 574.463376][ T9157] device team_slave_1 left promiscuous mode [ 574.577350][ T9166] device ip6tnl0 entered promiscuous mode [ 574.594759][ T9166] device vlan2 entered promiscuous mode [ 574.617633][ T9166] device ip6tnl0 left promiscuous mode [ 574.909682][ T9172] loop1: detected capacity change from 0 to 256 [ 575.001528][ T9172] exFAT-fs (loop1): Invalid exboot-signature(sector = 7): 0xaa00006c [ 575.110664][ T9172] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 575.317881][ T9172] exFAT-fs (loop1): invalid boot region [ 575.447665][ T9172] exFAT-fs (loop1): failed to recognize exfat type [ 575.989798][ T26] audit: type=1326 audit(1731177208.428:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9177 comm="syz.2.1381" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fde21a8c719 code=0x0 [ 577.504193][ T9193] loop3: detected capacity change from 0 to 512 [ 577.535421][ T9200] loop0: detected capacity change from 0 to 256 [ 577.711634][ T9200] exFAT-fs (loop0): Invalid exboot-signature(sector = 7): 0xaa00006c [ 577.785155][ T9200] exFAT-fs (loop0): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 577.919955][ T9193] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #16: comm syz.3.1386: casefold flag without casefold feature [ 577.995177][ T9200] exFAT-fs (loop0): invalid boot region [ 578.100645][ T9200] exFAT-fs (loop0): failed to recognize exfat type [ 578.133848][ T9193] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.1386: couldn't read orphan inode 16 (err -117) [ 578.383336][ T9193] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 578.425309][ T9193] ext4 filesystem being mounted at /299/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 578.491193][ T9208] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1390'. [ 578.552334][ T9208] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1390'. [ 578.574332][ T9208] device team0 entered promiscuous mode [ 578.592007][ T9208] device team_slave_0 entered promiscuous mode [ 578.599221][ T26] audit: type=1326 audit(1731177211.048:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9192 comm="syz.3.1386" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff375e06719 code=0x0 [ 578.631675][ T9208] device team_slave_1 entered promiscuous mode [ 578.671966][ T9208] device team0 left promiscuous mode [ 578.709139][ T9208] device team_slave_0 left promiscuous mode [ 578.726048][ T9208] device team_slave_1 left promiscuous mode [ 578.932394][ T9212] device ip6tnl0 entered promiscuous mode [ 578.958340][ T9212] device vlan2 entered promiscuous mode [ 579.106259][ T9212] device ip6tnl0 left promiscuous mode [ 580.262693][ T9218] loop1: detected capacity change from 0 to 256 [ 580.539432][ T9218] exFAT-fs (loop1): Invalid exboot-signature(sector = 7): 0xaa00006c [ 580.566554][ T9218] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 580.623781][ T9218] exFAT-fs (loop1): invalid boot region [ 580.676677][ T9218] exFAT-fs (loop1): failed to recognize exfat type [ 580.942224][ T26] audit: type=1326 audit(1731177213.378:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9226 comm="syz.4.1397" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efe53b22719 code=0x0 [ 582.734428][ T9246] loop2: detected capacity change from 0 to 256 [ 582.751410][ T9248] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1401'. [ 582.778046][ T9246] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 582.792808][ T9246] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 582.794783][ T9244] loop1: detected capacity change from 0 to 512 [ 582.823591][ T9246] exFAT-fs (loop2): invalid boot region [ 582.829178][ T9246] exFAT-fs (loop2): failed to recognize exfat type [ 582.859218][ T9253] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1400'. [ 582.914658][ T9244] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #16: comm syz.1.1402: casefold flag without casefold feature [ 582.935377][ T9244] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.1402: couldn't read orphan inode 16 (err -117) [ 582.948349][ T9244] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 582.964655][ T9244] ext4 filesystem being mounted at /294/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 583.059078][ T26] audit: type=1326 audit(1731177215.498:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9243 comm="syz.1.1402" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 585.816977][ T9272] device ip6tnl0 entered promiscuous mode [ 585.848183][ T9272] device vlan2 entered promiscuous mode [ 585.886293][ T9272] device ip6tnl0 left promiscuous mode [ 585.910024][ T9278] loop2: detected capacity change from 0 to 256 [ 586.757794][ T9278] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 587.213814][ T9278] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 587.275043][ T9278] exFAT-fs (loop2): invalid boot region [ 587.280630][ T9278] exFAT-fs (loop2): failed to recognize exfat type [ 588.953315][ T26] audit: type=1326 audit(1731177221.378:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9296 comm="syz.1.1414" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 589.242452][ T9304] loop2: detected capacity change from 0 to 512 [ 589.314346][ T9307] loop0: detected capacity change from 0 to 256 [ 589.450057][ T9307] exFAT-fs (loop0): Invalid exboot-signature(sector = 7): 0xaa00006c [ 590.043031][ T9307] exFAT-fs (loop0): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 590.075857][ T9304] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #16: comm syz.2.1416: casefold flag without casefold feature [ 590.093644][ T9304] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1416: couldn't read orphan inode 16 (err -117) [ 590.096528][ T9307] exFAT-fs (loop0): invalid boot region [ 590.130067][ T9307] exFAT-fs (loop0): failed to recognize exfat type [ 590.145796][ T9304] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 590.160577][ T9304] ext4 filesystem being mounted at /256/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 590.281677][ T26] audit: type=1326 audit(1731177222.718:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.2.1416" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x0 [ 590.879070][ T9325] overlayfs: failed to resolve './file2': -2 [ 591.707845][ T9327] device ip6tnl0 entered promiscuous mode [ 591.728180][ T9327] device vlan2 entered promiscuous mode [ 591.808017][ T9327] device ip6tnl0 left promiscuous mode [ 591.871786][ T9332] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1422'. [ 591.888610][ T9332] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1422'. [ 593.240056][ T9332] device team0 entered promiscuous mode [ 593.291650][ T9332] device team_slave_0 entered promiscuous mode [ 593.324931][ T9332] device team_slave_1 entered promiscuous mode [ 593.603107][ T9332] device team0 left promiscuous mode [ 593.618717][ T9332] device team_slave_0 left promiscuous mode [ 593.629084][ T9332] device team_slave_1 left promiscuous mode [ 593.857399][ T9346] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1427'. [ 596.483604][ T9365] loop2: detected capacity change from 0 to 512 [ 596.703111][ T9365] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #16: comm syz.2.1432: casefold flag without casefold feature [ 596.710789][ T9373] loop1: detected capacity change from 0 to 2048 [ 596.728552][ T9365] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1432: couldn't read orphan inode 16 (err -117) [ 596.762925][ T9365] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 596.780532][ T9365] ext4 filesystem being mounted at /260/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 596.867276][ T9373] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,minixdf,nolazytime,stripe=0x0000000000000020,,errors=continue. Quota mode: none. [ 596.888033][ T26] audit: type=1326 audit(1731177229.328:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9364 comm="syz.2.1432" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x0 [ 596.985161][ T9373] ext4 filesystem being mounted at /301/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 597.459425][ T9385] fs-verity: sha256 using implementation "sha256-avx2" [ 597.478742][ T9385] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1434: bg 0: block 345: padding at end of block bitmap is not set [ 597.503069][ T9385] fs-verity (loop1, inode 13): Error -117 writing Merkle tree block 0 [ 597.511995][ T9385] fs-verity (loop1, inode 13): Error -117 building Merkle tree [ 598.814290][ T9385] syz.1.1434 (9385) used greatest stack depth: 19552 bytes left [ 598.975026][ T9388] device ip6tnl0 entered promiscuous mode [ 598.980823][ T9388] device vlan2 entered promiscuous mode [ 599.161305][ T9388] device ip6tnl0 left promiscuous mode [ 599.834821][ T9397] device ip6tnl0 entered promiscuous mode [ 599.840622][ T9397] device vlan2 entered promiscuous mode [ 599.888698][ T9397] device ip6tnl0 left promiscuous mode [ 600.167047][ T26] audit: type=1326 audit(1731177232.608:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9403 comm="syz.0.1443" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3fd9294719 code=0x0 [ 601.179709][ T9418] loop0: detected capacity change from 0 to 512 [ 603.176839][ T9418] EXT4-fs error (device loop0): ext4_orphan_get:1401: inode #16: comm syz.0.1447: casefold flag without casefold feature [ 603.212795][ T9418] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.1447: couldn't read orphan inode 16 (err -117) [ 603.309786][ T9418] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 603.333300][ T9418] ext4 filesystem being mounted at /278/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 603.434402][ T9440] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1453'. [ 603.456012][ T26] audit: type=1326 audit(1731177235.898:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9417 comm="syz.0.1447" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3fd9294719 code=0x0 [ 604.674008][ T9448] device ip6tnl0 entered promiscuous mode [ 604.679833][ T9448] device vlan2 entered promiscuous mode [ 604.808513][ T9448] device ip6tnl0 left promiscuous mode [ 604.983092][ T26] audit: type=1326 audit(1731177237.408:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9451 comm="syz.1.1457" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 608.234129][ T9470] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1461'. [ 608.890961][ T9480] loop1: detected capacity change from 0 to 512 [ 609.351228][ T9480] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #16: comm syz.1.1465: casefold flag without casefold feature [ 609.707562][ T9480] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.1465: couldn't read orphan inode 16 (err -117) [ 609.812336][ T9480] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 609.833204][ T9480] ext4 filesystem being mounted at /310/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 609.950050][ T9497] loop0: detected capacity change from 0 to 2048 [ 609.993086][ T26] audit: type=1326 audit(1731177242.428:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9478 comm="syz.1.1465" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 610.474763][ T9497] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,minixdf,nolazytime,stripe=0x0000000000000020,,errors=continue. Quota mode: none. [ 610.536616][ T9490] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 64: padding at end of block bitmap is not set [ 610.973301][ T9497] ext4 filesystem being mounted at /281/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 611.833741][ T9490] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 612.669586][ T9508] fs-verity (loop0, inode 13): Error -117 writing Merkle tree block 0 [ 612.677933][ T9508] fs-verity (loop0, inode 13): Error -117 building Merkle tree [ 612.759998][ T9511] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1471'. [ 612.789262][ T9511] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1471'. [ 612.821572][ T9511] device team0 entered promiscuous mode [ 612.842105][ T9511] device team_slave_0 entered promiscuous mode [ 613.533225][ T9511] device team_slave_1 entered promiscuous mode [ 613.623280][ T9511] device team0 left promiscuous mode [ 613.628698][ T9511] device team_slave_0 left promiscuous mode [ 613.649683][ T9511] device team_slave_1 left promiscuous mode [ 613.837329][ T26] audit: type=1326 audit(1731177246.278:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9514 comm="syz.1.1470" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f35fe9e7719 code=0x0 [ 614.256740][ T9528] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1484'. [ 614.316854][ T9528] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1484'. [ 614.569012][ T9528] device team0 entered promiscuous mode [ 615.605172][ T9528] device team_slave_0 entered promiscuous mode [ 615.854764][ T9528] device team_slave_1 entered promiscuous mode [ 616.096868][ T9528] device team0 left promiscuous mode [ 616.106342][ T9528] device team_slave_0 left promiscuous mode [ 616.143144][ T9528] device team_slave_1 left promiscuous mode [ 616.451422][ T9540] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1478'. [ 619.942306][ T9577] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1486'. [ 623.979260][ T9552] chnl_net:caif_netlink_parms(): no params data found [ 624.626301][ T4540] Bluetooth: hci5: command 0x0409 tx timeout [ 627.258418][ T4540] Bluetooth: hci5: command 0x041b tx timeout [ 627.723214][ T9552] bridge0: port 1(bridge_slave_0) entered blocking state [ 627.794676][ T9552] bridge0: port 1(bridge_slave_0) entered disabled state [ 627.851342][ T9552] device bridge_slave_0 entered promiscuous mode [ 627.880571][ T9552] bridge0: port 2(bridge_slave_1) entered blocking state [ 627.887831][ T9552] bridge0: port 2(bridge_slave_1) entered disabled state [ 627.896148][ T9552] device bridge_slave_1 entered promiscuous mode [ 628.011605][ T9552] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 628.067837][ T9616] loop2: detected capacity change from 0 to 2048 [ 628.120620][ T4423] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 628.191497][ T9552] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 628.195107][ T9616] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,minixdf,nolazytime,stripe=0x0000000000000020,,errors=continue. Quota mode: none. [ 628.239529][ T9616] ext4 filesystem being mounted at /278/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 628.368244][ T4423] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 628.532001][ T9552] team0: Port device team_slave_0 added [ 628.560791][ T9552] team0: Port device team_slave_1 added [ 629.190765][ T9621] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1496: bg 0: block 345: padding at end of block bitmap is not set [ 629.229053][ T4423] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 629.250209][ T9621] fs-verity (loop2, inode 13): Error -117 writing Merkle tree block 0 [ 629.263058][ T9621] fs-verity (loop2, inode 13): Error -117 building Merkle tree [ 629.271654][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.278056][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 629.333268][ T4210] Bluetooth: hci5: command 0x040f tx timeout [ 629.457696][ T4423] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 629.505030][ T9552] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 629.524335][ T9552] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 629.591678][ T9552] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 629.655455][ T9627] device ip6tnl0 entered promiscuous mode [ 629.661258][ T9627] device vlan2 entered promiscuous mode [ 629.820531][ T9627] device ip6tnl0 left promiscuous mode [ 629.905287][ T9552] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 629.912423][ T9552] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 630.666650][ T9632] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1500'. [ 630.686624][ T9552] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 630.874176][ T9552] device hsr_slave_0 entered promiscuous mode [ 630.894871][ T9552] device hsr_slave_1 entered promiscuous mode [ 630.913835][ T9552] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 630.921428][ T9552] Cannot create hsr debugfs directory [ 630.985963][ T9634] device ip6tnl0 entered promiscuous mode [ 630.991766][ T9634] device vlan2 entered promiscuous mode [ 631.031452][ T9634] device ip6tnl0 left promiscuous mode [ 631.413442][ T4540] Bluetooth: hci5: command 0x0419 tx timeout [ 631.445857][ T4423] tipc: Left network mode [ 632.373261][ T9650] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1506'. [ 632.921584][ T9667] syz.1.1507[9667] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 632.921691][ T9667] syz.1.1507[9667] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 635.204578][ T9552] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 635.576915][ T9552] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 635.630526][ T9552] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 637.824153][ T9680] device ip6tnl0 entered promiscuous mode [ 637.829951][ T9680] device vlan2 entered promiscuous mode [ 638.156307][ T9680] device ip6tnl0 left promiscuous mode [ 638.292808][ T9552] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 638.582626][ T9700] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1518'. [ 642.820820][ T9721] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1524'. [ 642.821540][ T9724] loop0: detected capacity change from 0 to 2048 [ 642.841979][ T9721] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1524'. [ 642.857249][ T9721] device team0 entered promiscuous mode [ 642.863139][ T9721] device team_slave_0 entered promiscuous mode [ 642.874075][ T9721] device team_slave_1 entered promiscuous mode [ 643.095017][ T9721] device team0 left promiscuous mode [ 643.100350][ T9721] device team_slave_0 left promiscuous mode [ 643.108259][ T9721] device team_slave_1 left promiscuous mode [ 643.128578][ T9728] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1525'. [ 644.080893][ T9724] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,minixdf,nolazytime,stripe=0x0000000000000020,,errors=continue. Quota mode: none. [ 644.100807][ T9724] ext4 filesystem being mounted at /295/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 644.163157][ T9724] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1526: bg 0: block 345: padding at end of block bitmap is not set [ 644.201962][ T9742] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1538'. [ 644.219391][ T9724] fs-verity (loop0, inode 13): Error -117 writing Merkle tree block 0 [ 644.238766][ T9724] fs-verity (loop0, inode 13): Error -117 building Merkle tree [ 644.276028][ T9724] syz.0.1526 (9724) used greatest stack depth: 19104 bytes left [ 644.315991][ T9742] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1538'. [ 644.326784][ T9738] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1528'. [ 644.351404][ T9742] device team0 entered promiscuous mode [ 644.365967][ T9742] device team_slave_0 entered promiscuous mode [ 644.372557][ T9742] device team_slave_1 entered promiscuous mode [ 644.385872][ T9742] device team0 left promiscuous mode [ 644.391293][ T9742] device team_slave_0 left promiscuous mode [ 644.404034][ T9742] device team_slave_1 left promiscuous mode [ 644.450202][ T9552] 8021q: adding VLAN 0 to HW filter on device bond0 [ 644.475597][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 644.515836][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 644.839321][ T9552] 8021q: adding VLAN 0 to HW filter on device team0 [ 645.292892][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 645.381093][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 645.389958][ T4234] bridge0: port 1(bridge_slave_0) entered blocking state [ 645.397078][ T4234] bridge0: port 1(bridge_slave_0) entered forwarding state [ 645.515620][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 646.822144][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 646.952648][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 647.144546][ T9760] overlayfs: missing 'lowerdir' [ 647.523110][ T4234] bridge0: port 2(bridge_slave_1) entered blocking state [ 647.530292][ T4234] bridge0: port 2(bridge_slave_1) entered forwarding state [ 647.926602][ T9552] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 648.233691][ T9772] syz.2.1535[9772] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 648.233801][ T9772] syz.2.1535[9772] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 648.898957][ T9552] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 649.130590][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 649.139855][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 649.156264][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 649.169411][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 649.179819][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 649.189548][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 649.213690][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 649.242670][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 649.269008][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 649.287963][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 649.479719][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 651.470334][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 651.660566][ T9783] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1536'. [ 651.675749][ T9785] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1539'. [ 653.370259][ T9798] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1542'. [ 653.440906][ T9798] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1542'. [ 653.472575][ T9804] loop0: detected capacity change from 0 to 2048 [ 653.500034][ T9798] device team0 entered promiscuous mode [ 653.505697][ T9798] device team_slave_0 entered promiscuous mode [ 653.512163][ T9798] device team_slave_1 entered promiscuous mode [ 653.526851][ T9798] device team0 left promiscuous mode [ 653.540915][ T9798] device team_slave_0 left promiscuous mode [ 653.547822][ T9798] device team_slave_1 left promiscuous mode [ 654.005916][ T9804] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,minixdf,nolazytime,stripe=0x0000000000000020,,errors=continue. Quota mode: none. [ 654.403251][ T9804] ext4 filesystem being mounted at /298/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 654.744323][ T9820] loop2: detected capacity change from 0 to 256 [ 654.761104][ T9821] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1541: bg 0: block 345: padding at end of block bitmap is not set [ 654.776725][ T9821] fs-verity (loop0, inode 13): Error -117 writing Merkle tree block 0 [ 654.778097][ T9819] loop4: detected capacity change from 0 to 2048 [ 654.785045][ T9821] fs-verity (loop0, inode 13): Error -117 building Merkle tree [ 654.816470][ T9820] exFAT-fs (loop2): Invalid exboot-signature(sector = 7): 0xaa00006c [ 654.844415][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 654.860285][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 654.877032][ T9820] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 654.900087][ T9819] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,minixdf,nolazytime,stripe=0x0000000000000020,,errors=continue. Quota mode: none. [ 654.910009][ T9820] exFAT-fs (loop2): invalid boot region [ 654.921548][ T9820] exFAT-fs (loop2): failed to recognize exfat type [ 654.971926][ T9819] ext4 filesystem being mounted at /309/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 655.031552][ T9819] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1547: bg 0: block 345: padding at end of block bitmap is not set [ 655.080226][ T9552] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 655.102512][ T9819] fs-verity (loop4, inode 13): Error -117 writing Merkle tree block 0 [ 655.176173][ T9819] fs-verity (loop4, inode 13): Error -117 building Merkle tree [ 655.389925][ T4423] device dummy0 left promiscuous mode [ 655.420563][ T4423] device bond0 left promiscuous mode [ 655.437642][ T4423] device bond_slave_0 left promiscuous mode [ 655.466926][ T4423] device bond_slave_1 left promiscuous mode [ 655.602559][ T4423] device hsr_slave_0 left promiscuous mode [ 655.636150][ T4423] device hsr_slave_1 left promiscuous mode [ 655.667742][ T4423] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 655.675630][ T4423] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 655.687081][ T4423] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 655.695320][ T4423] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 655.703518][ T4423] device bridge_slave_1 left promiscuous mode [ 655.711584][ T4423] bridge0: port 2(bridge_slave_1) entered disabled state [ 655.889120][ T4423] device bridge_slave_0 left promiscuous mode [ 656.051240][ T4423] bridge0: port 1(bridge_slave_0) entered disabled state [ 656.580209][ T4423] device veth1_macvtap left promiscuous mode [ 656.652709][ T4423] device veth0_macvtap left promiscuous mode [ 656.720312][ T4423] device veth1_vlan left promiscuous mode [ 656.756806][ T4423] device veth0_vlan left promiscuous mode [ 657.353784][ T9859] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 657.362695][ T9859] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 657.374441][ T9859] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 659.057192][ T4423] team0 (unregistering): Port device team_slave_1 removed [ 659.082562][ T4423] team0 (unregistering): Port device team_slave_0 removed [ 659.118031][ T4423] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 659.147548][ T4423] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 659.310555][ T4423] bond0 (unregistering): Released all slaves [ 659.431218][ T9861] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1553'. [ 659.611631][ T9866] loop2: detected capacity change from 0 to 512 [ 659.646215][ T9868] device ip6tnl0 entered promiscuous mode [ 659.663136][ T9868] device vlan2 entered promiscuous mode [ 659.724484][ T9868] device ip6tnl0 left promiscuous mode [ 659.858202][ T9866] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #16: comm syz.2.1555: casefold flag without casefold feature [ 659.949832][ T1244] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 659.959019][ T9866] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1555: couldn't read orphan inode 16 (err -117) [ 659.964442][ T1244] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 660.003933][ T9866] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 660.029529][ T9866] ext4 filesystem being mounted at /295/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 660.104298][ T9552] device veth0_vlan entered promiscuous mode [ 660.163334][ T1244] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 660.187294][ T1244] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 660.213264][ T26] audit: type=1326 audit(1731177292.628:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9865 comm="syz.2.1555" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x0 [ 660.217575][ T1244] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 660.253772][ T1244] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 660.297998][ T9552] device veth1_vlan entered promiscuous mode [ 661.078441][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 661.159132][ T9890] loop4: detected capacity change from 0 to 256 [ 661.300468][ T9890] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 661.303700][ T9887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 661.343534][ T9890] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 661.350328][ T9887] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 661.357948][ T9896] loop0: detected capacity change from 0 to 512 [ 661.377031][ T9552] device veth0_macvtap entered promiscuous mode [ 661.383790][ T9890] exFAT-fs (loop4): invalid boot region [ 661.389376][ T9890] exFAT-fs (loop4): failed to recognize exfat type [ 661.408063][ T9552] device veth1_macvtap entered promiscuous mode [ 661.454490][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 661.485784][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 661.512211][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 661.551601][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 661.572119][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 661.595545][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 661.619321][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 661.641035][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 661.666958][ T9552] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 661.689166][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 661.701818][ T9896] EXT4-fs (loop0): Ignoring removed nobh option [ 661.706712][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 661.717792][ T9896] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 661.747188][ T9896] EXT4-fs (loop0): can't mount with commit=14, fs mounted w/o journal [ 661.772676][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 661.899007][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 661.985614][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 662.013073][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 662.022916][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 662.033713][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 662.063040][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 662.241903][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 662.605386][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 662.675220][ T9905] loop4: detected capacity change from 0 to 256 [ 662.686617][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 662.737799][ T9905] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 662.756992][ T9552] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 662.797227][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 662.826668][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 662.895088][ T9905] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 662.942456][ T9552] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 662.963931][ T9905] exFAT-fs (loop4): invalid boot region [ 662.969525][ T9905] exFAT-fs (loop4): failed to recognize exfat type [ 663.037054][ T9552] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 663.115290][ T9552] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 664.281463][ T9552] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 664.556845][ T9919] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1564'. [ 664.593639][ T9919] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1564'. [ 664.670501][ T9919] device team0 entered promiscuous mode [ 664.684319][ T9919] device team_slave_0 entered promiscuous mode [ 664.698646][ T9919] device team_slave_1 entered promiscuous mode [ 664.736883][ T9919] device team0 left promiscuous mode [ 664.747958][ T9919] device team_slave_0 left promiscuous mode [ 664.771925][ T9919] device team_slave_1 left promiscuous mode [ 664.867183][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 664.900479][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 664.985640][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 665.211633][ T7411] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 666.216665][ T7411] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 666.318023][ T9942] device ip6tnl0 entered promiscuous mode [ 666.396287][ T9942] device vlan2 entered promiscuous mode [ 666.475988][ T9942] device ip6tnl0 left promiscuous mode [ 666.568387][ T9947] loop0: detected capacity change from 0 to 256 [ 666.666484][ T9887] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 666.722819][ T9947] exFAT-fs (loop0): Invalid exboot-signature(sector = 7): 0xaa00006c [ 666.758762][ T9947] exFAT-fs (loop0): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 666.883164][ T9947] exFAT-fs (loop0): invalid boot region [ 666.888850][ T9947] exFAT-fs (loop0): failed to recognize exfat type [ 670.474505][ T9973] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1576'. [ 670.824904][ T9973] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1576'. [ 670.866784][ T9983] loop1: detected capacity change from 0 to 256 [ 670.922110][ T9983] exFAT-fs (loop1): Invalid exboot-signature(sector = 7): 0xaa00006c [ 671.146526][ T9983] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 671.821059][ T9973] device team0 entered promiscuous mode [ 671.826713][ T9973] device team_slave_0 entered promiscuous mode [ 671.833082][ T9973] device team_slave_1 entered promiscuous mode [ 671.840124][ T9983] exFAT-fs (loop1): invalid boot region [ 671.853036][ T9983] exFAT-fs (loop1): failed to recognize exfat type [ 672.853474][ T9973] device team0 left promiscuous mode [ 672.909169][ T9973] device team_slave_0 left promiscuous mode [ 672.924469][ T9973] device team_slave_1 left promiscuous mode [ 673.004571][ T9990] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1579'. [ 673.017487][ T9990] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1579'. [ 673.531543][T10004] device ip6tnl0 entered promiscuous mode [ 673.595879][T10004] device vlan2 entered promiscuous mode [ 674.060517][T10004] device ip6tnl0 left promiscuous mode [ 676.815886][T10033] loop0: detected capacity change from 0 to 256 [ 676.954584][T10033] exFAT-fs (loop0): Invalid exboot-signature(sector = 7): 0xaa00006c [ 677.001633][T10033] exFAT-fs (loop0): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 677.053558][T10033] exFAT-fs (loop0): invalid boot region [ 677.087661][T10033] exFAT-fs (loop0): failed to recognize exfat type [ 678.175382][T10055] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1595'. [ 678.247476][T10057] loop5: detected capacity change from 0 to 256 [ 678.254029][T10055] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1595'. [ 678.337822][T10055] device team0 entered promiscuous mode [ 678.379488][T10055] device team_slave_0 entered promiscuous mode [ 678.386576][T10055] device team_slave_1 entered promiscuous mode [ 678.414277][T10055] device team0 left promiscuous mode [ 678.425499][T10055] device team_slave_0 left promiscuous mode [ 678.445387][T10055] device team_slave_1 left promiscuous mode [ 678.689185][T10057] exFAT-fs (loop5): Invalid exboot-signature(sector = 7): 0xaa00006c [ 678.790526][T10068] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 678.799637][T10068] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 678.811428][T10068] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 679.662812][T10057] exFAT-fs (loop5): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 679.730195][T10057] exFAT-fs (loop5): invalid boot region [ 679.753084][T10057] exFAT-fs (loop5): failed to recognize exfat type [ 679.881337][T10078] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1602'. [ 686.258651][T10126] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 686.339010][T10126] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 686.386966][T10130] loop4: detected capacity change from 0 to 256 [ 686.459875][T10123] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1611'. [ 686.470996][T10126] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 686.605690][T10130] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 686.654221][T10130] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 686.722573][T10130] exFAT-fs (loop4): invalid boot region [ 686.729020][T10130] exFAT-fs (loop4): failed to recognize exfat type [ 686.879701][T10153] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1616'. [ 690.182320][T10193] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1627'. [ 691.821973][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 691.828358][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 692.137358][T10208] loop0: detected capacity change from 0 to 256 [ 692.354282][T10208] exFAT-fs (loop0): Invalid exboot-signature(sector = 7): 0xaa00006c [ 692.539976][T10208] exFAT-fs (loop0): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 692.857486][T10208] exFAT-fs (loop0): invalid boot region [ 692.864316][T10208] exFAT-fs (loop0): failed to recognize exfat type [ 693.060676][T10221] device ip6tnl0 entered promiscuous mode [ 693.074833][T10221] device vlan2 entered promiscuous mode [ 693.114261][T10221] device ip6tnl0 left promiscuous mode [ 693.124008][T10220] loop1: detected capacity change from 0 to 2048 [ 693.339422][T10220] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,minixdf,nolazytime,stripe=0x0000000000000020,,errors=continue. Quota mode: none. [ 693.375916][T10220] ext4 filesystem being mounted at /345/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 694.301257][T10236] loop2: detected capacity change from 0 to 1024 [ 694.556900][T10236] EXT4-fs (loop2): Test dummy encryption mode enabled [ 694.671811][T10248] overlayfs: missing 'workdir' [ 695.970688][T10231] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 696.259589][T10255] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1641'. [ 696.411952][T10236] EXT4-fs (loop2): Can't change test_dummy_encryption on remount [ 698.750364][T10285] loop5: detected capacity change from 0 to 256 [ 698.890074][T10285] exFAT-fs (loop5): Invalid exboot-signature(sector = 7): 0xaa00006c [ 698.969156][T10285] exFAT-fs (loop5): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 699.063470][T10285] exFAT-fs (loop5): invalid boot region [ 699.074247][T10285] exFAT-fs (loop5): failed to recognize exfat type [ 699.777897][T10305] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1651'. [ 699.833131][ T26] audit: type=1326 audit(1731177332.218:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.0.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fd9294719 code=0x7ffc0000 [ 699.940734][ T26] audit: type=1326 audit(1731177332.218:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.0.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fd9294719 code=0x7ffc0000 [ 700.089279][ T26] audit: type=1326 audit(1731177332.218:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.0.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f3fd9294719 code=0x7ffc0000 [ 701.023045][ T26] audit: type=1326 audit(1731177332.228:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.0.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fd9294719 code=0x7ffc0000 [ 701.182242][ T26] audit: type=1326 audit(1731177332.228:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.0.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fd9294719 code=0x7ffc0000 [ 710.285511][T10387] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1672'. [ 710.713311][T10402] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1673'. [ 710.984727][ T26] audit: type=1326 audit(1731177343.058:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.1.1673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x7ffc0000 [ 712.018942][ T26] audit: type=1326 audit(1731177343.058:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.1.1673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x7ffc0000 [ 712.103076][ T26] audit: type=1326 audit(1731177343.158:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.1.1673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f35fe9e7719 code=0x7ffc0000 [ 712.218002][ T26] audit: type=1326 audit(1731177343.158:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.1.1673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x7ffc0000 [ 712.285891][T10415] loop4: detected capacity change from 0 to 256 [ 712.574024][T10421] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1677'. [ 713.533023][ T26] audit: type=1326 audit(1731177343.158:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.1.1673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x7ffc0000 [ 713.575111][T10417] loop5: detected capacity change from 0 to 1024 [ 713.828775][T10417] EXT4-fs (loop5): Test dummy encryption mode enabled [ 713.843656][T10417] EXT4-fs (loop5): Can't change test_dummy_encryption on remount [ 713.863940][T10415] exFAT-fs (loop4): Invalid exboot-signature(sector = 7): 0xaa00006c [ 713.967749][ T26] audit: type=1326 audit(1731177344.978:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10411 comm="syz.2.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 714.024648][T10415] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x2119ad3c) [ 714.120730][T10415] exFAT-fs (loop4): invalid boot region [ 714.472316][ T26] audit: type=1326 audit(1731177344.978:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10411 comm="syz.2.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 714.505753][T10415] exFAT-fs (loop4): failed to recognize exfat type [ 714.532601][ T26] audit: type=1326 audit(1731177345.008:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10411 comm="syz.2.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 714.731231][ T26] audit: type=1326 audit(1731177345.028:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10411 comm="syz.2.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 715.983689][ T26] audit: type=1326 audit(1731177345.028:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10411 comm="syz.2.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde21a8c719 code=0x7ffc0000 [ 716.416927][T10450] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1688'. [ 717.810733][ T26] audit: type=1326 audit(1731177348.858:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.1.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x7ffc0000 [ 823.712923][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 823.719594][ C1] rcu: 1-...!: (1 GPs behind) idle=5cd/1/0x4000000000000000 softirq=28766/28767 fqs=1 [ 823.730690][ C1] (t=10500 jiffies g=36677 q=309) [ 823.735827][ C1] rcu: rcu_preempt kthread starved for 10498 jiffies! g36677 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 823.747034][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 823.757007][ C1] rcu: RCU grace-period kthread stack dump: [ 823.762902][ C1] task:rcu_preempt state:R running task stack:27256 pid: 15 ppid: 2 flags:0x00004000 [ 823.773701][ C1] Call Trace: [ 823.776992][ C1] [ 823.779935][ C1] __schedule+0x12c4/0x45b0 [ 823.784467][ C1] ? _raw_spin_unlock_irqrestore+0x8b/0x130 [ 823.790384][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 823.796303][ C1] ? __mod_timer+0xa8e/0xeb0 [ 823.800918][ C1] ? release_firmware_map_entry+0x190/0x190 [ 823.806825][ C1] ? mod_timer_pending+0x20/0x20 [ 823.811778][ C1] ? lockdep_softirqs_off+0x420/0x420 [ 823.817172][ C1] schedule+0x11b/0x1f0 [ 823.821344][ C1] schedule_timeout+0x1b9/0x300 [ 823.826219][ C1] ? console_conditional_schedule+0x40/0x40 [ 823.832129][ C1] ? update_process_times+0x200/0x200 [ 823.837525][ C1] ? prepare_to_swait_event+0x321/0x340 [ 823.843090][ C1] rcu_gp_fqs_loop+0x2bf/0x1080 [ 823.847966][ C1] ? dump_blkd_tasks+0x810/0x810 [ 823.852925][ C1] ? rcu_gp_init+0x1140/0x1140 [ 823.857709][ C1] ? finish_swait+0xc5/0x1d0 [ 823.862318][ C1] rcu_gp_kthread+0xa4/0x360 [ 823.866923][ C1] ? _raw_spin_unlock+0x40/0x40 [ 823.871799][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 823.876926][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 823.882845][ C1] ? __kthread_parkme+0x15c/0x1c0 [ 823.887895][ C1] kthread+0x3f6/0x4f0 [ 823.891976][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 823.897106][ C1] ? kthread_blkcg+0xd0/0xd0 [ 823.901711][ C1] ret_from_fork+0x1f/0x30 [ 823.906156][ C1] [ 823.909182][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 823.915505][ C1] Sending NMI from CPU 1 to CPUs 0: [ 823.920730][ C0] NMI backtrace for cpu 0 [ 823.920741][ C0] CPU: 0 PID: 10460 Comm: syz.1.1689 Not tainted 5.15.171-syzkaller #0 [ 823.920758][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 823.920768][ C0] RIP: 0010:rcu_is_watching+0x4/0xa0 [ 823.920789][ C0] Code: 5d 41 5e 41 5f 5d c3 e8 da 15 c9 08 41 f7 c4 00 02 00 00 75 b4 eb b3 e8 ba 15 c9 08 66 2e 0f 1f 84 00 00 00 00 00 41 57 41 56 <53> 65 ff 05 9c 46 97 7e e8 5f 29 c9 08 89 c3 83 f8 08 73 72 49 bf [ 823.920804][ C0] RSP: 0018:ffffc90003207a48 EFLAGS: 00000202 [ 823.920819][ C0] RAX: 0000000000000002 RBX: 0000000000000001 RCX: ffffffff812f1242 [ 823.920830][ C0] RDX: ffff88807f8d9dc0 RSI: 0000000000000001 RDI: 0000000000000000 [ 823.920841][ C0] RBP: ffffc90003207c01 R08: ffffffff812f126a R09: fffffbfff1bd2cd6 [ 823.920854][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000 [ 823.920865][ C0] R13: 1ffff1100ff1b6a9 R14: ffff88807f8d9dc0 R15: dffffc0000000000 [ 823.920878][ C0] FS: 00007f35fce3e6c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000 [ 823.920893][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 823.920905][ C0] CR2: 000000002006b000 CR3: 0000000062c28000 CR4: 00000000003506f0 [ 823.920919][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 823.920929][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 823.920939][ C0] Call Trace: [ 823.920945][ C0] [ 823.920951][ C0] ? nmi_cpu_backtrace+0x39f/0x4a0 [ 823.920970][ C0] ? read_lock_is_recursive+0x10/0x10 [ 823.920989][ C0] ? nmi_trigger_cpumask_backtrace+0x2a0/0x2a0 [ 823.921008][ C0] ? unknown_nmi_error+0xd0/0xd0 [ 823.921034][ C0] ? nmi_cpu_backtrace_handler+0x8/0x10 [ 823.921051][ C0] ? nmi_handle+0xf7/0x370 [ 823.921069][ C0] ? rcu_is_watching+0x4/0xa0 [ 823.921085][ C0] ? default_do_nmi+0x62/0x150 [ 823.921104][ C0] ? exc_nmi+0xa8/0x100 [ 823.921121][ C0] ? end_repeat_nmi+0x16/0x31 [ 823.921139][ C0] ? fpregs_activate+0x7a/0x1c0 [ 823.921156][ C0] ? fpregs_activate+0x52/0x1c0 [ 823.921173][ C0] ? rcu_is_watching+0x4/0xa0 [ 823.921190][ C0] ? rcu_is_watching+0x4/0xa0 [ 823.921207][ C0] ? rcu_is_watching+0x4/0xa0 [ 823.921224][ C0] [ 823.921229][ C0] [ 823.921234][ C0] fpregs_activate+0x84/0x1c0 [ 823.921252][ C0] fpregs_mark_activate+0x23/0x80 [ 823.921270][ C0] fpu__restore_sig+0x83c/0x1100 [ 823.921292][ C0] ? copy_fpstate_to_sigframe+0xb40/0xb40 [ 823.921319][ C0] ? __might_fault+0xb4/0x110 [ 823.921348][ C0] restore_sigcontext+0x638/0x710 [ 823.921371][ C0] ? __do_compat_sys_x32_rt_sigreturn+0x250/0x250 [ 823.921405][ C0] ? set_current_blocked+0x40/0x40 [ 823.921423][ C0] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 823.921443][ C0] __do_sys_rt_sigreturn+0x190/0x250 [ 823.921464][ C0] ? x32_copy_siginfo_to_user+0x270/0x270 [ 823.921484][ C0] ? syscall_enter_from_user_mode+0x2e/0x240 [ 823.921504][ C0] ? lockdep_hardirqs_on+0x94/0x130 [ 823.921524][ C0] ? syscall_enter_from_user_mode+0x2e/0x240 [ 823.921545][ C0] do_syscall_64+0x3b/0xb0 [ 823.921561][ C0] ? clear_bhb_loop+0x15/0x70 [ 823.921577][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 823.921598][ C0] RIP: 0033:0x7f35fe9e7717 [ 823.921614][ C0] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 [ 823.921628][ C0] RSP: 002b:00007f35fce3e038 EFLAGS: 00000246 [ 823.921641][ C0] RAX: 000000000000012b RBX: 00007f35feb9f058 RCX: 00007f35fe9e7719 [ 823.921652][ C0] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 823.921663][ C0] RBP: 00007f35fea5a39e R08: 0000000000000000 R09: 0000000000000000 [ 823.921673][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 823.921683][ C0] R13: 0000000000000000 R14: 00007f35feb9f058 R15: 00007fff6fbf7d68 [ 823.921702][ C0] [ 823.921729][ C1] NMI backtrace for cpu 1 [ 824.308476][ C1] CPU: 1 PID: 10447 Comm: syz.5.1686 Not tainted 5.15.171-syzkaller #0 [ 824.316714][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 824.326773][ C1] Call Trace: [ 824.330053][ C1] [ 824.332887][ C1] dump_stack_lvl+0x1e3/0x2d0 [ 824.337556][ C1] ? io_uring_drop_tctx_refs+0x1a0/0x1a0 [ 824.343265][ C1] ? panic+0x860/0x860 [ 824.347335][ C1] ? read_lock_is_recursive+0x10/0x10 [ 824.352711][ C1] nmi_cpu_backtrace+0x46a/0x4a0 [ 824.357754][ C1] ? nmi_trigger_cpumask_backtrace+0x2a0/0x2a0 [ 824.363913][ C1] ? try_to_wake_up+0x844/0x1300 [ 824.368851][ C1] ? _raw_spin_lock_irqsave+0xdd/0x120 [ 824.374302][ C1] ? _raw_spin_lock+0x40/0x40 [ 824.378974][ C1] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 824.385029][ C1] nmi_trigger_cpumask_backtrace+0x181/0x2a0 [ 824.391004][ C1] rcu_dump_cpu_stacks+0x223/0x390 [ 824.396111][ C1] print_cpu_stall+0x320/0x600 [ 824.400865][ C1] rcu_sched_clock_irq+0x8d9/0x1150 [ 824.406053][ C1] ? rcutree_dead_cpu+0x20/0x20 [ 824.410909][ C1] ? hrtimer_run_queues+0x163/0x450 [ 824.416112][ C1] ? account_process_tick+0x232/0x3a0 [ 824.421486][ C1] update_process_times+0x196/0x200 [ 824.426725][ C1] tick_sched_timer+0x386/0x550 [ 824.431574][ C1] ? tick_setup_sched_timer+0x2d0/0x2d0 [ 824.437258][ C1] __hrtimer_run_queues+0x55b/0xcf0 [ 824.442521][ C1] ? hrtimer_interrupt+0x980/0x980 [ 824.447627][ C1] ? ktime_get_update_offsets_now+0x407/0x420 [ 824.453710][ C1] hrtimer_interrupt+0x392/0x980 [ 824.458735][ C1] __sysvec_apic_timer_interrupt+0x13b/0x4b0 [ 824.464731][ C1] sysvec_apic_timer_interrupt+0x9b/0xc0 [ 824.470375][ C1] [ 824.473297][ C1] [ 824.476229][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 824.482377][ C1] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40 [ 824.488206][ C1] Code: 51 67 f6 ff 90 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 4e 0b 25 f7 48 89 df e8 a6 5f 26 f7 e8 61 1a 49 f7 fb bf 01 00 00 00 06 a5 19 f7 65 8b 05 17 98 c4 75 85 c0 74 02 5b c3 e8 e4 b4 c2 [ 824.507810][ C1] RSP: 0018:ffffc90002da7bc0 EFLAGS: 00000282 [ 824.513870][ C1] RAX: 62bd851efee24400 RBX: ffff88802aa540c0 RCX: ffffffff96869f03 [ 824.521831][ C1] RDX: dffffc0000000000 RSI: ffffffff8a8b2a80 RDI: 0000000000000001 [ 824.529787][ C1] RBP: 0000000000000000 R08: ffffffff8186f230 R09: ffffed100554a819 [ 824.537886][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000021 [ 824.545860][ C1] R13: dffffc0000000000 R14: ffff88802aa54558 R15: ffff88802aa540c0 [ 824.553943][ C1] ? trace_hardirqs_on+0x30/0x80 [ 824.558893][ C1] get_signal+0x13ee/0x14e0 [ 824.563399][ C1] arch_do_signal_or_restart+0xc3/0x1890 [ 824.569027][ C1] ? __do_compat_sys_x32_rt_sigreturn+0x250/0x250 [ 824.575451][ C1] ? __might_fault+0xb4/0x110 [ 824.580130][ C1] ? _copy_from_user+0x10f/0x170 [ 824.585057][ C1] ? restore_altstack+0x274/0x400 [ 824.590072][ C1] ? get_sigframe_size+0x10/0x10 [ 824.595013][ C1] ? __ia32_sys_sigaltstack+0x60/0x60 [ 824.600426][ C1] ? __do_sys_rt_sigreturn+0x19d/0x250 [ 824.605875][ C1] ? exit_to_user_mode_loop+0x39/0x130 [ 824.611323][ C1] exit_to_user_mode_loop+0x97/0x130 [ 824.616608][ C1] exit_to_user_mode_prepare+0xb1/0x140 [ 824.622140][ C1] syscall_exit_to_user_mode+0x5d/0x240 [ 824.627677][ C1] do_syscall_64+0x47/0xb0 [ 824.632081][ C1] ? clear_bhb_loop+0x15/0x70 [ 824.636934][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 824.642818][ C1] RIP: 0033:0x7f026e25db7c [ 824.647252][ C1] Code: 49 89 d5 4c 8b 72 28 48 89 44 24 08 8b 42 04 85 c0 0f 84 ba 00 00 00 40 0f b6 c6 c6 44 24 1e 01 45 31 ff 45 31 e4 89 44 24 18 <48> 8b 7c 24 08 44 89 fa 4d 8b 4d 30 4c 89 e0 48 8d 14 d7 4e 03 0c [ 824.666844][ C1] RSP: 002b:00007fff269bdf10 EFLAGS: 00000297 [ 824.672912][ C1] RAX: 0000000000000001 RBX: 00007f026f066720 RCX: ffffffff83c4013b [ 824.680880][ C1] RDX: 000000000000013b RSI: ffffffff83c4013b RDI: 000000000000000a [ 824.688855][ C1] RBP: 0000000000000000 R08: 00007f026e521000 R09: 00007f026e523000 [ 824.696826][ C1] R10: 0000000083c4013f R11: 000000000000000a R12: ffffffff83c4049f [ 824.704806][ C1] R13: 00007f026e537018 R14: 0000000000000008 R15: 0000000000031f10 [ 824.712780][ C1] ? security_socket_recvmsg+0x7f/0xb0 [ 824.718242][ C1] ? security_socket_bind+0x1b/0xa0 [ 824.723439][ C1] ? security_socket_bind+0x1b/0xa0 [ 824.728646][ C1] [ 824.803521][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 824.810609][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 SYZFAIL: failed to send rpc fd=3 want=2888 sent=0 n=-1 (errno 32: Broken pipe) [ 825.180529][ T26] audit: type=1326 audit(1731177348.858:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.1.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x7ffc0000 [ 825.532980][ T26] audit: type=1326 audit(1731177348.858:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.1.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f35fe9e7719 code=0x7ffc0000 [ 825.801454][ T26] audit: type=1326 audit(1731177348.868:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.1.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x7ffc0000 [ 825.995240][ T26] audit: type=1326 audit(1731177348.868:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.1.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe9e7719 code=0x7ffc0000 [ 826.138052][ T4168] syz-executor (4168) used greatest stack depth: 19000 bytes left [ 826.254244][ T9887] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 826.410654][ T9887] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 826.480654][ T9887] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 826.542115][ T9887] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 826.681167][ T9887] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 826.729985][ T9887] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 826.810564][ T9887] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 826.859496][ T9887] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 827.044039][ T9887] tipc: Left network mode [ 827.068654][ T9887] tipc: Left network mode [ 828.043398][ T9887] device dummy0 left promiscuous mode [ 828.050624][ T9887] device bond0 left promiscuous mode [ 828.058319][ T9887] device bond_slave_0 left promiscuous mode [ 828.069144][ T9887] device bond_slave_1 left promiscuous mode [ 828.080370][ T9887] device hsr_slave_0 left promiscuous mode [ 828.087687][ T9887] device hsr_slave_1 left promiscuous mode [ 828.094527][ T9887] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 828.101960][ T9887] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 828.110240][ T9887] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 828.118221][ T9887] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 828.126354][ T9887] device bridge_slave_1 left promiscuous mode [ 828.132586][ T9887] bridge0: port 2(bridge_slave_1) entered disabled state [ 828.142440][ T9887] device bridge_slave_0 left promiscuous mode [ 828.149573][ T9887] bridge0: port 1(bridge_slave_0) entered disabled state [ 828.170832][ T9887] device dummy0 left promiscuous mode [ 828.180739][ T9887] device bond0 left promiscuous mode [ 828.189388][ T9887] device bond_slave_0 left promiscuous mode [ 828.199433][ T9887] device bond_slave_1 left promiscuous mode [ 828.208977][ T9887] device bridge0 left promiscuous mode [ 828.234397][ T9887] device hsr_slave_0 left promiscuous mode [ 828.240938][ T9887] device hsr_slave_1 left promiscuous mode [ 828.249399][ T9887] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 828.257314][ T9887] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 828.265500][ T9887] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 828.273453][ T9887] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 828.281554][ T9887] device bridge_slave_1 left promiscuous mode [ 828.288113][ T9887] bridge0: port 2(bridge_slave_1) entered disabled state [ 828.297621][ T9887] device bridge_slave_0 left promiscuous mode [ 828.304061][ T9887] bridge0: port 1(bridge_slave_0) entered disabled state [ 828.321614][ T9887] device veth1_macvtap left promiscuous mode [ 828.327717][ T9887] device veth0_macvtap left promiscuous mode [ 828.334072][ T9887] device veth1_vlan left promiscuous mode [ 828.339869][ T9887] device veth0_vlan left promiscuous mode [ 828.350886][ T9887] device veth1_macvtap left promiscuous mode [ 828.357338][ T9887] device veth0_macvtap left promiscuous mode [ 828.363989][ T9887] device veth1_vlan left promiscuous mode [ 828.369774][ T9887] device veth0_vlan left promiscuous mode [ 828.936208][ T9887] team0 (unregistering): Port device team_slave_1 removed [ 828.952444][ T9887] team0 (unregistering): Port device team_slave_0 removed [ 828.968832][ T9887] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 828.982412][ T9887] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 829.051629][ T9887] bond0 (unregistering): Released all slaves [ 829.358046][ T9887] team0 (unregistering): Port device team_slave_1 removed [ 829.375661][ T9887] team0 (unregistering): Port device team_slave_0 removed [ 829.388071][ T9887] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 829.402601][ T9887] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 829.471266][ T9887] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 829.480579][ T9887] bond0 (unregistering): Released all slaves [ 831.748888][ T9887] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 831.800844][ T9887] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 831.855383][ T9887] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 831.902402][ T9887] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 832.070765][ T9887] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 832.140321][ T9887] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 832.189959][ T9887] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 832.229456][ T9887] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 832.366462][ T9887] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 832.442251][ T9887] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 832.500214][ T9887] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 832.560365][ T9887] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 832.799011][ T9887] tipc: Left network mode