last executing test programs: 11m16.13893453s ago: executing program 3 (id=1825): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10) rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) timer_create(0x3, 0x0, &(0x7f0000044000)=0x0) timer_delete(r1) 11m15.752098212s ago: executing program 3 (id=1829): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x9, 0x8, 0xdd, 0xff}, 0x50) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x5, 0x4, 0xfff, 0x9, 0x0, 0xffffffffffffffff, 0x3}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000010000000400000004"], 0x50) 11m15.53538525s ago: executing program 3 (id=1831): write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x31) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1, 0x4, 0x4, 0x4, 0x4, 0x1}, 0x48) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000001000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000140)='mm_page_free_batched\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.time_recursive\x00', 0x275a, 0x0) write$cgroup_int(r2, &(0x7f0000000100)=0x8, 0x12) ioctl$SIOCSIFHWADDR(r2, 0x4030582b, &(0x7f0000000000)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}}) 11m15.394555981s ago: executing program 3 (id=1833): syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x244, &(0x7f0000000400)="$eJzs3T9oJFUcB/DvzO565m6RUxtB/AMiooFwdoJNbBQCEoKIoEJExEZJhJhgl1jZWGitksomiJ3RUtIEG0WwipoiNoIGC4OFFiu7k0hMVqNu3Dkynw9MZibz3vzesPN9u83sBmisq0mmk7SSTCbpJCmON7i7Wq4e7q5PbM8nvd4TPxWDdtV+5ajflSRrSR5KslUWeamdrGw+s/fLzmP3vbncuff9zacnxnqRh/b3dh8/eG/2jY9mHlz54qsfZotMp/un6zp/xZD/tYvklv+j2HWiaNc9Av6Judc+/Lqf+1uT3DPIfydlqhfvraUbtjp54N2/6vv2j1/ePs6xAuev1+v03wPXekDjlEm6KcqpJNV2WU5NVZ/hv2ldLl9eXHp18sXF5YUX6p6pgPPSTXYf/eTSx1dO5P/7VpV/4OLq5//JuY1v+9sHrbpHA4zFHdWqn//J51bvj/xD48g/NJf8Q3PJPzSX/ENzyT80l/zDBdb5+8PyD80l/9Bc8g/NdTz/AECz9C7V/QQyUJe65x8AAAAAAAAAAAAAAAAAAOC09Ynt+aNlXDU/eyfZfyRJe1j91uD3iJMbB38v/1z0m/2hqLqN5Nm7RjzBiD6o+enrm76rt/7nd9Zbf3UhWXs9ybV2+/T9Vxzef//dzWcc7zw/YoF/qTix//BT461/0m8b9daf2Uk+7c8/14bNP2VuG6yHzz/ds79i+Uyv/DriCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABib3wMAAP//+kBtTA==") creat(&(0x7f0000000200)='./bus\x00', 0x10) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49) preadv2(r0, &(0x7f0000000d80)=[{&(0x7f0000001200)=""/4096, 0x100000}], 0x1, 0x0, 0x0, 0x1b) pipe2(0x0, 0x80040) 11m14.187482141s ago: executing program 3 (id=1836): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) fsopen(&(0x7f00000000c0)='ecryptfs\x00', 0x0) request_key(&(0x7f0000000040)='id_legacy\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000080)='].\x00', 0x0) sendmsg$IPSET_CMD_RENAME(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x14, 0x5, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x20040000) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='D\x00\x00', @ANYRES16=r5, @ANYBLOB="0700000000000000000005000000180003800800040000000000080002000900000004000100180001801400020073797a5f74756e000000000000000000"], 0x44}}, 0x0) r6 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c) setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0) sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x13, 0x17, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000008000000bf09000000000000b60904000000000065000600090000001801000020646c2500000000002020207b9af8ff000000002d9a00000000000034090000f8ffffffb702000008000000b70300000000000015000000061e00003d93000000000000b5030000000000008500000076000000b70000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) write$cgroup_devices(0xffffffffffffffff, 0x0, 0x8) write$cgroup_devices(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYBLOB='b 75:*\tm'], 0xa) setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, 0x0, 0x0) 11m10.831503136s ago: executing program 3 (id=1844): syz_mount_image$udf(&(0x7f0000000100), &(0x7f0000000f00)='./file0\x00', 0x14444, &(0x7f0000001d80)=ANY=[@ANYBLOB="696f636861727365743d61736369692c6e6f6164696e696362000064696e6963622c6769643d69676e6f72652c7569643d666f726765742c756d61736b3d30303030303030303030303030303030303030303030322c076f6e6761642c6769643d771d0f4d30dc61469a581342d98a7a4c3534a971c3e26de72edc9ec3db403d8b2e970b9dcea448ddbb5a116ce6f67d99a77aa50bce7fc5451bcf5b13e9698d80385c54fff77d38aa9703314cd19a075893a1648dd8ef78a118122ee7a0e400"/203, @ANYRESDEC=0x0, @ANYBLOB=',nostrict,\x00'], 0xfe, 0xc22, &(0x7f00000002c0)="$eJzs3UFsHNd9B+D/Gy1FSm4rJk5Uu43bTVukMmO5sqSYilW4q5pmG0CWiVDMLQBX5EpdmCIJkmpkI22YXnroIUBR9JATgdYokKKB0RRBj2zrAsnFhyKnnogWNoKiB7YIkFPAYGbfikuKsmhTpCj7+2zqNzvz3sx7M+sZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxO+/fOnMc+lhtwIAOEhXxr985qznPwB8rFz1//8AAAAAAAAAAAAAAHDYpSji8Ugxf2U9TVafOwYut2dv3Z4YGd252rFU1TxSlS9/Bp47e+78F54fvtDN96//oD0Zr45fvVR/ae7m/EJrcbE1XZ+YbU/NTbd2vYe91t9uqDoB9Zuv3Zq+fn2xfvbZc1s23x58r/+xk4MXh58+/VS37MTI6Oh4T5la34c++l3uNcLjaBRxOlI8890fp2ZEFLH3c3Gf785+O1Z1YqjqxMTIaNWRmXZzdqncONY9EUVEvadSo3uODuBa7EkjYrlsftngobJ74/PNhea1mVZ9rLmw1F5qz82OpU5ry/7Uo4gLKWIlItb6795dXxRRixTfPrGerkXEke55+Hw1MPje7Sj2sY+7ULaz3hexUjwC1+wQ648iXokUP3m7iKnynOWf+FzEK2V+P+LNMl+MSOUX43zEuzt8j3g01aKIvyiv/8X1NB0RGyc660frl79S/9Ls9bmest37yiP/fDhIh/zeNBBFNKs7/nr68L/ZAQAAAAAAAAAAAAAAAOBBOxZFPBkpXv6PP67GFUc1Lv3ExeE/GPzF3jHjT9xnP2XZZyNiudjdmNyjeQjxWBpL6SGPJf44G4gi/iSP//vmw24MAAAAAAAAAAAAAAAAAADAx1oRP4oUL7xzKq1E75zi7dkb9avNazOdWWG7c/9250zf2NjYqKdONnJO5lzOuZJzNedazihy/ZyNnJM5l3Ou5FzNuZYzjuT6ORs5J3Mu51zJuZpzLWfUcv2cjZyTOZdzruRczbmWMw7J3L0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB8lRRTxs0jxra+tp0gR0YiYjE6u9nfLAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPU38q4nuRov6HjTvrahGRqn87TpW/nI/G0TI/GY3hMl+MxqWczSprjW/e92hpX/rAh9eXivhhpOgfeOvO1cnXv6/zafOavfn1zU+/Uuvkke7Gwff6Hzt54uLw6K89ca/lHa/+0OX27K3b9YmR0dHxntW1fPRP9qwbzMctHkzXiYjF1994rTkz01qw8PFYqHUWanFI2nNQC/l+FYelPdsXGoejGZsLD/nGxIEon//vRorfeec/uw/87vP/Fzqf7jzh46d/uvn8f2H7jvbp+f94z7oX8u9G+moRA0s35/tORgwsvv7G6fbN5o3Wjdbs+TNnvjg8/MVzZ/qORgxcb8+0epb2fKoAAAAAAAAAAAAAAAAADlYq4vciRfOH66keEber8VqDF4efPv3UkThSjbfaMm7r1fGrl+ovzd2cX2gtLram6xOz7am56dZuDzdQDfeaGBndl87c17F9bv+xgZfm5l9faN/4o6Udtx8fuHRtcWmhObXz5jgWRUSjd81Q1eCJkdGq0TPt5mxVdewBvUqhLxXxX5Fi6nw9fTavy+P/to/w3zL+f3n7jvZp/N8netaVx0ypiJ9Git/+yyfis1U7j8dd5yyX+9tIMXThM7lcHC3LddvQea9AZ2RgWfb/IsU//mxr2e54yMc3yz636xP7iCiv/4lI8b0//078Rl639f0PO1//49t3tE/X/1M9645veV/BnrtOvv6nI8WLj78Vv5nXvd/7P4rY2Nj4RsSpXPjO+zn26fp/umfdYHSO+1sPrvsAAAAAAAAAAACPrL5UxN9FiqdGa+n5vG43f/9vevuO9unvf/1yz7rpA5qvaM8nFQAAAAAOib5UxI8ixY2lt+6Mod46/rtn/Ofvbs69PpK2ba3+nO+XqvcGPMg//+s1mI87ufduAwAAAAAAAAAAAAAAAAAAwKGSUhHP5/nUJ+8zn/pqpHj5f57J5dLJslx3HvjB6teBK3Ozpy/NzMxNNZea12Za9fH55lSrrPupSLH+N5/JdYtqfvXufPOdOd4HNrpzsS9EitG/75btzMXenZu8Mx94Zy72suwnIsV//8PWst15rD+9WfZsWfavI8VX/3nnsic3y54ry34nUvzgq/Vu2eNl2e77UTvvJB2oxUzr2am5mbtehQoAAAAAAAAAAAAAAAAAAAAfVF8q4s8ixf/eXInlPOw/z//fnYG/1i375td75vvf5nY1z/9gNf//vZY/zPz/gw+spwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8OhIUcQbkWL+ynpa7S8/dwxcbs/euj0xMrpztWOpqnmkKl/+DDx39tz5Lzw/fKGb71//QXsyXh2/eqn+0tzN+YXW4mJruj4x256am27teg97rb956jqGqhNQv/narenr1xfrZ589t2Xz7cH3+h87OXhx+OnTT3XLToyMjo73lKn1fYCjf6DGbToaRfxVpHjmuz9O/9IfUcTez8V9vjv77VjViaGqExMjo1VHZtrN2aVy41j3RBQR9Z5Kje45OoBrsSeNiOWy+WWDh8rujc83F5rXZlr1sebCUnupPTc7ljqtLftTjyIupIiViFjrv3t3fVHEa5Hi2yfW07/2RxzpnofPXxn/8pmz925HsY993IWynfW+iJXiEbhmh1h/FPFPkeInb5+Kf+uPqEXnJz4X8UqZ3494s8wXI1KK2PhGxLs7fI94NNWiiP8vr//F9fR2f3k/6N5XLn+l/qXZ63M9Zbv3lV09H3793sd86M+Hg3TI700DUcQPqjv+evp3/10DAAAAAAAAAAAAAAAAHCJF/GqkeOGdU6kaH3xnTHF79kb9avPaTGdYX3fsX3fM9MbGxkY9dbKRczLncs6VnKs513JGkevnbOSczLmccyXnas61nHEk18/ZyDmZcznnSs7VnGs5o5br52zknMy5nHMl52rOtZxxSMbuAQAAAAAAAAAAAAAAAAAAHy1F9U+Kb31tPW30d+aXnoxOrpoP9CPv5wEAAP//N4D+uw==") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(r0, 0x1, &(0x7f0000000180)=0x3) socket$nl_xfrm(0x10, 0x3, 0x6) r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) lseek(r3, 0x7ff, 0x0) getdents64(r3, 0x0, 0x0) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6) 11m10.450006518s ago: executing program 32 (id=1844): syz_mount_image$udf(&(0x7f0000000100), &(0x7f0000000f00)='./file0\x00', 0x14444, &(0x7f0000001d80)=ANY=[@ANYBLOB="696f636861727365743d61736369692c6e6f6164696e696362000064696e6963622c6769643d69676e6f72652c7569643d666f726765742c756d61736b3d30303030303030303030303030303030303030303030322c076f6e6761642c6769643d771d0f4d30dc61469a581342d98a7a4c3534a971c3e26de72edc9ec3db403d8b2e970b9dcea448ddbb5a116ce6f67d99a77aa50bce7fc5451bcf5b13e9698d80385c54fff77d38aa9703314cd19a075893a1648dd8ef78a118122ee7a0e400"/203, @ANYRESDEC=0x0, @ANYBLOB=',nostrict,\x00'], 0xfe, 0xc22, &(0x7f00000002c0)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(r0, 0x1, &(0x7f0000000180)=0x3) socket$nl_xfrm(0x10, 0x3, 0x6) r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) lseek(r3, 0x7ff, 0x0) getdents64(r3, 0x0, 0x0) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6) 11m3.048064576s ago: executing program 0 (id=1857): syz_mount_image$hfsplus(&(0x7f0000000980), &(0x7f0000000a80)='./file0\x00', 0x2000010, &(0x7f00000009c0)=ANY=[@ANYRES8=0x0, @ANYRES8, @ANYBLOB="4a3a9f8c2aab73255ecca15a5ad5b0b10a818868cc63e509dca434325eec52c449bc0f78c4d4996b7c34f8c4027731d8084daf83fa32ac4f26093d06abe1c066b64b56d81577ccc09ee10fa7258f8c9a08a6fa6f21d52366469e697011812e7133138514e15b9fe1f64a7d3062ee9a77ca0a5d9f6af20321dc3f0f0577b860b69773048ec9a9a6d40e94d2f4aca5a132897494efd6232446f0d416f1a75c1e7e1e233ad655fc58f85c"], 0xfd, 0x6de, &(0x7f0000000180)="$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") r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000cc0), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) syz_emit_ethernet(0x22, &(0x7f0000000180)={@multicast, @remote, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x1, 0x37, 0x14, 0x67, 0x0, 0x7, 0x6, 0x0, @dev={0xac, 0x14, 0x14, 0x12}, @initdev={0xac, 0x1e, 0x1, 0x0}}}}}}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r1) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) write$cgroup_subtree(r0, &(0x7f0000000180)=ANY=[], 0x36) 10m58.402573559s ago: executing program 0 (id=1865): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) fsopen(&(0x7f00000000c0)='ecryptfs\x00', 0x0) request_key(&(0x7f0000000040)='id_legacy\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000080)='].\x00', 0x0) sendmsg$IPSET_CMD_RENAME(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x14, 0x5, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x20040000) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='D\x00\x00', @ANYRES16=r5, @ANYBLOB="0700000000000000000005000000180003800800040000000000080002000900000004000100180001801400020073797a5f74756e000000000000000000"], 0x44}}, 0x0) r6 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c) setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0) sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x13, 0x17, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000008000000bf09000000000000b60904000000000065000600090000001801000020646c2500000000002020207b9af8ff000000002d9a00000000000034090000f8ffffffb702000008000000b70300000000000015000000061e00003d93000000000000b5030000000000008500000076000000b70000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r8 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f00000003c0)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r8, 0x0, 0x8) write$cgroup_devices(r8, &(0x7f00000000c0)=ANY=[@ANYBLOB='b 75:*\tm'], 0xa) setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, 0x0, 0x0) 10m57.304482608s ago: executing program 0 (id=1866): r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000751c0110e60f00979ad1010203010902240001000000000904290202b48cbb0009050402100000fa"], 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000400)={0x44, &(0x7f0000000180)=ANY=[@ANYBLOB="0012ad"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$uac1(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) 10m53.76714341s ago: executing program 0 (id=1877): syz_mount_image$vfat(&(0x7f0000001800), &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="00631dda01aef2456795dd9b2620df1c0f624854ea3dd5a00bd6df44035f5c3ae796fec6d633a0ffad0569794acfef7da01767fd4175f2cd82df769aa2ee7bfe3640554507d2e660c9f9e222a72e1e3e71145c480657d2864e5e276f028d64701ae31cde0ceaf408fdb05c0f4142da00e900000100000149e6d308cbe315789f4baffe39bbced9b1d421d2e290e9fc561a62225f002ee310e1fa7321000000000000d6231001a4b2d467825f3abb0c167e129cf1fa0e7854103f4bf2d3a0194983bc86cbd3d75ccef3c8ac4516dac102"], 0x4, 0x26d, &(0x7f00000005c0)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0) mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0) mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc01, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') read$FUSE(r0, &(0x7f0000000a00)={0x2020}, 0x2020) 10m53.608044403s ago: executing program 0 (id=1878): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x4000, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148) ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x8008551d, 0x0) quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0xffffffffffffffff, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0}, 0x94) pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc) 10m51.863408976s ago: executing program 0 (id=1886): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x1b) ioctl$TIOCVHANGUP(r0, 0x5437, 0x2) 10m50.59649395s ago: executing program 33 (id=1886): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x1b) ioctl$TIOCVHANGUP(r0, 0x5437, 0x2) 9m58.5501176s ago: executing program 2 (id=2032): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) eventfd2(0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) bind$bt_hci(0xffffffffffffffff, 0x0, 0x0) r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0) r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0) read$FUSE(r1, &(0x7f00000034c0)={0x2020}, 0x2020) 9m58.370130434s ago: executing program 2 (id=2033): r0 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000380), 0x1, 0xbb4, &(0x7f00000017c0)="$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") chdir(0x0) unshare(0x2c020400) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) statx(r0, 0x0, 0x2000, 0x1, 0x0) setresuid(0x0, 0x0, 0xee01) msgget$private(0x0, 0x208) r1 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x10302, 0x186) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(r3, 0x0, 0x0) sendmsg$NL80211_CMD_CONNECT(r2, 0x0, 0x8000) r4 = fsmount(r1, 0x0, 0x1) fchdir(r4) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) fchmod(r5, 0x6) 9m58.094698557s ago: executing program 2 (id=2034): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) fsopen(&(0x7f00000000c0)='ecryptfs\x00', 0x0) request_key(&(0x7f0000000040)='id_legacy\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000080)='].\x00', 0x0) sendmsg$IPSET_CMD_RENAME(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x14, 0x5, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x20040000) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='D\x00\x00', @ANYRES16=r5, @ANYBLOB="0700000000000000000005000000180003800800040000000000080002000900000004000100180001801400020073797a5f74756e000000000000000000"], 0x44}}, 0x0) r6 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0) sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x13, 0x17, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000008000000bf09000000000000b60904000000000065000600090000001801000020646c2500000000002020207b9af8ff000000002d9a00000000000034090000f8ffffffb702000008000000b70300000000000015000000061e00003d93000000000000b5030000000000008500000076000000b70000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r9 = openat$cgroup_devices(r8, &(0x7f00000003c0)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r9, 0x0, 0x8) write$cgroup_devices(r9, &(0x7f00000000c0)=ANY=[@ANYBLOB='b 75:*\tm'], 0xa) setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, 0x0, 0x0) 9m56.95935805s ago: executing program 2 (id=2035): syz_mount_image$ext4(&(0x7f00000006c0)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3000010, &(0x7f0000000680), 0x3e, 0x51b, &(0x7f0000000700)="$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") bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0) creat(&(0x7f0000000040)='./bus\x00', 0x0) mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r2 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r2, 0x4c09, 0x1000) r3 = open(&(0x7f00000003c0)='./bus\x00', 0x84902, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x11, r3, 0x0) write$FUSE_ATTR(r1, &(0x7f0000000440)={0x78, 0x0, 0x0, {0x2000000000000000, 0x0, 0x0, {0xffffffffff7ffffe, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x6, 0x4, 0x6288f666, 0x0, 0xc000}}}, 0x6f) 9m56.306369844s ago: executing program 2 (id=2036): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1f, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a500000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r2}, 0xc) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r3, 0x200, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4044000}, 0x2004c801) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000009b80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWFLOWTABLE={0x30, 0x16, 0xa, 0x5, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_FLOWTABLE_HOOK={0x4}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x58}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) 9m54.539937319s ago: executing program 2 (id=2037): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000740)={0x38, 0x1, 0x2, 0x301, 0x0, 0x0, {0x2, 0x0, 0x8}, [@CTA_EXPECT_MASTER={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @local}}}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40048885}, 0x20004010) 9m54.140901682s ago: executing program 34 (id=2037): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000740)={0x38, 0x1, 0x2, 0x301, 0x0, 0x0, {0x2, 0x0, 0x8}, [@CTA_EXPECT_MASTER={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @local}}}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40048885}, 0x20004010) 9m31.169496911s ago: executing program 6 (id=2086): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) syz_open_dev$tty1(0xc, 0x4, 0x4) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SET_IO_FLUSHER(0x39, 0x1) bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000f80)=ANY=[@ANYBLOB="06000000040000000080000058"], 0x50) 9m29.294437765s ago: executing program 6 (id=2089): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="17000000000000000084000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, 0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='mm_page_alloc\x00', r3}, 0x10) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r1, 0x0, &(0x7f0000002240)=""/4097}, 0x20) 9m28.931077605s ago: executing program 6 (id=2093): r0 = socket$netlink(0x10, 0x3, 0x9) sendmsg$NFT_BATCH(r0, 0x0, 0x10) 9m28.600050272s ago: executing program 6 (id=2097): syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x8, &(0x7f0000000240)={[{@sb={'sb', 0x3d, 0x1}}, {@nodioread_nolock}, {@oldalloc}]}, 0x2, 0x53a, &(0x7f0000000c80)="$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") bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}}) openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0/file1\x00', 0xe42, 0x1ff) llistxattr(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) 9m27.692603477s ago: executing program 6 (id=2101): bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd020f4c0c8c561"], 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1, 0xb, 0xcc, 0xe8}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000880), 0x300, r0}, 0x38) bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000640), 0x0, 0x6, r0}, 0x38) 9m26.30972287s ago: executing program 6 (id=2107): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000010000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r1}, 0x18) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r3, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) recvmsg$unix(r2, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdc8}, 0x0) 9m25.740486057s ago: executing program 35 (id=2107): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000010000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r1}, 0x18) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r3, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) recvmsg$unix(r2, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdc8}, 0x0) 4.765526298s ago: executing program 5 (id=5589): r0 = gettid() rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0) fcntl$setlease(r1, 0x400, 0x0) mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0) 4.198410334s ago: executing program 4 (id=5593): bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x48) r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x4b50db987764e30f, &(0x7f0000000300)={0x7f, {{0x2, 0x4e23, @loopback}}, {{0x2, 0xff6d, @multicast2}}}, 0x108) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, 0x0) socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@deltfilter={0x24, 0x2d, 0x200, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0x4, 0xe}, {0x4, 0x9}}}, 0x24}}, 0x14000000) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'macvtap0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0xb4}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0) 3.88139763s ago: executing program 7 (id=5594): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="060000000400000008000000"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r2, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendmmsg$sock(r2, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="89", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000001c0)='i', 0x1}], 0x1}}], 0x2, 0x20000881) 3.788016438s ago: executing program 5 (id=5595): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}, 0x1, 0x0, 0x0, 0x40040}, 0x20000800) recvmmsg(r0, 0x0, 0x0, 0xfc0, 0x0) 3.586275205s ago: executing program 7 (id=5598): socket$l2tp6(0xa, 0x2, 0x73) syz_open_dev$usbfs(&(0x7f0000000040), 0x200, 0x802) r0 = syz_io_uring_setup(0xbdc, &(0x7f0000001400)={0x0, 0xec25, 0x400, 0x1, 0xd4}, &(0x7f00000006c0)=0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, 0x0, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000380)=[{&(0x7f0000001800)=""/216, 0xd8}, {0x0}], 0x2}) io_uring_enter(r0, 0x847ba, 0x0, 0xe, 0x0, 0x0) 3.453959636s ago: executing program 7 (id=5599): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0) close(r2) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast}) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r4, {0x1, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004) recvmmsg(r5, &(0x7f0000001480)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f0000000540)=""/189, 0xbd}, {&(0x7f0000001ac0)=""/4096, 0x1000}, {&(0x7f0000000940)=""/74, 0x4a}], 0x4}, 0x5d}], 0x1b00, 0x10022, 0x0) 3.000181613s ago: executing program 1 (id=5602): bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) openat$ppp(0xffffffffffffff9c, 0x0, 0x161042, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000300)='kmem_cache_free\x00', r1}, 0x18) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c) bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x0, 0x0, 0x0, 0x0, 0x54}, 0x9c) 2.768130392s ago: executing program 1 (id=5603): syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x30000c6, &(0x7f00000000c0), 0x2, 0x572, &(0x7f0000001600)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x20042, 0x1) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10) fallocate(r0, 0x0, 0x0, 0x8000c62) r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) sendfile(r2, r2, 0x0, 0x100000800000009) 1.496203236s ago: executing program 5 (id=5604): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18) symlinkat(&(0x7f0000000b00)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') newfstatat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x0, 0x4000) 1.495853377s ago: executing program 7 (id=5605): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x7, 0x4, 0x80, 0x1, 0x28}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x1e, 0x3, &(0x7f0000000500)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) 1.436381162s ago: executing program 4 (id=5606): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_SURVEY(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000002640)={&(0x7f00000014c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="a90303000000000000003200000008004001"], 0x1c}}, 0x4004050) 1.301857343s ago: executing program 5 (id=5607): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="060000000400000008000000"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r2, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendmmsg$sock(r2, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="89", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000001c0)='i', 0x1}], 0x1}}], 0x2, 0x20000881) 1.301658543s ago: executing program 1 (id=5608): socket$l2tp6(0xa, 0x2, 0x73) syz_open_dev$usbfs(&(0x7f0000000040), 0x200, 0x802) r0 = syz_io_uring_setup(0xbdc, &(0x7f0000001400)={0x0, 0xec25, 0x400, 0x1, 0xd4}, &(0x7f00000006c0)=0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, 0x0) io_uring_enter(r0, 0x847ba, 0x0, 0xe, 0x0, 0x0) 1.300449203s ago: executing program 7 (id=5609): bind$bt_hci(0xffffffffffffffff, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6) io_setup(0x8f0, &(0x7f0000002400)=0x0) io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2002000000, 0x4, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}]) r1 = syz_io_uring_setup(0x66f, &(0x7f0000000040)={0x0, 0x0, 0x10100, 0x0, 0x2e9}, &(0x7f0000000380)=0x0, &(0x7f0000000200)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000140)=[{0x0}, {0x0}], 0x2}) bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty, 0xffffffff}, 0x1c) io_uring_enter(r1, 0x6e36, 0x0, 0x0, 0x0, 0x0) 1.243432588s ago: executing program 4 (id=5610): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15) r1 = dup(r0) write$P9_RLERRORu(r1, &(0x7f0000000500)=ANY=[@ANYBLOB='S\x00\x00\x00\a'], 0x53) mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000180), 0x0, 0x0) 1.185101493s ago: executing program 5 (id=5611): syz_open_pts(0xffffffffffffffff, 0x2800) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, 0x0, 0x0) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet_icmp(0x2, 0x2, 0x1) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d00010073796e70726f7879000000"], 0xcc}}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r5}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48) 1.085058421s ago: executing program 4 (id=5612): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) sendmmsg(r0, &(0x7f0000000240)=[{{&(0x7f0000000180)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x2, 0x1, 0x4, {0xa, 0x4e21, 0x100, @local, 0x100}}}, 0x80, 0x0}}], 0x1, 0x40) 1.017961776s ago: executing program 7 (id=5613): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000002, &(0x7f0000000080), 0x1, 0x560, &(0x7f0000000b00)="$eJzs3d9vW1cdAPDvvYnjrOuaFvYAE9ACg4Kq2o27VdNetr6A0DQJMfGAeOhC4kahdl1qZyyhEtnfMCSQeII/gQckHpD2xANvPCLxgJDGA1KBCtQigWR0rx3XS5zFm39t8ecj3d577vE933Oa2Of4OL4ngLl1ISL2ImIpIl6PiJXu+aS7xcudLXvcwwf31h89uLeeRLv92j+SPD87l19QfFzmk90ylyPiW1+P+F5yOG5zZ/fWWq1WvdtNl1v1O+Xmzu7lrfraZnWzertSubZ67coLV5+vjK2t5+u/uv+1rVe+/dvffPbdP+x99UdZtU5383rtGLNO0wu9OJnFiHhlEsFmYKG7X5pxPfhw0oj4RER8IX/+r8RC/tsJAJxk7fZKtFf60wDASZfmc2BJWoqINO0OAkqdObyn41RaazRbl242tm9vdObKzkYhvblVq145V/zTD/IHF5IsvZrn5fl5unIgfTUizkXET4pP5OnSeqO2MZshDwDMvSf7+/+I+HcxTUuloS4d8KkeAPCxsTzrCgAAU6f/B4D5o/8HgPkzRP/f/bB/b+J1AQCm44O9/z8zsXoAANNj/h8A5o/+HwDmyjdffTXb2o+697/eeGNn+1bjjcsb1eatUn17vbTeuHuntNlobOb37KkfV16t0biz+lxsv1luVZutcnNn90a9sX27dSO/r/eNamEqrQIA3s+58+/8MYmIvRefyLfoW8tBXw0nWzrrCgAzszDKxQYI8LFmtS+YX0N14fkg4fcTrwswGwNv5r088PC9ftbZvT1MEH9nBB8pFz89/Py/NZ7hZDH/D/Prw83/vzT2egDTZ/4f5le7nRxc83+plwUAnEgj/Alf+8fjGoQAM3XcYt7Hff4PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8+h0RHw/krSUrwWeZv+mpVLEUxFxNgrJza1a9UpEnInzEVEoZunVWVcaABhR+reku/7XxZVnTx/MXUr+U8z3EfHDn7/20zfXWq27q9n5f/bOF/eXD6s8vm6EdQUBgDHL++9Kd9/3Rv7hg3vr+9vgKxcnUp/71+N/3aWI1x89uJdv+/GykxHL+Vji1L+SXg2WI+KZiFgYQ/y9tyLiU4Pan+RzI2e7K5/2x49u7KfGFT+JJI6Nn74nfprndfbZ4OuTY6gLzJt3rkfEy4Oe/2lcyPeDn//LY3pFvH+9U9j+a9+jvviL3UgLA+Jnz/kLw8Z47nffOHSyvdLJeyvimcVB8ZNe/OSI+M8OGf/Pn/nc2y8dkdf+RcTFGBy/P1a5Vb9Tbu7sXt6qr21WN6u3K5Vrq9euvHD1+Uo5n6Mu789UH/b3Fy+dOapuWftPHRF/eWD7l3rXfmnI9v/yv69/9/OPk8WD8b/yxcE//6cHxu/I+sQvDxl/7dSvj1y+O4u/cUT7j/v5Xxoy/rt/3d0Y8qEAwBQ0d3ZvrdVq1bsjHWTvQsdRzqGDrIrDPXh/uDha0L/EJFox7MGByhcm9b868YPF3lhxvCV/JytxQFa6/0uSvVV6/3KW4qisxRh4VTr2Vox08HBasWb3mgRMR1/nAwAAAAAAAAAAAAAAfEQd/32gwuhfawMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAJ+X8AAAD//7xIx1c=") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0x0, 0x0) pivot_root(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 766.702087ms ago: executing program 4 (id=5614): bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x48) r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x4b50db987764e30f, &(0x7f0000000300)={0x7f, {{0x2, 0x4e23, @loopback}}, {{0x2, 0xff6d, @multicast2}}}, 0x108) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, 0x0) socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@deltfilter={0x24, 0x2d, 0x200, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0x4, 0xe}, {0x4, 0x9}}}, 0x24}}, 0x14000000) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'macvtap0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0xb4}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0) 708.030331ms ago: executing program 1 (id=5615): syz_mount_image$msdos(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000300)=ANY=[], 0x1, 0x236, &(0x7f0000000000)="$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") timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) 340.701262ms ago: executing program 1 (id=5616): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) munmap(&(0x7f0000001000/0x3000)=nil, 0x3000) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000540)='kfree\x00', r1, 0x0, 0x7ffd}, 0x18) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'}) 319.913753ms ago: executing program 4 (id=5617): syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x30000c6, &(0x7f00000000c0), 0x2, 0x572, &(0x7f0000001600)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x20042, 0x1) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) fallocate(r0, 0x0, 0x0, 0x8000c62) r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) sendfile(r2, r2, 0x0, 0x100000800000009) 143.755848ms ago: executing program 5 (id=5618): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0x3, 0x40) syz_usb_disconnect(r2) 0s ago: executing program 1 (id=5619): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x9, 0x3, 0x8, 0x4, 0x2}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xc, &(0x7f0000000d80)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4000000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8000}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00'}, 0x10) r2 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='cdg\x00', 0x4) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) r3 = socket$inet(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0xac, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r4, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x7c, 0x2, [@TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x1}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1], 0x0, [0x8, 0x6, 0x3c, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61c1, 0x0, 0x0, 0x3], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x401]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x4}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x1}, @TCA_TAPRIO_ATTR_TXTIME_DELAY={0x8, 0xb, 0x1}]}}]}, 0xac}}, 0x0) kernel console output (not intermixed with test programs): vsim3: renamed from eth3 [ 881.805113][ T28] audit: type=1326 audit(1756493785.706:3000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20153 comm="syz.5.4747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64c578ebe9 code=0x7ffc0000 [ 881.836050][ T28] audit: type=1326 audit(1756493785.706:3001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20153 comm="syz.5.4747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64c578ebe9 code=0x7ffc0000 [ 881.864499][ T28] audit: type=1326 audit(1756493785.706:3002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20153 comm="syz.5.4747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f64c578ebe9 code=0x7ffc0000 [ 881.910137][ T28] audit: type=1326 audit(1756493785.716:3003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20153 comm="syz.5.4747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64c578ebe9 code=0x7ffc0000 [ 881.949411][ T28] audit: type=1326 audit(1756493785.716:3004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20153 comm="syz.5.4747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64c578ebe9 code=0x7ffc0000 [ 882.006300][ T28] audit: type=1326 audit(1756493785.716:3005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20153 comm="syz.5.4747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f64c578ebe9 code=0x7ffc0000 [ 882.055999][T20035] 8021q: adding VLAN 0 to HW filter on device bond0 [ 882.066968][ T28] audit: type=1326 audit(1756493785.716:3006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20153 comm="syz.5.4747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64c578ebe9 code=0x7ffc0000 [ 882.154294][T20170] loop4: detected capacity change from 0 to 8192 [ 882.165296][T20170] FAT-fs (loop4): Unrecognized mount option "‘odots" or missing value [ 882.207811][T20035] 8021q: adding VLAN 0 to HW filter on device team0 [ 882.272791][T16153] bridge0: port 1(bridge_slave_0) entered blocking state [ 882.280052][T16153] bridge0: port 1(bridge_slave_0) entered forwarding state [ 882.355967][T14633] bridge0: port 2(bridge_slave_1) entered blocking state [ 882.363276][T14633] bridge0: port 2(bridge_slave_1) entered forwarding state [ 883.253151][T20035] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 883.364782][T20185] tipc: Started in network mode [ 883.385061][T20185] tipc: Node identity 76472eb6f46, cluster identity 4711 [ 883.407568][T20185] tipc: Enabled bearer , priority 0 [ 883.437769][T20185] syzkaller0: entered promiscuous mode [ 883.457373][T20185] syzkaller0: entered allmulticast mode [ 883.502122][T20185] tipc: Resetting bearer [ 883.537534][T20184] tipc: Resetting bearer [ 883.587724][T20184] tipc: Disabling bearer [ 883.981357][T20035] veth0_vlan: entered promiscuous mode [ 884.015998][T20035] veth1_vlan: entered promiscuous mode [ 884.080093][T20201] vlan2: entered allmulticast mode [ 884.085260][T20201] macvtap0: entered allmulticast mode [ 884.094625][T20201] veth0_macvtap: entered allmulticast mode [ 884.152585][T20203] bridge0: entered promiscuous mode [ 884.176738][T20035] veth0_macvtap: entered promiscuous mode [ 884.212103][T20035] veth1_macvtap: entered promiscuous mode [ 884.260185][T20035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 884.292918][T20035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 884.303206][T20035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 884.313907][T20035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 884.324951][T20035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 884.335752][T20035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 884.347728][T20035] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 884.359057][T20035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 884.378795][T20035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 884.389892][T20035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 884.401796][T20035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 884.413602][T20035] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 884.424214][T20210] netlink: 14 bytes leftover after parsing attributes in process `syz.4.4765'. [ 884.433969][T20210] hsr_slave_0: left promiscuous mode [ 884.440275][T20210] hsr_slave_1: left promiscuous mode [ 884.493002][T20212] netlink: 5 bytes leftover after parsing attributes in process `syz.5.4764'. [ 884.502442][T20212] 0ªî{X¹¦: renamed from gretap0 (while UP) [ 884.510832][T20212] 0ªî{X¹¦: entered allmulticast mode [ 884.516523][T20212] A link change request failed with some changes committed already. Interface 30ªî{X¹¦ may have been left with an inconsistent configuration, please check. [ 884.543814][T20035] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 884.557190][T20035] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 884.566194][T20035] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 884.577187][T20035] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 884.600935][T20211] lo speed is unknown, defaulting to 1000 [ 884.777462][ T2917] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 884.795843][ T2917] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 884.848960][T14633] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 884.856916][T14633] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 884.918965][T20221] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4769'. [ 885.387055][T20236] vlan2: entered allmulticast mode [ 885.704871][T20247] loop7: detected capacity change from 0 to 512 [ 885.736980][T20247] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 885.775514][T20247] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 885.805015][T20254] program syz.1.4781 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 885.951422][T20247] EXT4-fs (loop7): shut down requested (0) [ 886.071861][T20035] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 886.177309][T20266] loop4: detected capacity change from 0 to 8192 [ 886.192377][T20266] FAT-fs (loop4): Unrecognized mount option "‘odots" or missing value [ 886.297647][T20275] vlan2: entered allmulticast mode [ 886.308323][T20275] macvtap0: entered allmulticast mode [ 886.320234][T20275] veth0_macvtap: entered allmulticast mode [ 886.400801][T20274] lo speed is unknown, defaulting to 1000 [ 886.604281][T20281] tipc: Enabled bearer , priority 0 [ 886.631777][T20281] syzkaller0: entered promiscuous mode [ 886.637818][T20281] syzkaller0: entered allmulticast mode [ 886.708857][T20284] 9pnet_fd: Insufficient options for proto=fd [ 886.737268][T20281] tipc: Resetting bearer [ 886.776860][T20280] tipc: Resetting bearer [ 886.812147][T20280] tipc: Disabling bearer [ 886.962807][T20290] batadv0: entered promiscuous mode [ 887.323593][T20299] loop7: detected capacity change from 0 to 8192 [ 887.341271][T20299] FAT-fs (loop7): Unrecognized mount option "‘odots" or missing value [ 887.411273][ T28] kauditd_printk_skb: 368 callbacks suppressed [ 887.411286][ T28] audit: type=1326 audit(1756493791.406:3375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20304 comm="syz.1.4802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 887.512345][ T28] audit: type=1326 audit(1756493791.446:3376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20304 comm="syz.1.4802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 887.552796][ T28] audit: type=1326 audit(1756493791.446:3377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20304 comm="syz.1.4802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 887.575739][ T28] audit: type=1326 audit(1756493791.446:3378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20304 comm="syz.1.4802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 887.599818][ T28] audit: type=1326 audit(1756493791.446:3379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20304 comm="syz.1.4802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 887.628521][ T28] audit: type=1326 audit(1756493791.446:3380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20304 comm="syz.1.4802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 887.653699][ T28] audit: type=1326 audit(1756493791.446:3381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20304 comm="syz.1.4802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 887.676425][ T28] audit: type=1326 audit(1756493791.446:3382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20304 comm="syz.1.4802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 887.716862][ T28] audit: type=1326 audit(1756493791.446:3383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20304 comm="syz.1.4802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 887.788102][ T28] audit: type=1326 audit(1756493791.446:3384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20304 comm="syz.1.4802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 888.235906][T20336] loop4: detected capacity change from 0 to 256 [ 888.330480][T20334] loop7: detected capacity change from 0 to 8192 [ 888.358958][T20334] FAT-fs (loop7): Unrecognized mount option "‘odots" or missing value [ 889.047860][T20367] loop4: detected capacity change from 0 to 1764 [ 889.326381][T20369] loop5: detected capacity change from 0 to 8192 [ 889.346034][T20369] FAT-fs (loop5): Unrecognized mount option "‘odots" or missing value [ 889.504731][T20377] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4832'. [ 890.232983][T20385] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4834'. [ 890.568846][T20397] loop4: detected capacity change from 0 to 512 [ 890.576536][T20397] journal_path: Lookup failure for './bus' [ 890.610691][T20397] EXT4-fs: error: could not find journal device path [ 890.768962][T20411] syz.7.4844[20411] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 890.769082][T20411] syz.7.4844[20411] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 890.870410][T20414] netlink: 'syz.4.4845': attribute type 30 has an invalid length. [ 890.912601][T20414] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 890.923523][T20414] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 890.932665][T20414] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 890.941446][T20414] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 890.963522][T20414] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 890.973207][T20414] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 890.982168][T20414] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 890.991353][T20414] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 891.297997][T20429] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4850'. [ 891.366639][T20432] loop4: detected capacity change from 0 to 2048 [ 891.387206][T20432] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 891.799019][T20446] loop5: detected capacity change from 0 to 8192 [ 891.806590][T20446] FAT-fs (loop5): Unrecognized mount option "‘odots" or missing value [ 891.941515][T19465] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 892.376871][T20471] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4868'. [ 892.737863][T20482] batadv0: entered promiscuous mode [ 892.823006][T20485] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4874'. [ 892.837001][T20485] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4874'. [ 892.989739][ T28] kauditd_printk_skb: 312 callbacks suppressed [ 892.989753][ T28] audit: type=1326 audit(1756493796.986:3697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20490 comm="syz.7.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 893.045380][ T28] audit: type=1326 audit(1756493797.016:3698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20490 comm="syz.7.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 893.094577][ T28] audit: type=1326 audit(1756493797.016:3699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20490 comm="syz.7.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 893.121353][ T28] audit: type=1326 audit(1756493797.016:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20490 comm="syz.7.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 893.146858][ T28] audit: type=1326 audit(1756493797.016:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20490 comm="syz.7.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 893.170172][ T28] audit: type=1326 audit(1756493797.016:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20490 comm="syz.7.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 893.193981][ T28] audit: type=1326 audit(1756493797.016:3703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20490 comm="syz.7.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 893.217244][ T28] audit: type=1326 audit(1756493797.016:3704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20490 comm="syz.7.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 893.240038][ T28] audit: type=1326 audit(1756493797.016:3705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20490 comm="syz.7.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 893.263102][ T28] audit: type=1326 audit(1756493797.026:3706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20490 comm="syz.7.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 893.304850][T20501] lo speed is unknown, defaulting to 1000 [ 893.826933][T20516] batadv0: entered promiscuous mode [ 894.292986][T20520] loop7: detected capacity change from 0 to 8192 [ 894.324632][T20520] FAT-fs (loop7): Unrecognized mount option "‘odots" or missing value [ 894.354327][T20525] tipc: Enabled bearer , priority 0 [ 894.373122][T20521] lo speed is unknown, defaulting to 1000 [ 894.377644][T20525] syzkaller0: entered promiscuous mode [ 894.394760][T20525] syzkaller0: entered allmulticast mode [ 894.452559][T20525] tipc: Resetting bearer [ 894.483263][T20524] tipc: Resetting bearer [ 894.531989][T20524] tipc: Disabling bearer [ 894.555073][T20530] netlink: '+}[@': attribute type 13 has an invalid length. [ 894.847966][T20536] loop7: detected capacity change from 0 to 512 [ 894.899925][T20536] EXT4-fs: quotafile must be on filesystem root [ 895.079633][T20530] bridge0: port 2(bridge_slave_1) entered disabled state [ 895.087755][T20530] bridge0: port 1(bridge_slave_0) entered disabled state [ 895.577686][T20530] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 895.607121][T20530] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 895.839687][T20530] veth0_macvtap: left allmulticast mode [ 895.884232][T20530] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 895.893921][T20530] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 895.902918][T20530] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 895.911903][T20530] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 896.163180][T20547] vlan2: entered allmulticast mode [ 896.163199][T20547] macvtap0: entered allmulticast mode [ 896.163212][T20547] veth0_macvtap: entered allmulticast mode [ 896.366143][T20562] batadv1: entered promiscuous mode [ 896.905353][T20582] vlan2: entered allmulticast mode [ 896.991596][T20585] syz.7.4909[20585] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 896.991723][T20585] syz.7.4909[20585] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 897.157033][ T2917] tipc: Left network mode [ 897.164428][T20591] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4912'. [ 897.362697][T20591] netlink: 'syz.7.4912': attribute type 2 has an invalid length. [ 897.818749][T20615] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4918'. [ 898.049548][ T50] Bluetooth: hci2: command 0x0406 tx timeout [ 898.172033][ T28] kauditd_printk_skb: 353 callbacks suppressed [ 898.172048][ T28] audit: type=1326 audit(1756493802.166:4060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20617 comm="syz.7.4922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 898.205823][ T28] audit: type=1326 audit(1756493802.166:4061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20617 comm="syz.7.4922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 898.242495][T20628] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4923'. [ 898.563549][ T28] audit: type=1326 audit(1756493802.556:4062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20617 comm="syz.7.4922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 899.696243][T20653] program syz.1.4936 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 899.957484][T20660] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4934'. [ 900.599307][T20663] loop4: detected capacity change from 0 to 512 [ 900.637062][T20663] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 900.718072][T20663] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2244: inode #15: comm syz.4.4938: corrupted in-inode xattr: e_name out of bounds [ 900.739037][T20663] EXT4-fs (loop4): Remounting filesystem read-only [ 900.766035][T20663] EXT4-fs (loop4): 1 truncate cleaned up [ 900.788064][T20663] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 900.936723][T20677] syz.5.4943[20677] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 900.936846][T20677] syz.5.4943[20677] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 901.028291][T19465] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 901.053578][T20680] syz.7.4945[20680] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 901.053710][T20680] syz.7.4945[20680] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 901.212507][ T2917] hsr_slave_0: left promiscuous mode [ 901.233585][ T2917] hsr_slave_1: left promiscuous mode [ 901.241347][ T2917] batman_adv: batadv0: Interface deactivated: dummy0 [ 901.248108][ T2917] batman_adv: batadv0: Removing interface: dummy0 [ 901.265669][ T2917] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 901.275684][ T2917] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 901.314465][ T2917] veth1_macvtap: left promiscuous mode [ 901.321768][ T2917] veth0_macvtap: left promiscuous mode [ 901.333444][ T2917] veth1_vlan: left promiscuous mode [ 901.341313][ T2917] veth0_vlan: left promiscuous mode [ 901.374556][ T28] audit: type=1326 audit(1756493805.366:4063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20689 comm="syz.7.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 901.424631][ T28] audit: type=1326 audit(1756493805.366:4064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20689 comm="syz.7.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 901.547208][ T28] audit: type=1326 audit(1756493805.366:4065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20689 comm="syz.7.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 901.616090][ T28] audit: type=1326 audit(1756493805.366:4066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20689 comm="syz.7.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 901.644660][ T28] audit: type=1326 audit(1756493805.366:4067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20689 comm="syz.7.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 901.668681][ T2917] pim6reg (unregistering): left allmulticast mode [ 901.780034][T20694] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4951'. [ 902.831951][ T2917] team0 (unregistering): Port device team_slave_1 removed [ 902.886543][ T2917] team0 (unregistering): Port device team_slave_0 removed [ 902.945315][ T2917] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 903.005964][ T2917] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 903.462386][ T2917] bond0 (unregistering): (slave team0): Releasing backup interface [ 903.506136][ T2917] bond0 (unregistering): Released all slaves [ 903.558408][T20682] netlink: 14 bytes leftover after parsing attributes in process `syz.5.4947'. [ 903.575777][T20682] hsr_slave_0: left promiscuous mode [ 903.582157][T20682] hsr_slave_1: left promiscuous mode [ 903.632574][T13008] lo speed is unknown, defaulting to 1000 [ 903.864918][T20704] netlink: 14 bytes leftover after parsing attributes in process `syz.1.4955'. [ 903.925480][T20704] (null): rxe_set_mtu: Set mtu to 1024 [ 903.956439][T20704] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 904.054946][ T2917] IPVS: stop unused estimator thread 0... [ 904.202586][T20712] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4958'. [ 904.222226][T20712] x_tables: ip_tables: udp match: only valid for protocol 17 [ 904.237127][T20714] loop4: detected capacity change from 0 to 164 [ 904.260836][T20714] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 904.303047][T20714] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 904.322685][T20714] Symlink component flag not implemented [ 904.328364][T20714] Symlink component flag not implemented [ 904.354621][T20714] Symlink component flag not implemented (7) [ 904.372631][T20714] Symlink component flag not implemented (116) [ 904.995538][T20730] tipc: Enabled bearer , priority 0 [ 905.026307][T20730] syzkaller0: entered promiscuous mode [ 905.032587][T20730] syzkaller0: entered allmulticast mode [ 905.056077][T20730] tipc: Resetting bearer [ 905.065464][T20729] tipc: Resetting bearer [ 905.634807][T20729] tipc: Disabling bearer [ 907.241067][T20777] netlink: 'syz.1.4988': attribute type 13 has an invalid length. [ 907.249214][T20777] netlink: 'syz.1.4988': attribute type 14 has an invalid length. [ 908.367437][T20789] loop4: detected capacity change from 0 to 128 [ 908.407779][T20789] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a80ec018, mo2=0002] [ 908.428633][T20789] System zones: 1-3, 19-19, 35-36 [ 908.453165][T20789] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 908.506177][T20789] ext4 filesystem being mounted at /121/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 908.538145][ C1] vkms_vblank_simulate: vblank timer overrun [ 908.633251][ T28] audit: type=1800 audit(1756493812.616:4068): pid=20789 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4992" name="bus" dev="loop4" ino=12 res=0 errno=0 [ 908.653685][ C1] vkms_vblank_simulate: vblank timer overrun [ 908.705829][T19465] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 909.045249][T20804] syzkaller0: entered promiscuous mode [ 909.078676][T20804] syzkaller0: entered allmulticast mode [ 912.002376][T20820] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5006'. [ 912.245695][T20822] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5007'. [ 912.257060][T20825] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5007'. [ 912.450645][T20837] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5013'. [ 912.480459][T20837] bridge_slave_1: left allmulticast mode [ 912.486189][T20837] bridge_slave_1: left promiscuous mode [ 912.514220][T20837] bridge0: port 2(bridge_slave_1) entered disabled state [ 912.530381][T20837] bridge_slave_0: left allmulticast mode [ 912.541507][T20837] bridge_slave_0: left promiscuous mode [ 912.550705][T20837] bridge0: port 1(bridge_slave_0) entered disabled state [ 912.604935][T20848] loop4: detected capacity change from 0 to 1024 [ 912.650735][T20846] 9pnet: Could not find request transport: 0xffffffffffffffff [ 912.672851][T20848] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5 [ 912.695938][T20848] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 912.733968][T20848] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.5013: Failed to acquire dquot type 0 [ 912.750433][T20857] loop5: detected capacity change from 0 to 1024 [ 912.757835][T20848] EXT4-fs error (device loop4): mb_free_blocks:1938: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 912.774929][T20848] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5013: corrupted inode contents [ 912.787282][T20848] EXT4-fs error (device loop4): ext4_dirty_inode:6106: inode #13: comm syz.4.5013: mark_inode_dirty error [ 912.801613][T20848] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5013: corrupted inode contents [ 912.809970][T20857] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 912.814075][T20848] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #13: comm syz.4.5013: mark_inode_dirty error [ 912.831330][T20857] ext4 filesystem being mounted at /583/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 912.854005][T20863] netlink: 'syz.7.5020': attribute type 13 has an invalid length. [ 912.868031][T20848] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5013: corrupted inode contents [ 912.899827][T20848] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 912.925061][T20848] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5013: corrupted inode contents [ 912.950666][T20848] EXT4-fs error (device loop4): ext4_truncate:4288: inode #13: comm syz.4.5013: mark_inode_dirty error [ 912.965590][T20848] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 912.974981][T20863] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 912.992432][T13830] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 913.004449][T20848] EXT4-fs (loop4): 1 truncate cleaned up [ 913.015248][T20848] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 913.284593][T19465] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 913.643863][T20896] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5032'. [ 913.925786][T20901] loop4: detected capacity change from 0 to 8192 [ 913.939478][T20901] FAT-fs (loop4): Unrecognized mount option "‘odots" or missing value [ 914.102242][ T28] audit: type=1326 audit(1756493818.096:4069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20899 comm="syz.4.5034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 914.179199][ T28] audit: type=1326 audit(1756493818.096:4070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20899 comm="syz.4.5034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 914.234551][T20913] netlink: 'syz.7.5040': attribute type 6 has an invalid length. [ 914.238525][ T28] audit: type=1326 audit(1756493818.096:4071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20899 comm="syz.4.5034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 914.308566][ T28] audit: type=1326 audit(1756493818.096:4072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20899 comm="syz.4.5034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 914.368660][ T28] audit: type=1326 audit(1756493818.126:4073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20899 comm="syz.4.5034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 914.433580][ T28] audit: type=1326 audit(1756493818.126:4074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20899 comm="syz.4.5034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 914.482648][ T28] audit: type=1326 audit(1756493818.126:4075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20899 comm="syz.4.5034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 914.529820][ T28] audit: type=1326 audit(1756493818.126:4076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20899 comm="syz.4.5034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 914.583697][T20925] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5045'. [ 914.601862][ T28] audit: type=1326 audit(1756493818.126:4077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20899 comm="syz.4.5034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 914.678547][ T28] audit: type=1326 audit(1756493818.136:4078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20899 comm="syz.4.5034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 914.836405][T20933] loop7: detected capacity change from 0 to 1024 [ 914.850067][T20933] EXT4-fs: Ignoring removed orlov option [ 914.872684][T20933] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 914.926175][T20933] EXT4-fs error (device loop7): ext4_validate_block_bitmap:439: comm syz.7.5049: bg 0: block 88: padding at end of block bitmap is not set [ 914.946761][T20937] loop4: detected capacity change from 0 to 8192 [ 914.954535][T20937] FAT-fs (loop4): Unrecognized mount option "‘odots" or missing value [ 915.006455][T20035] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 915.186667][T20940] loop7: detected capacity change from 0 to 512 [ 915.217377][T20940] EXT4-fs error (device loop7): ext4_orphan_get:1399: inode #15: comm syz.7.5051: casefold flag without casefold feature [ 915.236387][T20940] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.5051: couldn't read orphan inode 15 (err -117) [ 915.254884][T20940] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 915.407358][T20949] tipc: Enabled bearer , priority 0 [ 915.426110][T20949] syzkaller0: entered promiscuous mode [ 915.432091][T20949] syzkaller0: entered allmulticast mode [ 915.444889][T20947] tipc: Resetting bearer [ 915.530501][T20947] tipc: Disabling bearer [ 915.612633][T20958] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5058'. [ 915.727431][T20960] sd 0:0:1:0: device reset [ 916.083380][T20035] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 916.315680][T20987] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5068'. [ 916.726771][T21000] syzkaller0: entered promiscuous mode [ 916.737117][T21000] syzkaller0: entered allmulticast mode [ 918.863797][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 918.891272][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 918.917538][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 918.988906][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 918.996864][ T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 919.015425][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 919.418555][ T28] kauditd_printk_skb: 102 callbacks suppressed [ 919.418568][ T28] audit: type=1326 audit(1756493823.406:4181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21031 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 919.467755][ T28] audit: type=1326 audit(1756493823.436:4182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21031 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 919.505690][ T28] audit: type=1326 audit(1756493823.436:4183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21031 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 919.528394][ T28] audit: type=1326 audit(1756493823.436:4184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21031 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 919.551015][ T28] audit: type=1326 audit(1756493823.436:4185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21031 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2a0b58d550 code=0x7ffc0000 [ 919.573765][ T28] audit: type=1326 audit(1756493823.446:4186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21031 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 919.600702][ T28] audit: type=1326 audit(1756493823.446:4187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21031 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 919.626631][ T28] audit: type=1326 audit(1756493823.446:4188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21031 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 919.660227][ T28] audit: type=1326 audit(1756493823.446:4189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21031 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 919.683168][ T28] audit: type=1326 audit(1756493823.446:4190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21031 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=196 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 921.099183][ T50] Bluetooth: hci0: command tx timeout [ 921.856585][T13830] syz_tun (unregistering): left allmulticast mode [ 922.677908][T21029] chnl_net:caif_netlink_parms(): no params data found [ 922.934120][T21029] bridge0: port 1(bridge_slave_0) entered blocking state [ 922.948617][T21029] bridge0: port 1(bridge_slave_0) entered disabled state [ 922.956013][T21029] bridge_slave_0: entered allmulticast mode [ 922.964461][T21029] bridge_slave_0: entered promiscuous mode [ 922.973747][T21029] bridge0: port 2(bridge_slave_1) entered blocking state [ 922.981288][T21029] bridge0: port 2(bridge_slave_1) entered disabled state [ 922.988603][T21029] bridge_slave_1: entered allmulticast mode [ 922.996024][T21029] bridge_slave_1: entered promiscuous mode [ 923.059567][T21029] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 923.091068][T21029] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 923.164338][T21029] team0: Port device team_slave_0 added [ 923.170555][ T50] Bluetooth: hci0: command tx timeout [ 923.208988][T21029] team0: Port device team_slave_1 added [ 923.257952][T21029] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 923.265437][T21029] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 923.298043][T21029] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 923.314080][T21029] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 923.321945][T21029] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 923.357952][T21029] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 923.503283][T21063] syzkaller0: entered promiscuous mode [ 923.518041][T21063] syzkaller0: entered allmulticast mode [ 923.538145][T21029] hsr_slave_0: entered promiscuous mode [ 923.546674][T21029] hsr_slave_1: entered promiscuous mode [ 923.557573][T21029] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 923.566911][T21029] Cannot create hsr debugfs directory [ 923.804051][T21029] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 923.918113][T21029] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 924.050001][T21029] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 924.104065][T21073] netlink: 'syz.7.5094': attribute type 21 has an invalid length. [ 924.221309][T21029] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 925.255875][ T50] Bluetooth: hci0: command tx timeout [ 927.223397][T21029] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 927.258850][T21029] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 927.272110][T21029] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 927.302859][T21029] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 927.328927][ T50] Bluetooth: hci0: command tx timeout [ 927.700847][T21029] 8021q: adding VLAN 0 to HW filter on device bond0 [ 927.761134][T21029] 8021q: adding VLAN 0 to HW filter on device team0 [ 927.778095][ T2959] bridge0: port 1(bridge_slave_0) entered blocking state [ 927.785302][ T2959] bridge0: port 1(bridge_slave_0) entered forwarding state [ 927.813771][ T2959] bridge0: port 2(bridge_slave_1) entered blocking state [ 927.821009][ T2959] bridge0: port 2(bridge_slave_1) entered forwarding state [ 927.942554][T21029] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 928.333635][T21029] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 928.476398][T21121] loop4: detected capacity change from 0 to 512 [ 928.551623][T21121] EXT4-fs (loop4): too many log groups per flexible block group [ 928.578823][T21121] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 928.585736][T21121] EXT4-fs (loop4): mount failed [ 928.785432][T21029] veth0_vlan: entered promiscuous mode [ 928.812300][T21029] veth1_vlan: entered promiscuous mode [ 928.871190][T21135] 9pnet_fd: Insufficient options for proto=fd [ 928.877239][T21029] veth0_macvtap: entered promiscuous mode [ 928.887587][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 928.887601][ T28] audit: type=1326 audit(1756493832.876:4194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21136 comm="syz.7.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 928.890204][T21029] veth1_macvtap: entered promiscuous mode [ 928.916620][ T28] audit: type=1326 audit(1756493832.876:4195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21136 comm="syz.7.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 928.953213][ T28] audit: type=1326 audit(1756493832.926:4196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21136 comm="syz.7.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 928.987928][ T28] audit: type=1326 audit(1756493832.926:4197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21136 comm="syz.7.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 929.014032][T21137] vlan2: entered allmulticast mode [ 929.022814][ T28] audit: type=1326 audit(1756493832.926:4198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21136 comm="syz.7.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 929.028776][T21137] dummy0: entered allmulticast mode [ 929.068756][ T28] audit: type=1326 audit(1756493832.936:4199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21136 comm="syz.7.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 929.077636][T21140] loop4: detected capacity change from 0 to 512 [ 929.098240][T21138] loop7: detected capacity change from 0 to 2048 [ 929.118605][ T28] audit: type=1326 audit(1756493832.946:4200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21136 comm="syz.7.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 929.154817][ T28] audit: type=1326 audit(1756493832.946:4201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21136 comm="syz.7.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 929.184312][ T28] audit: type=1326 audit(1756493832.946:4202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21136 comm="syz.7.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 929.187243][T21140] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 929.207591][ T28] audit: type=1326 audit(1756493832.946:4203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21136 comm="syz.7.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 929.245282][T21029] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 929.246729][T21138] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: writeback. [ 929.270447][T21029] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 929.277393][T21140] ext4 filesystem being mounted at /155/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 929.280890][T21029] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 929.304573][T21029] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 929.349122][T21029] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 929.369072][T21029] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 929.379822][T21029] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 929.390630][T21029] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 929.401994][T21029] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 929.414480][T21029] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 929.442290][T19465] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 929.445475][T21029] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 929.497986][T21029] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 929.507113][T21029] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 929.518748][T21137] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 929.537243][T21029] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 929.580700][T21137] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 428 with error 28 [ 929.631264][T21137] EXT4-fs (loop7): This should not happen!! Data will be lost [ 929.631264][T21137] [ 929.658515][T21137] EXT4-fs (loop7): Total free blocks count 0 [ 929.675666][T21137] EXT4-fs (loop7): Free/Dirty block details [ 929.687839][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 929.697557][T21137] EXT4-fs (loop7): free_blocks=2415919104 [ 929.702854][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 929.709068][T21137] EXT4-fs (loop7): dirty_blocks=512 [ 929.715801][T21137] EXT4-fs (loop7): Block reservation details [ 929.734330][T21137] EXT4-fs (loop7): i_reserved_data_blocks=32 [ 929.753142][T14908] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 929.770472][T14908] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 930.133996][T21163] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5117'. [ 930.321964][ T42] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28 [ 930.619596][T21174] loop7: detected capacity change from 0 to 164 [ 930.655608][T21174] ISOFS: unable to read i-node block [ 930.671315][T21174] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 930.734988][T21177] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5123'. [ 930.751107][T21177] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5123'. [ 930.770895][T21177] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5123'. [ 930.801222][T21177] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5123'. [ 931.020466][T21188] vlan2: entered allmulticast mode [ 931.344500][T21195] loop5: detected capacity change from 0 to 164 [ 931.353368][T21195] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 931.386920][T21195] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 931.434616][T21195] Symlink component flag not implemented [ 931.461402][T21195] Symlink component flag not implemented [ 931.467169][T21195] Symlink component flag not implemented (7) [ 931.514661][T21195] Symlink component flag not implemented (116) [ 932.279504][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 932.317424][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 932.485146][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 932.521011][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 932.567155][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 932.592467][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 932.620331][T21212] vlan2: entered allmulticast mode [ 932.626837][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 932.645347][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 932.654664][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 932.663054][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 932.671157][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 932.680227][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 932.688098][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 932.759646][T21216] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5135'. [ 933.377713][T21218] netlink: 'syz.4.5138': attribute type 10 has an invalid length. [ 933.387485][T21218] netlink: 152 bytes leftover after parsing attributes in process `syz.4.5138'. [ 933.399853][T21218] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 933.484181][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.493675][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.501773][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.509623][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.517378][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.537105][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.545069][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.568560][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.576373][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.597254][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.612394][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.624366][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.632424][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.640377][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.650349][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.661921][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.698761][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.706553][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.738741][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.746550][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.768716][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.776508][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.806385][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.821012][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.832392][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.840882][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.849351][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.857138][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.857938][T21231] loop7: detected capacity change from 0 to 164 [ 933.865263][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.879400][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.879802][T21231] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 933.887145][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.887173][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.887196][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.887218][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.909563][T21231] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 933.937577][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.946739][T21231] Symlink component flag not implemented [ 933.952618][T21231] Symlink component flag not implemented [ 933.958401][T21231] Symlink component flag not implemented (7) [ 933.968960][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.976840][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.989340][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 933.997202][T21231] Symlink component flag not implemented (116) [ 934.006716][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 934.015883][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 934.027282][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 934.052771][ T5874] hid-generic 0008:0006:80000007.000C: unknown main item tag 0x0 [ 934.077866][ T5874] hid-generic 0008:0006:80000007.000C: hidraw0: HID v0.0b Device [syz1] on syz1 [ 934.833275][T21245] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5148'. [ 935.969075][T21257] netlink: 14 bytes leftover after parsing attributes in process `syz.1.5153'. [ 935.999986][T21257] (null): rxe_set_mtu: Set mtu to 1024 [ 936.005963][T21257] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 937.364761][T21277] netlink: 14 bytes leftover after parsing attributes in process `syz.1.5162'. [ 937.394616][T21277] (null): rxe_set_mtu: Set mtu to 1024 [ 937.402758][T21277] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 937.527139][T21281] loop7: detected capacity change from 0 to 164 [ 937.536627][T21281] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 937.553139][T21281] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 937.564035][T21281] Symlink component flag not implemented [ 937.574976][T21281] Symlink component flag not implemented [ 937.580853][T21281] Symlink component flag not implemented (7) [ 937.586963][T21281] Symlink component flag not implemented (116) [ 937.936290][T21298] netlink: 14 bytes leftover after parsing attributes in process `syz.5.5171'. [ 938.004412][T21298] (null): rxe_set_mtu: Set mtu to 1024 [ 938.138983][T21298] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 938.763799][T21301] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5172'. [ 939.116189][T21311] loop7: detected capacity change from 0 to 164 [ 939.163316][T21311] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 939.246346][T21311] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 939.267161][T21311] Symlink component flag not implemented [ 939.275320][T21311] Symlink component flag not implemented [ 939.281734][T21311] Symlink component flag not implemented (7) [ 939.287852][T21311] Symlink component flag not implemented (116) [ 939.688248][T21324] netlink: 14 bytes leftover after parsing attributes in process `syz.4.5182'. [ 939.707816][T21324] (null): rxe_set_mtu: Set mtu to 1024 [ 939.714388][T21324] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 940.899150][T21335] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 941.197234][T21343] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5190'. [ 941.222366][T21343] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 941.231412][T21343] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 941.240321][T21343] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 941.249156][T21343] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 941.273264][T21343] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5190'. [ 941.517138][T21347] netlink: 14 bytes leftover after parsing attributes in process `syz.5.5192'. [ 941.539776][T21347] (null): rxe_set_mtu: Set mtu to 1024 [ 941.557019][T21347] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 941.572013][T21349] loop4: detected capacity change from 0 to 1024 [ 941.630730][T21349] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 941.683323][T21349] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4031: comm syz.4.5193: Allocating blocks 385-513 which overlap fs metadata [ 941.716821][T21349] EXT4-fs (loop4): pa ffff8880572b5bc8: logic 16, phys. 129, len 24 [ 941.725531][T21349] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8 [ 941.841502][T21358] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5197'. [ 941.970365][T21364] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5199'. [ 942.118113][T21369] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5201'. [ 942.130362][T21369] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5201'. [ 942.135860][T19465] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 942.139816][T21369] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5201'. [ 942.158784][T21369] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5201'. [ 942.169205][T21369] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5201'. [ 942.977038][ T28] kauditd_printk_skb: 32 callbacks suppressed [ 942.977052][ T28] audit: type=1326 audit(1756493846.966:4236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21374 comm="syz.7.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 943.014476][ T28] audit: type=1326 audit(1756493846.976:4237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21374 comm="syz.7.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 943.056495][ T28] audit: type=1326 audit(1756493846.976:4238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21374 comm="syz.7.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 943.083833][ T28] audit: type=1326 audit(1756493846.976:4239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21374 comm="syz.7.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 943.111657][ T28] audit: type=1326 audit(1756493846.976:4240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21374 comm="syz.7.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 943.145919][ T28] audit: type=1326 audit(1756493846.976:4241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21374 comm="syz.7.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 943.180637][ T28] audit: type=1326 audit(1756493846.976:4242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21374 comm="syz.7.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 943.208205][ T28] audit: type=1326 audit(1756493846.976:4243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21374 comm="syz.7.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 943.235681][ T28] audit: type=1326 audit(1756493846.976:4244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21374 comm="syz.7.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 943.267253][ T28] audit: type=1326 audit(1756493846.976:4245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21374 comm="syz.7.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 943.350335][T21384] loop7: detected capacity change from 0 to 164 [ 943.373895][T21384] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 943.399544][T21384] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 943.418619][T21384] Symlink component flag not implemented [ 943.424314][T21384] Symlink component flag not implemented [ 943.438653][T21384] Symlink component flag not implemented (7) [ 943.444863][T21384] Symlink component flag not implemented (116) [ 943.805236][T21395] bridge_slave_1: left allmulticast mode [ 943.821450][T21395] bridge_slave_1: left promiscuous mode [ 943.836103][T21395] bridge0: port 2(bridge_slave_1) entered disabled state [ 943.865326][T21395] bridge0: port 1(bridge_slave_0) entered disabled state [ 944.027652][T21397] loop7: detected capacity change from 0 to 1024 [ 944.076534][T21397] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.5212: Failed to acquire dquot type 0 [ 944.096012][T21397] EXT4-fs error (device loop7): mb_free_blocks:1938: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 944.116683][T21397] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #13: comm syz.7.5212: corrupted inode contents [ 944.134456][T21397] EXT4-fs error (device loop7): ext4_dirty_inode:6106: inode #13: comm syz.7.5212: mark_inode_dirty error [ 944.153727][T21397] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #13: comm syz.7.5212: corrupted inode contents [ 944.194616][T21397] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #13: comm syz.7.5212: mark_inode_dirty error [ 944.219089][T21397] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #13: comm syz.7.5212: corrupted inode contents [ 944.235966][T21397] EXT4-fs error (device loop7) in ext4_orphan_del:305: Corrupt filesystem [ 944.245211][T21397] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #13: comm syz.7.5212: corrupted inode contents [ 944.272592][T21397] EXT4-fs error (device loop7): ext4_truncate:4288: inode #13: comm syz.7.5212: mark_inode_dirty error [ 944.298547][T21397] EXT4-fs error (device loop7) in ext4_process_orphan:347: Corrupt filesystem [ 944.324185][T21397] EXT4-fs (loop7): 1 truncate cleaned up [ 944.339740][T21397] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 944.664854][T20035] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 944.805729][T21412] loop7: detected capacity change from 0 to 736 [ 944.854937][T21412] rock: directory entry would overflow storage [ 944.909296][T21412] rock: sig=0x4f50, size=4, remaining=3 [ 944.921997][T21412] iso9660: Corrupted directory entry in block 2 of inode 1472 [ 945.204553][T21419] loop5: detected capacity change from 0 to 164 [ 945.215567][T21419] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 945.229687][T21419] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 946.785426][T21419] Symlink component flag not implemented [ 946.806004][T21419] Symlink component flag not implemented [ 946.836705][T21419] Symlink component flag not implemented (7) [ 946.882094][T21419] Symlink component flag not implemented (116) [ 947.520301][T21432] loop5: detected capacity change from 0 to 164 [ 947.580222][T21432] ISOFS: unable to read i-node block [ 947.585654][T21432] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 947.864761][T21443] __nla_validate_parse: 4 callbacks suppressed [ 947.864879][T21443] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5226'. [ 947.941857][T21445] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5227'. [ 948.611573][T21450] loop5: detected capacity change from 0 to 164 [ 948.640490][T21450] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 948.679132][T21450] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 948.698762][T21450] Symlink component flag not implemented [ 948.704444][T21450] Symlink component flag not implemented [ 948.710840][T21450] Symlink component flag not implemented (7) [ 948.716853][T21450] Symlink component flag not implemented (116) [ 948.872036][T21456] futex_wake_op: syz.4.5233 tries to shift op by -1; fix this program [ 948.974746][T21465] loop5: detected capacity change from 0 to 164 [ 948.991369][T21465] ISOFS: unable to read i-node block [ 948.997980][T21465] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 949.122457][T21472] netlink: 14 bytes leftover after parsing attributes in process `syz.5.5241'. [ 949.309114][T21478] loop5: detected capacity change from 0 to 164 [ 949.320622][T21478] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 949.340983][T21478] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 949.354554][T21478] Symlink component flag not implemented [ 949.368127][T21478] Symlink component flag not implemented [ 949.378697][T21478] Symlink component flag not implemented (7) [ 949.384881][T21478] Symlink component flag not implemented (116) [ 949.777498][T21496] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5252'. [ 950.049137][T21496] team0 (unregistering): Port device team_slave_0 removed [ 950.071725][T21496] team0 (unregistering): Port device team_slave_1 removed [ 950.709116][T21500] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 950.726640][T21500] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 950.812806][T21500] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 950.835624][T21500] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 950.859227][T21500] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 950.885210][T21500] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 950.922475][T21500] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 950.960588][T21500] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 951.005977][T21500] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 951.017910][T21500] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 951.042873][T21500] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 951.057834][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 951.057849][ T28] audit: type=1326 audit(1756493855.046:4251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21513 comm="syz.1.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 951.107722][ T28] audit: type=1326 audit(1756493855.046:4252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21513 comm="syz.1.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 951.146896][ T28] audit: type=1326 audit(1756493855.046:4253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21513 comm="syz.1.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 951.224097][T21526] loop4: detected capacity change from 0 to 164 [ 951.231814][ T28] audit: type=1326 audit(1756493855.046:4254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21513 comm="syz.1.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 951.255594][ T28] audit: type=1326 audit(1756493855.046:4255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21513 comm="syz.1.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 951.288924][T21526] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 951.336329][ T28] audit: type=1326 audit(1756493855.046:4256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21513 comm="syz.1.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 951.359456][T21526] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 951.381265][T21526] Symlink component flag not implemented [ 951.405871][ T28] audit: type=1326 audit(1756493855.046:4257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21513 comm="syz.1.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 951.413043][T21526] Symlink component flag not implemented [ 951.461487][ T28] audit: type=1326 audit(1756493855.056:4258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21513 comm="syz.1.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 951.476904][T21526] Symlink component flag not implemented (7) [ 951.484713][ T28] audit: type=1326 audit(1756493855.056:4259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21513 comm="syz.1.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 951.519091][T21526] Symlink component flag not implemented (116) [ 951.520137][ T28] audit: type=1326 audit(1756493855.056:4260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21513 comm="syz.1.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 951.881151][T21543] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5269'. [ 952.238946][ T50] Bluetooth: hci2: command 0x0406 tx timeout [ 953.420564][T19466] Bluetooth: hci3: command 0x0c1a tx timeout [ 953.426880][T19466] Bluetooth: hci0: command 0x0c1a tx timeout [ 953.433082][ T50] Bluetooth: hci4: command 0x0c1a tx timeout [ 953.570243][T21553] loop7: detected capacity change from 0 to 8192 [ 953.610854][T21553] FAT-fs (loop7): Unrecognized mount option "‘odots" or missing value [ 954.288679][ T5795] Bluetooth: hci2: command 0x0406 tx timeout [ 954.421775][T21573] netlink: 'syz.7.5281': attribute type 10 has an invalid length. [ 954.435865][T21573] netlink: 40 bytes leftover after parsing attributes in process `syz.7.5281'. [ 954.445785][T21573] dummy0: entered promiscuous mode [ 954.460815][T21573] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 954.698689][T21579] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5284'. [ 954.907365][T21583] sd 0:0:1:0: device reset [ 955.041447][T21585] loop5: detected capacity change from 0 to 164 [ 955.083321][T21585] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 955.123987][T21585] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 955.146961][T21585] Symlink component flag not implemented [ 955.168527][T21585] Symlink component flag not implemented [ 955.174663][T21585] Symlink component flag not implemented (7) [ 955.191994][T21585] Symlink component flag not implemented (116) [ 955.402798][T21599] loop5: detected capacity change from 0 to 1024 [ 955.410796][T21599] EXT4-fs: Ignoring removed orlov option [ 955.490832][ T5795] Bluetooth: hci4: command 0x0c1a tx timeout [ 955.497050][ T5795] Bluetooth: hci0: command 0x0c1a tx timeout [ 955.503238][ T5795] Bluetooth: hci3: command 0x0c1a tx timeout [ 955.535345][T21599] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 955.694713][T21604] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5293'. [ 956.325051][T21029] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 956.421928][T21612] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5296'. [ 956.940524][T21623] loop5: detected capacity change from 0 to 164 [ 956.980063][T21623] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 957.011470][T21623] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 957.036913][T21623] Symlink component flag not implemented [ 957.053962][T21623] Symlink component flag not implemented [ 957.068939][T21623] Symlink component flag not implemented (7) [ 957.088598][T21623] Symlink component flag not implemented (116) [ 957.268214][T21628] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5303'. [ 957.279249][T21628] netem: change failed [ 957.290984][T21628] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5303'. [ 957.440193][T21632] loop5: detected capacity change from 0 to 1024 [ 957.481267][T21632] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 957.568705][T19466] Bluetooth: hci3: command 0x0c1a tx timeout [ 957.574904][ T5795] Bluetooth: hci0: command 0x0c1a tx timeout [ 957.581270][ T5795] Bluetooth: hci4: command 0x0c1a tx timeout [ 957.640468][T21632] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4031: comm syz.5.5304: Allocating blocks 385-513 which overlap fs metadata [ 957.707173][T21632] EXT4-fs (loop5): pa ffff8880572b5d98: logic 16, phys. 129, len 24 [ 957.715492][T21632] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8 [ 958.063013][T21029] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 958.369118][ T28] kauditd_printk_skb: 114 callbacks suppressed [ 958.369133][ T28] audit: type=1326 audit(1756493862.366:4375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21646 comm="syz.1.5309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 958.502914][ T28] audit: type=1326 audit(1756493862.496:4376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21646 comm="syz.1.5309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 958.526778][ T28] audit: type=1326 audit(1756493862.496:4377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21646 comm="syz.1.5309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 958.558530][ T28] audit: type=1326 audit(1756493862.496:4378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21646 comm="syz.1.5309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 958.598539][ T28] audit: type=1326 audit(1756493862.556:4379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21646 comm="syz.1.5309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 958.644055][T21654] loop7: detected capacity change from 0 to 164 [ 958.651024][ T28] audit: type=1326 audit(1756493862.556:4380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21646 comm="syz.1.5309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 958.701459][ T28] audit: type=1326 audit(1756493862.556:4381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21646 comm="syz.1.5309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 958.741290][T21654] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 958.769495][T21654] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 958.777881][ T28] audit: type=1326 audit(1756493862.556:4382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21646 comm="syz.1.5309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 958.808759][T21654] Symlink component flag not implemented [ 958.817525][T21654] Symlink component flag not implemented [ 958.838695][T21654] Symlink component flag not implemented (7) [ 958.844732][T21654] Symlink component flag not implemented (116) [ 958.851128][ T28] audit: type=1326 audit(1756493862.556:4383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21646 comm="syz.1.5309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 958.898557][ T28] audit: type=1326 audit(1756493862.556:4384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21646 comm="syz.1.5309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 959.014633][T21658] loop7: detected capacity change from 0 to 512 [ 959.051407][T21658] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 959.254814][T20035] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 959.750356][T21671] loop7: detected capacity change from 0 to 512 [ 959.846490][T21671] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 959.903031][T21671] ext4 filesystem being mounted at /136/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 960.065179][T21680] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5317'. [ 960.579068][T20035] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 960.766461][T21683] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5318'. [ 961.266233][T21689] loop7: detected capacity change from 0 to 8192 [ 961.288307][T21689] FAT-fs (loop7): Unrecognized mount option "‘odots" or missing value [ 962.378887][T21710] loop4: detected capacity change from 0 to 8192 [ 962.386517][T21710] FAT-fs (loop4): Unrecognized mount option "‘odots" or missing value [ 964.190894][T21735] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5339'. [ 967.130580][T21747] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5343'. [ 967.163737][T21748] vlan2: entered allmulticast mode [ 967.185378][T21748] macvtap0: entered allmulticast mode [ 967.198987][T21748] veth0_macvtap: entered allmulticast mode [ 967.199161][T21699] Set syz1 is full, maxelem 65536 reached [ 967.262707][T21749] loop4: detected capacity change from 0 to 1024 [ 967.301786][T21749] __quota_error: 127 callbacks suppressed [ 967.301803][T21749] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5 [ 967.318165][ T28] audit: type=1326 audit(1756493871.296:4512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21743 comm="syz.1.5342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 967.339204][T21749] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 967.345991][ T28] audit: type=1326 audit(1756493871.296:4513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21743 comm="syz.1.5342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 967.374608][ T28] audit: type=1326 audit(1756493871.296:4514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21743 comm="syz.1.5342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 967.394145][T21749] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.5343: Failed to acquire dquot type 0 [ 967.403479][ T28] audit: type=1326 audit(1756493871.296:4515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21743 comm="syz.1.5342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 967.432228][ T28] audit: type=1326 audit(1756493871.296:4516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21743 comm="syz.1.5342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 967.454905][ T28] audit: type=1326 audit(1756493871.296:4517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21743 comm="syz.1.5342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 967.489233][T21749] EXT4-fs error (device loop4): mb_free_blocks:1938: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 967.500695][ T28] audit: type=1326 audit(1756493871.296:4518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21743 comm="syz.1.5342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 967.529383][T21749] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5343: corrupted inode contents [ 967.548556][T21749] EXT4-fs error (device loop4): ext4_dirty_inode:6106: inode #13: comm syz.4.5343: mark_inode_dirty error [ 967.561446][ T28] audit: type=1326 audit(1756493871.296:4519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21743 comm="syz.1.5342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37cd8ebe9 code=0x7ffc0000 [ 967.584106][T21749] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5343: corrupted inode contents [ 967.605391][T21749] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #13: comm syz.4.5343: mark_inode_dirty error [ 967.624684][T21749] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5343: corrupted inode contents [ 967.646929][T21749] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 967.660298][T21749] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5343: corrupted inode contents [ 967.682087][T21749] EXT4-fs error (device loop4): ext4_truncate:4288: inode #13: comm syz.4.5343: mark_inode_dirty error [ 967.696351][T21749] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 967.726118][T21749] EXT4-fs (loop4): 1 truncate cleaned up [ 967.739706][T21749] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 968.005034][T19465] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 968.078931][T21768] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5350'. [ 969.699737][T21788] vlan2: entered allmulticast mode [ 971.106974][T21809] vlan2: entered allmulticast mode [ 972.092264][T21829] loop4: detected capacity change from 0 to 1024 [ 972.099590][T21829] ext4: Unknown parameter 'dont_measure' [ 972.197478][T21830] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5373'. [ 974.044415][ T28] kauditd_printk_skb: 191 callbacks suppressed [ 974.044494][ T28] audit: type=1326 audit(1756493878.036:4711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.4.5382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 974.187785][T21852] loop4: detected capacity change from 0 to 164 [ 974.214958][T21852] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 974.245494][ T28] audit: type=1326 audit(1756493878.076:4712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.4.5382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 974.291072][T21852] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 974.307594][ T28] audit: type=1326 audit(1756493878.076:4713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.4.5382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=161 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 974.327176][T21852] Symlink component flag not implemented [ 974.330439][ T28] audit: type=1326 audit(1756493878.076:4714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.4.5382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 974.346231][T21852] Symlink component flag not implemented [ 974.358381][ T28] audit: type=1326 audit(1756493878.076:4715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.4.5382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 975.061956][T21852] Symlink component flag not implemented (7) [ 975.067994][T21852] Symlink component flag not implemented (116) [ 975.338209][T21861] vlan2: entered allmulticast mode [ 976.656510][T21875] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5392'. [ 976.676241][T21875] bridge_slave_1: left allmulticast mode [ 976.686363][T21875] bridge_slave_1: left promiscuous mode [ 976.699127][T21875] bridge0: port 2(bridge_slave_1) entered disabled state [ 976.722467][T21875] bridge_slave_0: left allmulticast mode [ 976.728539][T21875] bridge_slave_0: left promiscuous mode [ 976.758716][T21875] bridge0: port 1(bridge_slave_0) entered disabled state [ 976.867497][T21879] loop5: detected capacity change from 0 to 1024 [ 977.032718][T21879] Quota error (device loop5): do_check_range: Getting block 64 out of range 1-5 [ 977.043534][T21879] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0 [ 977.053013][T21879] EXT4-fs error (device loop5): ext4_acquire_dquot:6940: comm syz.5.5392: Failed to acquire dquot type 0 [ 977.129403][T21888] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5394'. [ 978.555172][T21879] EXT4-fs error (device loop5): mb_free_blocks:1938: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 978.577783][T21879] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5392: corrupted inode contents [ 978.595762][T21879] EXT4-fs error (device loop5): ext4_dirty_inode:6106: inode #13: comm syz.5.5392: mark_inode_dirty error [ 978.609132][T21879] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5392: corrupted inode contents [ 978.632793][T21879] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #13: comm syz.5.5392: mark_inode_dirty error [ 978.646120][T21879] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5392: corrupted inode contents [ 978.668002][T21879] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem [ 978.681038][T21879] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5392: corrupted inode contents [ 978.698838][T21879] EXT4-fs error (device loop5): ext4_truncate:4288: inode #13: comm syz.5.5392: mark_inode_dirty error [ 978.728712][T21879] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem [ 978.748386][T21879] EXT4-fs (loop5): 1 truncate cleaned up [ 978.765342][T21879] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 978.827768][T21897] loop7: detected capacity change from 0 to 164 [ 978.837204][T21897] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 978.858127][T21897] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 978.867040][T21897] Symlink component flag not implemented [ 978.873309][T21897] Symlink component flag not implemented [ 978.879321][T21897] Symlink component flag not implemented (7) [ 978.886037][T21897] Symlink component flag not implemented (116) [ 979.012683][T21029] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 979.177328][T21905] loop5: detected capacity change from 0 to 8192 [ 979.192783][T21905] FAT-fs (loop5): Unrecognized mount option "‘odots" or missing value [ 979.537979][T21910] loop5: detected capacity change from 0 to 128 [ 980.422146][T21920] loop4: detected capacity change from 0 to 164 [ 980.478595][T21920] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 980.518915][T21920] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 980.534871][T21903] syz.7.5401: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz7,mems_allowed=0-1 [ 980.557611][T21920] Symlink component flag not implemented [ 980.567544][T21920] Symlink component flag not implemented [ 980.574411][T21903] CPU: 1 PID: 21903 Comm: syz.7.5401 Not tainted syzkaller #0 [ 980.581899][T21903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 980.591988][T21903] Call Trace: [ 980.595283][T21903] [ 980.598231][T21903] dump_stack_lvl+0x16c/0x230 [ 980.602935][T21903] ? show_regs_print_info+0x20/0x20 [ 980.608152][T21903] ? load_image+0x3b0/0x3b0 [ 980.612678][T21903] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 980.619127][T21903] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 980.625743][T21903] warn_alloc+0x210/0x300 [ 980.630104][T21903] ? zone_watermark_ok_safe+0x230/0x230 [ 980.635702][T21903] ? _raw_spin_unlock+0x28/0x40 [ 980.640596][T21903] __vmalloc_node_range+0x662/0x1320 [ 980.645922][T21903] ? free_vm_area+0x50/0x50 [ 980.650486][T21903] ? _raw_spin_unlock+0x28/0x40 [ 980.655373][T21903] ? __kasan_kmalloc+0x8f/0xa0 [ 980.660158][T21903] __vmalloc_node_range+0x568/0x1320 [ 980.665472][T21903] ? hash_netiface_create+0x361/0xff0 [ 980.670866][T21903] ? __asan_memset+0x22/0x40 [ 980.675526][T21903] ? free_vm_area+0x50/0x50 [ 980.680049][T21903] ? kvmalloc_node+0x70/0x180 [ 980.684743][T21903] ? rcu_is_watching+0x15/0xb0 [ 980.689533][T21903] ? kvmalloc_node+0x70/0x180 [ 980.694229][T21903] ? trace_kmalloc+0x1f/0xa0 [ 980.698845][T21903] kvmalloc_node+0x13f/0x180 [ 980.703453][T21903] ? hash_netiface_create+0x361/0xff0 [ 980.708844][T21903] hash_netiface_create+0x361/0xff0 [ 980.714057][T21903] ? __lock_acquire+0x7c80/0x7c80 [ 980.719097][T21903] ? __nla_parse+0x40/0x50 [ 980.723538][T21903] ? hash_netport6_gc+0x570/0x570 [ 980.728578][T21903] ip_set_create+0xa87/0x18e0 [ 980.733287][T21903] ? ip_set_create+0x4b2/0x18e0 [ 980.738163][T21903] ? ip_set_protocol+0x5d0/0x5d0 [ 980.743115][T21903] ? trace_contention_end+0x39/0xe0 [ 980.748375][T21903] nfnetlink_rcv_msg+0xb49/0x1130 [ 980.753418][T21903] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 980.759502][T21903] ? nfnetlink_rcv_msg+0x20e/0x1130 [ 980.764738][T21903] ? nfnetlink_unbind+0x160/0x160 [ 980.769805][T21903] ? __dev_queue_xmit+0x1a64/0x35a0 [ 980.775016][T21903] ? __netlink_deliver_tap+0x5ab/0x830 [ 980.780494][T21903] ? netlink_deliver_tap+0x19c/0x1b0 [ 980.781281][T21920] Symlink component flag not implemented (7) [ 980.785788][T21903] ? netlink_unicast+0x72c/0x8d0 [ 980.796746][T21903] ? netlink_sendmsg+0x8c1/0xbe0 [ 980.801888][T21903] ? ____sys_sendmsg+0x5bf/0x950 [ 980.802099][T21920] Symlink component flag not implemented (116) [ 980.806829][T21903] ? ___sys_sendmsg+0x220/0x290 [ 980.806857][T21903] ? __se_sys_sendmsg+0x1a5/0x270 [ 980.822896][T21903] ? do_syscall_64+0x55/0xb0 [ 980.827547][T21903] netlink_rcv_skb+0x216/0x480 [ 980.832341][T21903] ? nfnetlink_unbind+0x160/0x160 [ 980.837398][T21903] ? netlink_ack+0x1110/0x1110 [ 980.842197][T21903] ? apparmor_capable+0x137/0x1a0 [ 980.847240][T21903] ? bpf_lsm_capable+0x9/0x10 [ 980.851934][T21903] ? security_capable+0x89/0xb0 [ 980.856809][T21903] nfnetlink_rcv+0x274/0x2180 [ 980.861512][T21903] ? __local_bh_enable_ip+0x12e/0x1c0 [ 980.866895][T21903] ? lockdep_hardirqs_on+0x98/0x150 [ 980.872110][T21903] ? __local_bh_enable_ip+0x12e/0x1c0 [ 980.877493][T21903] ? _local_bh_enable+0xa0/0xa0 [ 980.882371][T21903] ? __dev_queue_xmit+0x245/0x35a0 [ 980.887511][T21903] ? nfnetlink_net_exit_batch+0xa0/0xa0 [ 980.893091][T21903] ? __dev_queue_xmit+0x245/0x35a0 [ 980.898233][T21903] ? ref_tracker_free+0x634/0x7d0 [ 980.903270][T21903] ? __copy_skb_header+0xa7/0x550 [ 980.908312][T21903] ? refcount_inc+0x70/0x70 [ 980.912828][T21903] ? __skb_clone+0x63/0x790 [ 980.917347][T21903] ? __skb_clone+0x480/0x790 [ 980.921962][T21903] ? __netlink_deliver_tap+0x7e8/0x830 [ 980.927433][T21903] ? netlink_deliver_tap+0x2e/0x1b0 [ 980.932710][T21903] ? __lock_acquire+0x7c80/0x7c80 [ 980.937758][T21903] ? netlink_deliver_tap+0x2e/0x1b0 [ 980.942977][T21903] netlink_unicast+0x751/0x8d0 [ 980.947782][T21903] netlink_sendmsg+0x8c1/0xbe0 [ 980.952571][T21903] ? netlink_getsockopt+0x580/0x580 [ 980.957792][T21903] ? aa_sock_msg_perm+0x94/0x150 [ 980.962744][T21903] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 980.968039][T21903] ? security_socket_sendmsg+0x80/0xa0 [ 980.973519][T21903] ? netlink_getsockopt+0x580/0x580 [ 980.978729][T21903] ____sys_sendmsg+0x5bf/0x950 [ 980.982626][T21924] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5409'. [ 980.983503][T21903] ? __asan_memset+0x22/0x40 [ 980.997025][T21903] ? __sys_sendmsg_sock+0x30/0x30 [ 981.002077][T21903] ? __import_iovec+0x5f2/0x860 [ 981.006964][T21903] ? import_iovec+0x73/0xa0 [ 981.011498][T21903] ___sys_sendmsg+0x220/0x290 [ 981.016205][T21903] ? __sys_sendmsg+0x270/0x270 [ 981.021045][T21903] __se_sys_sendmsg+0x1a5/0x270 [ 981.025932][T21903] ? __x64_sys_sendmsg+0x80/0x80 [ 981.030715][T21924] loop5: detected capacity change from 0 to 1024 [ 981.030895][T21903] ? lockdep_hardirqs_on+0x98/0x150 [ 981.042412][T21903] do_syscall_64+0x55/0xb0 [ 981.046841][T21903] ? clear_bhb_loop+0x40/0x90 [ 981.051529][T21903] ? clear_bhb_loop+0x40/0x90 [ 981.056224][T21903] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 981.062135][T21903] RIP: 0033:0x7f2a0b58ebe9 [ 981.066580][T21903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 981.086211][T21903] RSP: 002b:00007f2a0c4b0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 981.094646][T21903] RAX: ffffffffffffffda RBX: 00007f2a0b7b5fa0 RCX: 00007f2a0b58ebe9 [ 981.102641][T21903] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003 [ 981.111069][T21903] RBP: 00007f2a0b611e19 R08: 0000000000000000 R09: 0000000000000000 [ 981.119050][T21903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 981.127036][T21903] R13: 00007f2a0b7b6038 R14: 00007f2a0b7b5fa0 R15: 00007ffd868ed8d8 [ 981.135049][T21903] [ 981.171591][T21924] Quota error (device loop5): do_check_range: Getting block 64 out of range 1-5 [ 981.195195][T21924] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0 [ 981.218631][T21903] Mem-Info: [ 981.221789][T21903] active_anon:9780 inactive_anon:0 isolated_anon:0 [ 981.221789][T21903] active_file:17317 inactive_file:40783 isolated_file:0 [ 981.221789][T21903] unevictable:20830 dirty:172 writeback:0 [ 981.221789][T21903] slab_reclaimable:11496 slab_unreclaimable:185197 [ 981.221789][T21903] mapped:24037 shmem:6049 pagetables:432 [ 981.221789][T21903] sec_pagetables:0 bounce:0 [ 981.221789][T21903] kernel_misc_reclaimable:0 [ 981.221789][T21903] free:1192050 free_pcp:11297 free_cma:0 [ 981.268837][T21924] EXT4-fs error (device loop5): ext4_acquire_dquot:6940: comm syz.5.5409: Failed to acquire dquot type 0 [ 981.315516][T21924] EXT4-fs error (device loop5): mb_free_blocks:1938: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 981.348549][T21924] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5409: corrupted inode contents [ 981.351691][T21927] loop4: detected capacity change from 0 to 8192 [ 981.366294][T21924] EXT4-fs error (device loop5): ext4_dirty_inode:6106: inode #13: comm syz.5.5409: mark_inode_dirty error [ 981.368050][T21927] FAT-fs (loop4): Unrecognized mount option "‘odots" or missing value [ 981.378889][T21924] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5409: corrupted inode contents [ 981.386689][T21903] Node 0 active_anon:70420kB inactive_anon:0kB active_file:69268kB inactive_file:162928kB unevictable:44784kB isolated(anon):0kB isolated(file):0kB mapped:96148kB dirty:688kB writeback:0kB shmem:24960kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11572kB pagetables:1728kB sec_pagetables:0kB all_unreclaimable? no [ 981.435487][T21924] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #13: comm syz.5.5409: mark_inode_dirty error [ 981.457100][T21903] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 981.457165][T21903] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 981.457217][T21903] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 981.457261][T21903] Node 0 DMA32 free:891024kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:65976kB inactive_anon:0kB active_file:69268kB inactive_file:161600kB unevictable:44784kB writepending:688kB present:3129332kB managed:2589592kB mlocked:43248kB bounce:0kB free_pcp:3288kB local_pcp:0kB free_cma:0kB [ 981.457314][T21903] lowmem_reserve[]: 0 0 1 1 1 [ 981.457355][T21903] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 981.457406][T21903] lowmem_reserve[]: 0 0 0 0 0 [ 981.457448][T21903] Node 1 Normal free:3886620kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:24840kB local_pcp:12188kB free_cma:0kB [ 981.457499][T21903] lowmem_reserve[]: 0 0 0 0 0 [ 981.457540][T21903] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 981.457677][T21903] Node 0 DMA32: 1706*4kB (UME) 445*8kB (UME) 362*16kB (UME) 325*32kB (UME) 19*64kB (ME) 28*128kB (UME) 38*256kB (ME) 32*512kB (ME) 20*1024kB (UME) 9*2048kB (ME) 194*4096kB (M) = 891024kB [ 981.457874][T21903] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 981.457997][T21903] Node 1 Normal: 261*4kB (UME) 53*8kB (UME) 42*16kB (UME) 68*32kB (UME) 23*64kB (UME) 7*128kB (UE) 0*256kB 2*512kB (UM) 0*1024kB 2*2048kB (UE) 946*4096kB (M) = 3886620kB [ 981.458166][T21903] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 981.458182][T21903] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 981.458198][T21903] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 981.458214][T21903] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 981.458229][T21903] 64637 total pagecache pages [ 981.458240][T21903] 0 pages in swap cache [ 981.458248][T21903] Free swap = 124436kB [ 981.458256][T21903] Total swap = 124996kB [ 981.458264][T21903] 2097051 pages RAM [ 981.458271][T21903] 0 pages HighMem/MovableOnly [ 981.458279][T21903] 416139 pages reserved [ 981.458286][T21903] 0 pages cma reserved [ 981.784390][T21924] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5409: corrupted inode contents [ 981.796756][T21924] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem [ 981.805786][T21924] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5409: corrupted inode contents [ 981.823770][T21924] EXT4-fs error (device loop5): ext4_truncate:4288: inode #13: comm syz.5.5409: mark_inode_dirty error [ 981.858579][T21924] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem [ 981.878981][T21924] EXT4-fs (loop5): 1 truncate cleaned up [ 981.885756][T21924] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 982.195532][T21029] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 982.988880][T21942] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5414'. [ 983.766051][ T28] audit: type=1326 audit(1756493887.756:4716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21948 comm="syz.5.5418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 983.797839][ T28] audit: type=1326 audit(1756493887.756:4717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21948 comm="syz.5.5418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 983.822731][ T28] audit: type=1326 audit(1756493887.796:4718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21948 comm="syz.5.5418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 983.845497][ T28] audit: type=1326 audit(1756493887.796:4719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21948 comm="syz.5.5418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 983.868118][ T28] audit: type=1326 audit(1756493887.796:4720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21948 comm="syz.5.5418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 983.900039][ T28] audit: type=1326 audit(1756493887.796:4721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21948 comm="syz.5.5418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 983.922638][ T28] audit: type=1326 audit(1756493887.806:4722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21948 comm="syz.5.5418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 983.945475][ T28] audit: type=1326 audit(1756493887.806:4723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21948 comm="syz.5.5418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 984.257514][T21960] vlan2: entered allmulticast mode [ 985.812232][T21970] sd 0:0:1:0: device reset [ 985.914163][T21974] loop4: detected capacity change from 0 to 1024 [ 985.935468][T21974] EXT4-fs: Ignoring removed orlov option [ 986.065003][T21974] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 986.089620][T21978] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5429'. [ 986.818002][T19465] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 986.964758][T21990] ip6gretap0: entered promiscuous mode [ 987.214522][T21995] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5432'. [ 987.333403][T21998] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5434'. [ 988.474332][T22018] sd 0:0:1:0: device reset [ 988.490887][T22016] vlan2: entered allmulticast mode [ 988.798967][T22030] syzkaller0: entered promiscuous mode [ 988.804781][T22030] syzkaller0: entered allmulticast mode [ 988.940256][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 988.940270][ T28] audit: type=1326 audit(1756493892.936:4731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22032 comm="syz.5.5447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 988.994291][ T28] audit: type=1326 audit(1756493892.936:4732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22032 comm="syz.5.5447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 989.048645][ T28] audit: type=1326 audit(1756493892.966:4733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22032 comm="syz.5.5447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 989.088943][ T28] audit: type=1326 audit(1756493892.966:4734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22032 comm="syz.5.5447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 989.126955][ T28] audit: type=1326 audit(1756493892.966:4735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22032 comm="syz.5.5447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 989.754830][T22041] sd 0:0:1:0: device reset [ 990.203758][ T28] audit: type=1326 audit(1756493894.196:4736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22047 comm="syz.4.5454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 990.279485][ T28] audit: type=1326 audit(1756493894.196:4737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22047 comm="syz.4.5454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 990.367772][ T28] audit: type=1326 audit(1756493894.196:4738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22047 comm="syz.4.5454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 990.397046][ T28] audit: type=1326 audit(1756493894.196:4739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22047 comm="syz.4.5454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 990.432945][ T28] audit: type=1326 audit(1756493894.206:4740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22047 comm="syz.4.5454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e7f38ebe9 code=0x7ffc0000 [ 990.889667][T22061] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5453'. [ 992.126921][T22069] loop5: detected capacity change from 0 to 2048 [ 992.212665][T22069] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 992.377840][T21029] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 992.849216][T22086] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5462'. [ 993.259145][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 993.265648][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 993.937595][T22091] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5465'. [ 995.331700][T22106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5471'. [ 995.415829][T22110] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5472'. [ 995.433519][T22110] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5472'. [ 995.833672][T22122] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5474'. [ 996.016515][T22126] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5479'. [ 996.113125][T22126] loop4: detected capacity change from 0 to 1024 [ 996.135891][T22126] __quota_error: 46 callbacks suppressed [ 996.135906][T22126] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5 [ 996.150953][T22126] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 996.160476][T22126] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.5479: Failed to acquire dquot type 0 [ 996.180572][T22126] EXT4-fs error (device loop4): mb_free_blocks:1938: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 996.196783][T22126] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5479: corrupted inode contents [ 996.212656][T22126] EXT4-fs error (device loop4): ext4_dirty_inode:6106: inode #13: comm syz.4.5479: mark_inode_dirty error [ 996.230204][T22126] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5479: corrupted inode contents [ 996.243050][T22126] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #13: comm syz.4.5479: mark_inode_dirty error [ 996.254938][T22126] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5479: corrupted inode contents [ 996.278998][T22126] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 996.298722][T22126] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #13: comm syz.4.5479: corrupted inode contents [ 996.315997][T22126] EXT4-fs error (device loop4): ext4_truncate:4288: inode #13: comm syz.4.5479: mark_inode_dirty error [ 996.335059][T22126] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 996.347662][T22126] EXT4-fs (loop4): 1 truncate cleaned up [ 996.359200][T22126] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 996.535399][ T28] audit: type=1326 audit(1756493900.526:4787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22139 comm="syz.1.5485" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb37cd8ebe9 code=0x0 [ 996.765125][T22144] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5484'. [ 997.353935][T19465] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 997.462897][T22147] loop5: detected capacity change from 0 to 8192 [ 997.470324][T22147] FAT-fs (loop5): Unrecognized mount option "‘odots" or missing value [ 997.612137][ T28] audit: type=1326 audit(1756493901.596:4788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22146 comm="syz.5.5487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 997.679481][ T28] audit: type=1326 audit(1756493901.606:4789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22146 comm="syz.5.5487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 997.747004][ T28] audit: type=1326 audit(1756493901.606:4790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22146 comm="syz.5.5487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 997.789606][ T28] audit: type=1326 audit(1756493901.606:4791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22146 comm="syz.5.5487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 997.842545][ T28] audit: type=1326 audit(1756493901.606:4792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22146 comm="syz.5.5487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 997.898795][ T28] audit: type=1326 audit(1756493901.606:4793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22146 comm="syz.5.5487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 997.942809][ T28] audit: type=1326 audit(1756493901.606:4794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22146 comm="syz.5.5487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a6b98ebe9 code=0x7ffc0000 [ 998.057308][T22155] netlink: 'syz.4.5491': attribute type 10 has an invalid length. [ 998.087122][T22155] team0: Port device dummy0 added [ 998.205369][T22166] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5496'. [ 998.239836][T22166] loop5: detected capacity change from 0 to 1024 [ 998.255507][T22166] EXT4-fs error (device loop5): ext4_acquire_dquot:6940: comm syz.5.5496: Failed to acquire dquot type 0 [ 998.279096][T22166] EXT4-fs error (device loop5): mb_free_blocks:1938: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 998.301378][T22166] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5496: corrupted inode contents [ 998.316367][T22166] EXT4-fs error (device loop5): ext4_dirty_inode:6106: inode #13: comm syz.5.5496: mark_inode_dirty error [ 998.316826][ T23] kernel write not supported for file /599/attr/exec (pid: 23 comm: kworker/1:0) [ 998.331779][T22166] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5496: corrupted inode contents [ 998.361916][T22166] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #13: comm syz.5.5496: mark_inode_dirty error [ 998.406831][T22166] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5496: corrupted inode contents [ 998.453229][T22166] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem [ 998.475021][T22166] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.5496: corrupted inode contents [ 998.509693][T22166] EXT4-fs error (device loop5): ext4_truncate:4288: inode #13: comm syz.5.5496: mark_inode_dirty error [ 998.534700][T22166] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem [ 998.580042][ T2922] tipc: Left network mode [ 998.587924][T22166] EXT4-fs (loop5): 1 truncate cleaned up [ 998.601485][T22176] vlan2: entered allmulticast mode [ 998.610436][T22166] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 999.037741][T22186] macvtap0: refused to change device tx_queue_len [ 999.068258][T21029] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 999.719200][T22208] vlan2: entered allmulticast mode [ 999.762757][T22210] netlink: 96 bytes leftover after parsing attributes in process `syz.5.5513'. [ 999.911165][T22214] loop5: detected capacity change from 0 to 164 [ 999.931809][T22214] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 999.968090][T22214] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 999.998259][T22214] Symlink component flag not implemented [ 1000.015566][T22214] Symlink component flag not implemented [ 1000.027276][T22214] Symlink component flag not implemented (7) [ 1000.037307][T22214] Symlink component flag not implemented (116) [ 1000.585943][T22232] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5520'. [ 1001.141956][ T28] kauditd_printk_skb: 140 callbacks suppressed [ 1001.141972][ T28] audit: type=1326 audit(1756493905.106:4933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22220 comm="syz.4.5519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3e7f32ade9 code=0x7ffc0000 [ 1001.225031][T22236] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5523'. [ 1001.386236][T22239] vlan2: entered allmulticast mode [ 1001.538465][ T2922] veth1_macvtap: left promiscuous mode [ 1001.544559][ T2922] veth0_macvtap: left allmulticast mode [ 1001.550327][ T2922] veth0_macvtap: left promiscuous mode [ 1001.556091][ T2922] veth1_vlan: left promiscuous mode [ 1001.568824][ T2922] veth0_vlan: left promiscuous mode [ 1001.747121][ T2922] infiniband syz!: set down [ 1002.344286][ T2922] bond1 (unregistering): Released all slaves [ 1003.354313][ T2922] team0 (unregistering): Port device team_slave_1 removed [ 1003.484083][ T2922] team0 (unregistering): Port device team_slave_0 removed [ 1003.505575][T16152] smc: removing ib device syz! [ 1004.029515][ T23] infiniband syz!: ib_query_port failed (-19) [ 1004.078698][T22270] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5538'. [ 1004.099673][T22272] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5539'. [ 1004.420760][T22279] vlan2: entered allmulticast mode [ 1004.672075][T22283] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5540'. [ 1005.324551][T22299] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5545'. [ 1006.159476][T22306] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5550'. [ 1006.242379][T22308] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5551'. [ 1006.471010][T22310] loop7: detected capacity change from 0 to 1024 [ 1007.771947][T22325] loop5: detected capacity change from 0 to 512 [ 1008.729956][T22325] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 1008.738288][T22325] EXT4-fs (loop5): orphan cleanup on readonly fs [ 1008.763861][T22325] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #16: comm syz.5.5557: corrupted inode contents [ 1008.830132][T22325] EXT4-fs error (device loop5): ext4_dirty_inode:6106: inode #16: comm syz.5.5557: mark_inode_dirty error [ 1008.863861][T22325] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #16: comm syz.5.5557: corrupted inode contents [ 1008.882078][T22325] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #16: comm syz.5.5557: mark_inode_dirty error [ 1008.895209][T22337] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5560'. [ 1008.912540][T22325] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #16: comm syz.5.5557: corrupted inode contents [ 1008.925180][T22325] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem [ 1008.942400][T22325] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #16: comm syz.5.5557: corrupted inode contents [ 1009.006677][ T2922] tipc: Left network mode [ 1009.015093][T22325] EXT4-fs error (device loop5): ext4_truncate:4288: inode #16: comm syz.5.5557: mark_inode_dirty error [ 1009.057620][T22325] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem [ 1009.081762][T22325] EXT4-fs (loop5): 1 truncate cleaned up [ 1009.109165][ T3465] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 1009.138718][ T3465] EXT4-fs error (device loop5): ext4_release_dquot:6976: comm kworker/u4:13: Failed to release dquot type 1 [ 1009.175675][T22347] vlan2: entered allmulticast mode [ 1009.205933][T22325] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1009.429992][T21029] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1009.647029][T22362] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5572'. [ 1009.661826][T22360] usb usb1: usbfs: process 22360 (syz.1.5571) did not claim interface 0 before use [ 1010.098231][T22370] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5574'. [ 1010.361964][T22380] vlan2: entered allmulticast mode [ 1010.410206][T22383] openvswitch: netlink: Flow actions attr not present in new flow. [ 1010.553487][T22389] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5583'. [ 1010.926787][T22404] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5590'. [ 1011.088229][T22406] loop7: detected capacity change from 0 to 8192 [ 1011.095956][T22406] FAT-fs (loop7): Unrecognized mount option "‘odots" or missing value [ 1011.154991][ T28] audit: type=1326 audit(1756493915.146:4934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22405 comm="syz.7.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 1011.177995][ T28] audit: type=1326 audit(1756493915.156:4935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22405 comm="syz.7.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 1011.200808][ T28] audit: type=1326 audit(1756493915.156:4936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22405 comm="syz.7.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 1011.230306][ T28] audit: type=1326 audit(1756493915.156:4937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22405 comm="syz.7.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 1011.256964][ T28] audit: type=1326 audit(1756493915.156:4938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22405 comm="syz.7.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 1011.280771][ T28] audit: type=1326 audit(1756493915.156:4939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22405 comm="syz.7.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 1011.331229][ T28] audit: type=1326 audit(1756493915.156:4940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22405 comm="syz.7.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 1011.366172][ T28] audit: type=1326 audit(1756493915.156:4941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22405 comm="syz.7.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 1011.395845][ T28] audit: type=1326 audit(1756493915.156:4942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22405 comm="syz.7.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0b58ebe9 code=0x7ffc0000 [ 1011.412845][T22411] loop7: detected capacity change from 0 to 1024 [ 1011.434287][ T2922] hsr_slave_0: left promiscuous mode [ 1011.450724][ T2922] hsr_slave_1: left promiscuous mode [ 1011.457119][ T2922] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1011.461794][T22411] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1011.467250][ T2922] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1011.492506][ T2922] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1011.497224][T22411] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4031: comm syz.7.5592: Allocating blocks 385-513 which overlap fs metadata [ 1011.500153][ T2922] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1011.531475][T22411] EXT4-fs (loop7): pa ffff8880572b5d98: logic 16, phys. 129, len 24 [ 1011.540047][T22411] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8 [ 1011.553490][ T2922] veth1_macvtap: left promiscuous mode [ 1011.560550][ T2922] veth0_macvtap: left promiscuous mode [ 1011.566875][ T2922] veth1_vlan: left promiscuous mode [ 1011.573005][ T2922] veth0_vlan: left promiscuous mode [ 1011.673612][T20035] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1012.819252][ T2922] team0 (unregistering): Port device team_slave_1 removed [ 1012.902100][ T2922] team0 (unregistering): Port device team_slave_0 removed [ 1012.978953][ T2922] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1013.061864][ T2922] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1013.430031][ T2922] bond0 (unregistering): (slave batadv0): Releasing backup interface [ 1013.751534][ T2922] bond0 (unregistering): (slave team0): Releasing backup interface [ 1013.827144][ T2922] bond0 (unregistering): Released all slaves [ 1013.871517][T22412] vlan2: entered allmulticast mode [ 1013.945205][T22418] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5595'. [ 1014.483423][ T2922] IPVS: stop unused estimator thread 0... [ 1014.682518][T22467] loop7: detected capacity change from 0 to 512 [ 1014.748797][T22468] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5611'. [ 1014.776505][T22467] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended [ 1014.893512][T22467] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1014.998060][T22473] vlan2: entered allmulticast mode [ 1015.039494][T22467] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 3: comm syz.7.5613: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0 [ 1015.091888][T22467] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 12: comm syz.7.5613: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0 [ 1015.125674][T22467] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 13: comm syz.7.5613: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0 [ 1015.160127][T22467] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 14: comm syz.7.5613: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 1015.186810][T22467] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 15: comm syz.7.5613: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0 [ 1015.228411][T22467] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 16: comm syz.7.5613: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0 [ 1015.268013][T22467] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 17: comm syz.7.5613: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 1015.314734][T22467] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #2: block 18: comm syz.7.5613: lblock 23 mapped to illegal pblock 18 (length 1) [ 1015.334499][T22467] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 19: comm syz.7.5613: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0 [ 1015.364233][T22467] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 20: comm syz.7.5613: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0 [ 1015.388311][T22478] loop4: detected capacity change from 0 to 1024 [ 1015.461796][T22478] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1015.513133][ T2922] ------------[ cut here ]------------ [ 1015.518723][ T2922] WARNING: CPU: 1 PID: 2922 at net/xfrm/xfrm_state.c:2997 xfrm_state_fini+0x25c/0x2b0 [ 1015.518995][T22478] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4031: comm syz.4.5617: Allocating blocks 385-513 which overlap fs metadata [ 1015.528298][ T2922] Modules linked in: [ 1015.528339][ T2922] CPU: 1 PID: 2922 Comm: kworker/u4:9 Not tainted syzkaller #0 [ 1015.554807][ T2922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1015.565280][ T2922] Workqueue: netns cleanup_net [ 1015.570645][ T2922] RIP: 0010:xfrm_state_fini+0x25c/0x2b0 [ 1015.576233][ T2922] Code: 5c 41 5d 41 5e 41 5f 5d e9 81 20 00 00 e8 4c ed 66 f8 0f 0b e9 2c fe ff ff e8 40 ed 66 f8 0f 0b e9 91 fe ff ff e8 34 ed 66 f8 <0f> 0b 43 80 3c 2c 00 0f 85 fa fe ff ff e9 fd fe ff ff e8 1d ed 66 [ 1015.596349][ T2922] RSP: 0018:ffffc9000c1d7a98 EFLAGS: 00010293 [ 1015.602960][ T2922] RAX: ffffffff891ea26c RBX: ffff888023b33a80 RCX: ffff88802b37bc00 [ 1015.611186][ T2922] RDX: 0000000000000000 RSI: ffffffff8aaaba20 RDI: ffffffff8afc7040 [ 1015.619392][ T2922] RBP: 0000000000000040 R08: ffffffff90da550f R09: 1ffffffff21b4aa1 [ 1015.627386][ T2922] R10: dffffc0000000000 R11: fffffbfff21b4aa2 R12: 1ffff110047669c4 [ 1015.635459][ T2922] R13: dffffc0000000000 R14: ffff888023b34e20 R15: ffff888060a75000 [ 1015.635488][T22487] EXT4-fs (loop4): pa ffff888058e5d658: logic 16, phys. 129, len 24 [ 1015.644011][ T2922] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 1015.644035][ T2922] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1015.644049][ T2922] CR2: 0000555588459808 CR3: 000000000cb30000 CR4: 00000000003506e0 [ 1015.644067][ T2922] Call Trace: [ 1015.644076][ T2922] [ 1015.644090][ T2922] xfrm_net_exit+0x25/0x60 [ 1015.644115][ T2922] cleanup_net+0x6f4/0xb90 [ 1015.644141][ T2922] ? ops_free_list+0x3b0/0x3b0 [ 1015.644169][ T2922] ? _raw_spin_unlock_irq+0x23/0x50 [ 1015.644194][ T2922] ? process_scheduled_works+0x957/0x15b0 [ 1015.644216][ T2922] ? process_scheduled_works+0x957/0x15b0 [ 1015.644238][ T2922] process_scheduled_works+0xa45/0x15b0 [ 1015.644288][ T2922] ? assign_work+0x400/0x400 [ 1015.644316][ T2922] ? assign_work+0x39e/0x400 [ 1015.644340][ T2922] worker_thread+0xa55/0xfc0 [ 1015.652539][T22487] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5372: group 0, [ 1015.661553][ T2922] kthread+0x2fa/0x390 [ 1015.668123][T22487] free 0, pa_free 8 [ 1015.676115][ T2922] ? pr_cont_work+0x560/0x560 [ 1015.676140][ T2922] ? kthread_blkcg+0xd0/0xd0 [ 1015.676156][ T2922] ret_from_fork+0x48/0x80 [ 1015.676174][ T2922] ? kthread_blkcg+0xd0/0xd0 [ 1015.676192][ T2922] ret_from_fork_asm+0x11/0x20 [ 1015.773154][ T2922] [ 1015.776209][ T2922] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1015.783493][ T2922] CPU: 1 PID: 2922 Comm: kworker/u4:9 Not tainted syzkaller #0 [ 1015.791035][ T2922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1015.801098][ T2922] Workqueue: netns cleanup_net [ 1015.805867][ T2922] Call Trace: [ 1015.809139][ T2922] [ 1015.812072][ T2922] dump_stack_lvl+0x16c/0x230 [ 1015.816748][ T2922] ? show_regs_print_info+0x20/0x20 [ 1015.821946][ T2922] ? load_image+0x3b0/0x3b0 [ 1015.826449][ T2922] panic+0x2c0/0x710 [ 1015.830368][ T2922] ? bpf_jit_dump+0xd0/0xd0 [ 1015.834873][ T2922] ? ret_from_fork_asm+0x11/0x20 [ 1015.840074][ T2922] __warn+0x2e0/0x470 [ 1015.844048][ T2922] ? xfrm_state_fini+0x25c/0x2b0 [ 1015.848993][ T2922] ? xfrm_state_fini+0x25c/0x2b0 [ 1015.853923][ T2922] report_bug+0x2be/0x4f0 [ 1015.858246][ T2922] ? xfrm_state_fini+0x25c/0x2b0 [ 1015.863366][ T2922] ? xfrm_state_fini+0x25c/0x2b0 [ 1015.868297][ T2922] ? xfrm_state_fini+0x25e/0x2b0 [ 1015.873225][ T2922] handle_bug+0xcf/0x120 [ 1015.877473][ T2922] exc_invalid_op+0x1a/0x50 [ 1015.881994][ T2922] asm_exc_invalid_op+0x1a/0x20 [ 1015.886942][ T2922] RIP: 0010:xfrm_state_fini+0x25c/0x2b0 [ 1015.892479][ T2922] Code: 5c 41 5d 41 5e 41 5f 5d e9 81 20 00 00 e8 4c ed 66 f8 0f 0b e9 2c fe ff ff e8 40 ed 66 f8 0f 0b e9 91 fe ff ff e8 34 ed 66 f8 <0f> 0b 43 80 3c 2c 00 0f 85 fa fe ff ff e9 fd fe ff ff e8 1d ed 66 [ 1015.912090][ T2922] RSP: 0018:ffffc9000c1d7a98 EFLAGS: 00010293 [ 1015.918146][ T2922] RAX: ffffffff891ea26c RBX: ffff888023b33a80 RCX: ffff88802b37bc00 [ 1015.926129][ T2922] RDX: 0000000000000000 RSI: ffffffff8aaaba20 RDI: ffffffff8afc7040 [ 1015.934089][ T2922] RBP: 0000000000000040 R08: ffffffff90da550f R09: 1ffffffff21b4aa1 [ 1015.942047][ T2922] R10: dffffc0000000000 R11: fffffbfff21b4aa2 R12: 1ffff110047669c4 [ 1015.950019][ T2922] R13: dffffc0000000000 R14: ffff888023b34e20 R15: ffff888060a75000 [ 1015.958000][ T2922] ? xfrm_state_fini+0x25c/0x2b0 [ 1015.962940][ T2922] ? xfrm_state_fini+0x25c/0x2b0 [ 1015.967953][ T2922] xfrm_net_exit+0x25/0x60 [ 1015.972360][ T2922] cleanup_net+0x6f4/0xb90 [ 1015.976769][ T2922] ? ops_free_list+0x3b0/0x3b0 [ 1015.981528][ T2922] ? _raw_spin_unlock_irq+0x23/0x50 [ 1015.986720][ T2922] ? process_scheduled_works+0x957/0x15b0 [ 1015.992514][ T2922] ? process_scheduled_works+0x957/0x15b0 [ 1015.998221][ T2922] process_scheduled_works+0xa45/0x15b0 [ 1016.003798][ T2922] ? assign_work+0x400/0x400 [ 1016.008387][ T2922] ? assign_work+0x39e/0x400 [ 1016.012971][ T2922] worker_thread+0xa55/0xfc0 [ 1016.017566][ T2922] kthread+0x2fa/0x390 [ 1016.021623][ T2922] ? pr_cont_work+0x560/0x560 [ 1016.026308][ T2922] ? kthread_blkcg+0xd0/0xd0 [ 1016.030896][ T2922] ret_from_fork+0x48/0x80 [ 1016.035433][ T2922] ? kthread_blkcg+0xd0/0xd0 [ 1016.040017][ T2922] ret_from_fork_asm+0x11/0x20 [ 1016.044787][ T2922] [ 1016.048033][ T2922] Kernel Offset: disabled [ 1016.052414][ T2922] Rebooting in 86400 seconds..