last executing test programs: 41.851904108s ago: executing program 2 (id=2592): r0 = gettid() r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) read(r1, &(0x7f0000000200)=""/209, 0xd1) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, 0x0) ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0xc05c5340, &(0x7f0000000040)) tkill(r0, 0x7) 41.594016788s ago: executing program 2 (id=2596): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x40095505, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) syz_open_dev$usbfs(0x0, 0x10, 0x20481) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) listxattr(&(0x7f0000000200)='./file1\x00', 0x0, 0x0) 41.363754475s ago: executing program 2 (id=2598): syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, &(0x7f0000000240), 0x25, 0x4b6, &(0x7f0000000b80)="$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") r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 41.075743068s ago: executing program 2 (id=2600): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="5402"], 0x69) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x408e, &(0x7f0000000240), 0x1, 0x43a, &(0x7f0000000340)="$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") open(&(0x7f0000000140)='./bus\x00', 0x143142, 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0) r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x2, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"}) 40.695077742s ago: executing program 2 (id=2604): bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x18, 0x7, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000900)=@framed={{0x18, 0x3}, [@call={0x85, 0x0, 0x0, 0xaf}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 39.516403718s ago: executing program 2 (id=2616): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) mknod$loop(0x0, 0x100000000000600d, 0x1) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x1) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000080000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000040008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000380)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x3ff, 0x0, &(0x7f0000000340)='\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) 39.213532013s ago: executing program 32 (id=2616): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) mknod$loop(0x0, 0x100000000000600d, 0x1) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x1) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000080000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000040008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000380)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x3ff, 0x0, &(0x7f0000000340)='\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) 29.875559632s ago: executing program 4 (id=2682): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)) syz_open_dev$tty1(0xc, 0x4, 0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000440)={'vcan0\x00'}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)) unshare(0x20000400) ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0) 29.395183077s ago: executing program 4 (id=2685): r0 = syz_open_dev$usbfs(&(0x7f00000001c0), 0x77, 0x141301) ioctl$USBDEVFS_FREE_STREAMS(r0, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="020023031000070060"]) ioctl$USBDEVFS_RELEASE_PORT(r0, 0x4004550d, 0x0) 29.180807302s ago: executing program 4 (id=2688): connect$unix(0xffffffffffffffff, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) quotactl_fd$Q_SETINFO(0xffffffffffffffff, 0xffffffff80000600, 0x0, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x20002, 0x0) sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140604000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0) 28.992095894s ago: executing program 4 (id=2690): bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x1200052, &(0x7f00000003c0), 0x1, 0x7aa, &(0x7f0000000800)="$eJzs3d1rW+UfAPDvSZt2v24/W0Fw86ogaGEstbNuCl5MvBDBwUCv3Uqaldm0GU061lKYQwRvBB1eCHqza1/mnbe+3Oq/oDcisjG1G068kMhJkzVd0y7dmnTazwfO9jznPOn3fM/Lc57kHJIAdq3h9J9MxIGIeC+JGKzPTyIiWyv1RhxbaXdreSmfTklUq6/+ltTa3FxeykfTa1J765X9EfHN2xEHM+vjlhcWpyeKxcJcvT5amTk7Wl5YPHRmZmKqMFWYPTI2Pn746DNH+7cv1z++X9x37f2Xnvz82F9vPXrl3W+TOBb76sua89guwzFc3ybZdBOu8eJ2B9thyRbbb+Nu5T6kp2bPylkeB2Iwemql9rTfEgB4kFyIiCoAsMskrv8AsMs0Pge4ubyUT6fqhZ39PKLbrr8QEXtW8m/c31xZ0lu/Z7endh904Gay5n5HEhFD2xB/OCI+/vL1T9MpOnQfEqCVNy9GxKmh4Ub/v9r/JOueWVjR/p37p9poM3xHXf8H3fNVOv55dnX8t3r+ZW6Pf6LF+Ke/xbl7L4Yj+prr68//zNVtCLOhdPz3fHb12bZbTfnXDfXUa/+vjfmyyekzxULatz0UESOR7U/rY5vEGLnx9401M3pWi83jv98vvfFJGj/9f7VF5mrvHV3u5ERl4n7zbrh+MeKx3lb5J7f3f7LB+PdEmzFefu6djzZaluaf5tuY1ua/1afKtq56OeKJaJ1/Q7LZ84lHRmuHw2jjoGjhi58+HNgofvP+T6c0fuO9QDek+39g8/yHkubnNctbj/Hd5cGvN1p29/xbH/99yWu1cqPzOD9RqcyNRfQlr6yff3j1tY16o32a/8jjrc//zY7/9D3hqTbz773262f3nn9npflPbmn/b71w5dZ0z0bx29v/47XSSH1OO/1fuyt4P9sOAAAAAAAAAAAAAAAAAAAAAAAAANqViYh9kWRyt8uZTC638hvej8RAplgqVw6eLs3PTkbtt7KHIptpfNXlYNP3oY7Vvw+/UT98R/3piHg4Ij7o/1+tnsuXipM7nTwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1O3d4Pf/U7/07/TaAQAds+euLW4UurIiAEDX3P36DwD817j+A8Dus/n1P9u19QAAusf7fwDYfVz/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6LATx4+nU/XP5aV8Wp88tzA/XTp3aLJQns7NzOdz+dLc2dxUqTRVLOTypZmml/7Q6u8VS6Wz4zE7f360UihXRssLiydnSvOzlZNnZiamCicL2a5lBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADtKy8sTk8Ui4W5jhT66lE6GGL3FaqDKxv1QVmfzhd+PvTj/s3aXOrwYdxcqF7Y6a3RpcJO9koAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/x7/BAAA//910CYH") r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) ftruncate(r1, 0xc17a) rename(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000340)='./bus\x00', 0x0, 0x1000, 0x0) r2 = open(&(0x7f00000005c0)='./bus\x00', 0x700, 0x0) timer_settime(0x0, 0x1, 0x0, &(0x7f0000000fc0)) ioctl$FS_IOC_SETFLAGS(r2, 0x4c02, &(0x7f0000000140)) syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1a4243c, &(0x7f0000002600)=ANY=[@ANYRES16, @ANYRES64, @ANYBLOB="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", @ANYRES8=r2, @ANYRESDEC, @ANYRES16, @ANYRESDEC=0x0, @ANYBLOB="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", @ANYRES8, @ANYRESOCT], 0x0, 0x0, &(0x7f0000000000)) write$binfmt_script(r0, &(0x7f0000000600)={'#! ', './file0'}, 0xb) 28.089993858s ago: executing program 4 (id=2695): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r2}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000002100010000000000000000000a00004000000000000000000500160000000000080017"], 0x2c}}, 0x0) 27.165773364s ago: executing program 4 (id=2705): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)) syz_open_dev$tty1(0xc, 0x4, 0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000440)={'vcan0\x00'}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)) unshare(0x20000400) ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0) 26.971299377s ago: executing program 33 (id=2705): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)) syz_open_dev$tty1(0xc, 0x4, 0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000440)={'vcan0\x00'}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)) unshare(0x20000400) ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0) 8.172551717s ago: executing program 1 (id=2867): ioctl$TIOCSBRK(0xffffffffffffffff, 0x5427) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10) mount$bind(0x0, 0x0, 0x0, 0x1217880, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000580), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000011"], 0x4c}}, 0x0) 8.025274554s ago: executing program 1 (id=2868): connect$unix(0xffffffffffffffff, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x80a, 0x0) quotactl_fd$Q_SETINFO(r1, 0xffffffff80000600, 0x0, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x20002, 0x0) sendmsg$kcm(r0, 0x0, 0x0) 7.919547496s ago: executing program 1 (id=2869): socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r0}, &(0x7f0000000040), 0x0}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x3810744, &(0x7f00000003c0)={[{@noauto_da_alloc}, {@errors_continue}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@data_err_abort}, {@errors_remount}, {@noinit_itable}, {@mblk_io_submit}, {@i_version}, {@acl}]}, 0xff, 0x451, &(0x7f0000000d00)="$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") mremap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000550000/0x3000)=nil) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() bpf$PROG_LOAD(0x5, 0x0, 0x0) sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000480)='./bus\x00', 0x800, &(0x7f0000000300)={[{@jqfmt_vfsv0}, {@test_dummy_encryption}], [{@subj_role={'subj_role', 0x3d, '\\\\)'}}, {@smackfshat={'smackfshat', 0x3d, 'task\x00'}}, {@fowner_gt}, {@fowner_lt}]}, 0x21, 0x453, &(0x7f0000000a40)="$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") bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bf"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x0, 0x2172, 0xffffffffffffffff, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7) syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000640)='./bus\x00', 0x0, &(0x7f0000000440)=ANY=[], 0x1, 0x1268, &(0x7f0000002500)="$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") r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x156) mkdirat(r5, &(0x7f0000000180)='./bus\x00', 0x0) 5.649656118s ago: executing program 1 (id=2883): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)={{0x14, 0x10, 0x4}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x6c, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x40, 0x3, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x30, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x3}]}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xf0}}, 0x0) 5.390241658s ago: executing program 1 (id=2890): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) r3 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298) sendto$inet(r3, 0x0, 0x0, 0x24000080, 0x0, 0x0) ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000040)={{0x2, 0x0, @multicast2}, {}, 0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'ip6gre0\x00'}) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) openat$misdntimer(0xffffffffffffff9c, 0x0, 0x800, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001600000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x33, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r5}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2000}, [@call={0x85, 0x0, 0x0, 0x75}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x6, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='workqueue_queue_work\x00', r7}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 2.836924903s ago: executing program 1 (id=2925): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) r3 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298) sendto$inet(r3, 0x0, 0x0, 0x24000080, 0x0, 0x0) ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000040)={{0x2, 0x0, @multicast2}, {}, 0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'ip6gre0\x00'}) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) openat$misdntimer(0xffffffffffffff9c, 0x0, 0x800, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001600000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x33, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2000}, [@call={0x85, 0x0, 0x0, 0x75}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x6, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='workqueue_queue_work\x00', r6}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 2.703374348s ago: executing program 0 (id=2916): r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0) socket$igmp6(0xa, 0x3, 0x2) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10) socket$inet_udplite(0x2, 0x2, 0x88) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bond0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x74, r4, {0x0, 0xfff1}, {}, {0x4, 0x9}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0) 1.459608872s ago: executing program 0 (id=2923): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@barrier}, {@debug}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x400}}]}, 0xfe, 0x471, &(0x7f00000008c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) open_by_handle_at(r0, &(0x7f0000000240)=@reiserfs_2={0x18, 0x2, {0xb}}, 0xfeffffff) 1.325756667s ago: executing program 5 (id=2931): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = io_uring_setup(0x1de0, &(0x7f0000000440)) io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000740)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1) io_uring_register$IORING_UNREGISTER_PBUF_RING(r1, 0x17, &(0x7f0000000300)={0x0}, 0x1) 1.282239372s ago: executing program 0 (id=2943): connect$unix(0xffffffffffffffff, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x80a, 0x0) quotactl_fd$Q_SETINFO(r1, 0xffffffff80000600, 0x0, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x20002, 0x0) sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)}, 0x0) 1.160874036s ago: executing program 5 (id=2933): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0a00000003000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'}) 1.160422416s ago: executing program 6 (id=2934): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000003044c49200010020000900010073797a310000000040000000030a01020000000000000000010000000900030073797a300000000014000480080002400000000008000140000000050900010073797a310000000034000000050a010200000000000000000100ffff0c00024000"], 0xbc}}, 0x0) 1.113857092s ago: executing program 3 (id=2935): ioctl$TIOCSBRK(0xffffffffffffffff, 0x5427) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000107000000000000000000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10) mount$bind(0x0, 0x0, 0x0, 0x1217880, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000580), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000011"], 0x4c}}, 0x0) 1.113250102s ago: executing program 0 (id=2936): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000280), 0x1e1982, 0x0) ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f00000000c0)) ioctl$PPPIOCSMAXCID(r2, 0x40047451, &(0x7f0000000140)) ioctl$PPPIOCSFLAGS1(r2, 0x40047459, &(0x7f0000000100)=0x2000004) pwritev(r2, &(0x7f00000001c0)=[{&(0x7f00000004c0)='\x00!G', 0x3}], 0x1, 0x0, 0x0) 1.058680698s ago: executing program 5 (id=2937): bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0x10, &(0x7f0000000700)=ANY=[@ANYBLOB], 0x0, 0xfffffffc, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f00000008c0)=""/160, 0x98}], 0x2, &(0x7f0000000580)=[{&(0x7f00000007c0)=""/220, 0xdc}, {&(0x7f0000001c40)=""/209, 0xdc}, {&(0x7f0000000240)=""/115, 0x73}, {&(0x7f0000000440)=""/87, 0x57}, {&(0x7f00000009c0)=""/199, 0xc7}, {&(0x7f0000000ac0)=""/4096, 0x1000}, {&(0x7f0000001ac0)=""/129, 0x81}, {&(0x7f0000001d40)=""/181, 0xb5}], 0x24, 0x0) 995.339135ms ago: executing program 6 (id=2938): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="4c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b000100697036746e6c000014000280050009002900000008000100", @ANYRES32, @ANYBLOB="08000400"], 0x4c}, 0x9}, 0x0) 924.377513ms ago: executing program 0 (id=2939): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/seq/clients\x00', 0x0, 0x0) r1 = socket$inet(0xa, 0x801, 0x84) connect$inet(r1, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) write$eventfd(r0, 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000025ad9835850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) listen(r1, 0x8) r3 = accept4(r1, 0x0, 0x0, 0x0) sendto$inet(r3, &(0x7f0000000740)="e3", 0x1, 0x4000000, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000340)={0x0, 0x2}, 0x8) close_range(r0, 0xffffffffffffffff, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r6, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r6, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r6, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r6, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4) write$binfmt_script(r6, &(0x7f0000000100), 0xfffffecd) setsockopt$inet6_tcp_TLS_TX(r6, 0x11a, 0x2, &(0x7f0000000b80)=@ccm_128={{0x304}, "6e9297a2501046d3", "f88ba5cf480884fa27a54b7f53f6bdaa", "cba8a655", "f600"}, 0x28) setsockopt$sock_int(r6, 0x1, 0x12, &(0x7f0000000b40), 0x4) syz_genetlink_get_family_id$tipc(&(0x7f0000001200), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r7 = memfd_create(&(0x7f00000007c0)='\xc0\x87:*\x18\xc1k\xa7\x87[\xa0o8\xaaK\xa5\xd3\v\x86\xca<\x7f\xfd6\x8d}\xd8\xf2G\xb8\xeae)\x90\x86\xe3\x96\b\xe0\xfa\xb1\xd8N\xb2W\xcb\x8d}3lm8\xa57\xc9\x00HOA\xc8\x80kR\xfc\xcb%u3\xec\xde%\x00]\xd8\xebD\x82S\x17?\xd6As\xc2\xb1\x9aF\xe2\xba\x1b\xc7%\x88 \xeeQR\x9f\x81\x8b\xae@\xdc\xc7\xdc\xdem\xbe\x7f2\x11)W\x9c\x82\x91\x17\xd8\xda@4\x9f\xc5*T\x1e^\xf7\x05\xff\xff\xff\xffwI\x02\xf3\xe3\x8d.\xd1=\xcf\xbf\x81\xb5\x8dn\xf4i\xfd\x98\xbc\x19U&\xd7e\xb7m\xcb%K\x1d\xe7_\xde\x87\xbf\xc1\xf0\x91\x1a!\x9c\xd3\v\xc9\x95d\xe3*\xa9\xfa\x99\x9d\xb8\x89>\xc9\xf2/\x17{\x02\x7f\x00\x00\x00\x00+$\xedX\xb7KV\x90\xc3D\x82`\xea\x16\xc6\xce\x83\xab\x05\x19-\xf3\x8c\x9a\x15\x9c\xf5\xb4O\x17@d\x81+\xf6\xe6+\xed\r\xd2\xb3\xaa\x9b\x7fC\'\xa2\xf6\x12\xa1\x15Punfo\x7f\x92G\x0e.\xa1%)\x85\xc7O]\'9\x92\xad\xfbJ\x02\x1d\x91-\xc99\t&\xbdq\x06`T\xc8\x92\xaf\xad\x06\xdd\xaf\x84\xf4\"\x13\xcf\xe5\x93D\xad~F\xe5\x19\xaa\xaa\xb2\xb1\x03m\x82+\x06\x1bF^\xd3n\xc4F\xc1\xc08\x94\xe6\xe5\x1f\xa7\xf6\x01\x00\x00\x00\x00\x00\x00\x00\xe7\xff\xc5H\x04\x8d\xca\xad\x17UlY\x9a}\r4\xac\x93\xac\v2\xc6\xf9\xbe\xfeI\x8b\xd4/`\xab\x1e\xcf\x7f\b\x94 2.{\xc1\xbe\x9bG\xaf\xb6\xf4WzZ\xbf\xed\xed\xcd\xeb\x8a:\x9e\x86\x87\x8c\x94\xd0\x13\xdb\x1cp\x82Z\xf0\xe9\x04;(\x12\xfd\xd1W\x90C\xc7\x13y \x96[)\xee\xc1\xa2\x04\xf8xws\x1f\nOZ}\x173\xff?\xcdL+\xaa\xcf0\xa6\xdd$\x10\xeae\xb6p6\xfa\xa8\x97:\a\xa8\x8e\xea\xa4=\xc3X\xf6\x92\xcb\nd\x00\xca\x96L\xf8\xca\x91|\xf0\x1b\x91\xe1\xe7\xf8\buR\xff\xe10\x03\x1a\xd5\xda5\\\xc1x\xd2\x8a\xb2\xc2;\xce\xf0\xd0\x0f\xff\x9a\x10\x168d\xa5\xf7r\x92\x93gk\xa5\xe9F\xcb\x11t\x11\x83\xe7\xe8\"P_\x01\x1c\x86DD\xa9\xe3\x10\xcdP\x9e\xa1\xf6\x00\xa51\xd1\x11\x96Je!q\xaaB\xcc`m\x19\xda\xd8\xd6X>\xe5\x1c^\xb8\x89\x87 \xdd4\x95\x9ae\x9b\xd8\xa7\x86y\xc3\x1a\x11~\xc8\xcd\xbe\x965\x03\x11\xd0)\x1aW\xe7\xe9\xa9\x10Z\xd5F\x1f\xdd&r.\x86\xccVr\x9a\xbb\xcb\x17\x01\x17ZS\xce\xd3\xc5~\xab\x01\xe9l\xc0w%\xde\x81R\xdc;\x85\xe9$\x83\x91\xd0\xc7\xbc\x8d\xb5\x02\xe4l\x87z\xf70\x89)\b}N\xc2\xf2J\x16:\xea\x9f\xaf~D\x06\xee\xe2\x83\xdd\x95\xc9S\x8ez\xc2\xb9\\\xbbO\xa3AN\xf5I\ra\x87\x87O4\xb3\xe2EbY\x01\x04\x8cX\xda1&g*\r@\x9b8p\x1a\xde\r\n\xcc\xb0\xf2\xcf]\xff\xbe\xe9\xb1\xc5S*\xe9\x10T\x8e\xc0r\x82\xc2oo\n\xc2\xaf\xaa\"\x93\xc8\xe8R\x84Z7g \x80Y\xda<\x94T\x99\n$LyC\xa6}u#%\x1a\x1e\x8bxLTS\x97\x88\xdf|\xac/$\xca}\xe0\x101\xa1\xa0\xe8\xf3\xb2s\x9fT\a\x1c\aBX\xe8\x12=\x139\xc9\v\x01\xf6\x11\xc8\x96;X\x10;k\xf12\x87uH\x1f\xba\xc8\x8a0x0}) sendmsg$nl_route(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000011000500000000000000000007000000", @ANYRES32=r2], 0x2c}}, 0x0) 645.558506ms ago: executing program 0 (id=2947): r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000180)={[{@noblock_validity}, {@bsdgroups}, {@jqfmt_vfsold}, {@norecovery}, {@nodiscard}, {@orlov}, {@inlinecrypt}, {@noauto_da_alloc}, {@bh}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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") r1 = socket$inet6(0xa, 0x3, 0x3c) setsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000080)=0x5, 0x4) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r1, 0x29, 0x37, &(0x7f00000007c0)=ANY=[], 0x40) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) ioctl$TUNSETOFFLOAD(r2, 0x400454c9, 0xba98575a95aeb70d) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) ioctl$TUNDETACHFILTER(r3, 0x401054d6, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0x5dc}], 0x1) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x10b242, 0x108) socket$nl_generic(0x10, 0x3, 0x10) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r4, 0x84, 0x4, 0x0, &(0x7f00000003c0)) syz_genetlink_get_family_id$devlink(&(0x7f0000000200), 0xffffffffffffffff) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r6 = getpid() syz_clone3(&(0x7f0000000280)={0xa0000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000180)=[r6], 0x1}, 0x58) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='kmem_cache_free\x00', r5}, 0x10) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0xff0f}], 0x1}, 0x0) recvmsg(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0) r7 = openat(r0, &(0x7f00000000c0)='./file1\x00', 0x101000, 0x40) bind$l2tp(r7, &(0x7f0000000300)={0x2, 0x0, @rand_addr=0x64010102, 0x1}, 0x10) lgetxattr(&(0x7f0000000240)='./file1\x00', &(0x7f0000000040)=@known='trusted.overlay.upper\x00', 0x0, 0x0) pause() socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)) 645.164786ms ago: executing program 5 (id=2948): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0, 0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r2}, 0x10) shmget$private(0x0, 0x4000, 0x54001800, &(0x7f0000000000/0x4000)=nil) 472.603336ms ago: executing program 6 (id=2949): connect$unix(0xffffffffffffffff, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x80a, 0x0) quotactl_fd$Q_SETINFO(r1, 0xffffffff80000600, 0x0, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x20002, 0x0) sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0) 424.452341ms ago: executing program 3 (id=2950): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) pipe(&(0x7f0000001540)) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@map=r0, 0x26, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0], 0x0}, 0x40) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) shutdown(r1, 0x1) 305.875895ms ago: executing program 5 (id=2951): syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000400)='./bus\x00', 0x800, &(0x7f00000003c0)=ANY=[@ANYRES8=0x0, @ANYRES32, @ANYRES64, @ANYRES32, @ANYRESDEC, @ANYRESHEX], 0x1, 0x36e, &(0x7f0000000c00)="$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") r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r1 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0) fallocate(r0, 0x0, 0x0, 0x1000f4) io_setup(0x7, &(0x7f00000000c0)=0x0) io_submit(r2, 0x1, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000000)="96", 0x1}]) 301.103076ms ago: executing program 6 (id=2952): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='\x0f\xe3\xb9\xc0L0\xf3\xc5\xfe\x9d\'DX\x14\xac\xe6\x94V\x85w\t\xf2\x91\x02\x16\x9a}\xc4/T\xefy..\xec\xf1y\xa7Q\x04\x00\x00\x00\x00\x00\x00\x00\xf6\xfb\xb1\xbf\xf4\xf2\xf4T,5\xd5\x98\xbc\x83\tZ\xe8B\x00\xbc\x00\x8e\x9c\xbf\t\xb3\xde\xd3\xaa\x91\x84\v-\xcd\xaaTy\xcb\xa48\x82\xc6{\x9e\xef[\xfdk\x8c\x19\xef\xa3|\xfe') socket$inet6_tcp(0xa, 0x1, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'geneve1\x00'}) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000006c0)={0x0, 0xfffffffd, 0x10}, 0xc) creat(&(0x7f0000000140)='./file2\x00', 0x1ad) unlink(&(0x7f0000000180)='./file1\x00') 191.690988ms ago: executing program 3 (id=2953): ioctl$TIOCSBRK(0xffffffffffffffff, 0x5427) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000107000000000000000000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10) mount$bind(0x0, 0x0, 0x0, 0x1217880, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000580), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000011"], 0x4c}}, 0x0) 0s ago: executing program 3 (id=2954): bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0x10, &(0x7f0000000700)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000"], 0x0, 0xfffffffc, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f00000008c0)=""/160, 0x98}], 0x2, &(0x7f0000000580)=[{&(0x7f00000007c0)=""/220, 0xdc}, {&(0x7f0000001c40)=""/209, 0xdc}, {&(0x7f0000000240)=""/115, 0x73}, {&(0x7f0000000440)=""/87, 0x57}, {&(0x7f00000009c0)=""/199, 0xc7}, {&(0x7f0000000ac0)=""/4096, 0x1000}, {&(0x7f0000001ac0)=""/129, 0x81}, {&(0x7f0000001d40)=""/181, 0xb5}], 0x24, 0x0) kernel console output (not intermixed with test programs): 39 compat=0 ip=0x7f5d587756e7 code=0x7ffc0000 [ 246.020425][ T26] audit: type=1326 audit(1730047552.935:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.2.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5d5871a099 code=0x7ffc0000 [ 246.043384][ T26] audit: type=1326 audit(1730047552.935:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.2.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=17 compat=0 ip=0x7f5d5877e719 code=0x7ffc0000 [ 246.054135][ T9910] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 246.065982][ T26] audit: type=1326 audit(1730047552.945:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.2.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5d587756e7 code=0x7ffc0000 [ 246.097628][ T26] audit: type=1326 audit(1730047552.945:2000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.2.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5d5871a099 code=0x7ffc0000 [ 246.120236][ T26] audit: type=1326 audit(1730047552.945:2001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.2.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=17 compat=0 ip=0x7f5d5877e719 code=0x7ffc0000 [ 246.144904][ T26] audit: type=1326 audit(1730047552.955:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz.2.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5d587756e7 code=0x7ffc0000 [ 246.265919][ T4257] EXT4-fs (loop0): unmounting filesystem. [ 246.815415][ T9947] can0: slcan on ptm0. [ 246.828604][ T9940] loop0: detected capacity change from 0 to 8192 [ 246.883517][ T9940] loop0: p1 p2 p3 p4 [ 246.889899][ T9940] loop0: partition table partially beyond EOD, truncated [ 246.899760][ T9940] loop0: p1 start 51379968 is beyond EOD, truncated [ 246.906572][ T9940] loop0: p2 start 4293394690 is beyond EOD, truncated [ 246.914322][ T9940] loop0: p3 size 100663552 extends beyond EOD, truncated [ 246.925268][ T9940] loop0: p4 size 50331648 extends beyond EOD, truncated [ 247.261491][ T9968] usb usb7: usbfs: process 9968 (syz.4.2107) did not claim interface 0 before use [ 247.477034][ T9978] loop2: detected capacity change from 0 to 128 [ 247.603587][ T9944] can0 (unregistered): slcan off ptm0. [ 249.066887][T10055] usb usb7: usbfs: process 10055 (syz.3.2138) did not claim interface 0 before use [ 249.120182][T10053] loop2: detected capacity change from 0 to 1024 [ 249.208752][T10053] EXT4-fs (loop2): INFO: recovery required on readonly filesystem [ 249.268819][T10053] EXT4-fs (loop2): write access will be enabled during recovery [ 249.327088][T10053] JBD2: no valid journal superblock found [ 249.362650][T10053] EXT4-fs (loop2): error loading journal [ 249.657630][T10062] sd 0:0:1:0: device reset [ 250.870425][ T26] kauditd_printk_skb: 440 callbacks suppressed [ 250.870443][ T26] audit: type=1326 audit(1730047558.005:2443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.0.2151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 250.905819][ T26] audit: type=1326 audit(1730047558.045:2444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.0.2151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 250.928430][ T26] audit: type=1326 audit(1730047558.045:2445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.0.2151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 250.951559][ T26] audit: type=1326 audit(1730047558.045:2446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.0.2151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 250.986383][ T26] audit: type=1326 audit(1730047558.045:2447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.0.2151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 251.016339][T10084] loop0: detected capacity change from 0 to 1024 [ 251.029598][T10084] EXT4-fs: quotafile must be on filesystem root [ 251.039379][ T26] audit: type=1326 audit(1730047558.045:2448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.0.2151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 251.062198][ T26] audit: type=1326 audit(1730047558.045:2449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.0.2151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 251.085078][ T26] audit: type=1326 audit(1730047558.045:2450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.0.2151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 251.117953][ T26] audit: type=1326 audit(1730047558.125:2451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.0.2151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 251.151029][ T26] audit: type=1326 audit(1730047558.125:2452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.0.2151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 251.406212][T10105] usb usb7: usbfs: process 10105 (syz.0.2159) did not claim interface 0 before use [ 251.748779][T10120] loop4: detected capacity change from 0 to 2048 [ 251.783701][T10122] loop1: detected capacity change from 0 to 256 [ 251.811973][T10120] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 251.819374][T10123] loop3: detected capacity change from 0 to 1024 [ 251.828136][T10122] FAT-fs (loop1): Unrecognized mount option "00000000000004020000000" or missing value [ 251.844144][T10120] EXT4-fs error (device loop4): ext4_find_extent:936: inode #2: comm syz.4.2165: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 251.868037][T10128] sch_tbf: burst 0 is lower than device lo mtu (11337746) ! [ 251.893893][T10123] EXT4-fs (loop3): INFO: recovery required on readonly filesystem [ 251.940853][T10123] EXT4-fs (loop3): write access will be enabled during recovery [ 251.948902][T10122] loop1: detected capacity change from 0 to 512 [ 251.948955][T10123] JBD2: no valid journal superblock found [ 251.960986][T10123] EXT4-fs (loop3): error loading journal [ 251.974390][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 252.035699][T10122] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 252.062999][T10122] ext4 filesystem being mounted at /427/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 252.427729][ T4249] EXT4-fs (loop1): unmounting filesystem. [ 253.308580][T10160] loop4: detected capacity change from 0 to 512 [ 253.366042][T10160] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 253.375568][T10166] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 253.402823][T10160] ext4 filesystem being mounted at /464/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 253.484846][T10160] EXT4-fs (loop4): shut down requested (0) [ 253.543987][T10172] usb usb7: usbfs: process 10172 (syz.1.2184) did not claim interface 0 before use [ 253.603546][T10174] loop0: detected capacity change from 0 to 256 [ 253.647582][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 253.655484][T10174] FAT-fs (loop0): Unrecognized mount option "00000000000004020000000" or missing value [ 253.721628][T10179] loop4: detected capacity change from 0 to 1024 [ 253.731128][T10179] EXT4-fs: Ignoring removed orlov option [ 253.748363][T10174] loop0: detected capacity change from 0 to 512 [ 253.756215][T10179] EXT4-fs: Ignoring removed nomblk_io_submit option [ 253.789737][T10179] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 253.805497][T10174] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 253.824366][T10174] ext4 filesystem being mounted at /458/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 253.962674][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 254.096102][ T4257] EXT4-fs (loop0): unmounting filesystem. [ 255.197139][T10220] loop2: detected capacity change from 0 to 256 [ 255.230404][T10220] FAT-fs (loop2): Unrecognized mount option "00000000000004020000000" or missing value [ 255.311756][T10226] loop1: detected capacity change from 0 to 512 [ 255.333900][T10220] loop2: detected capacity change from 0 to 512 [ 255.350519][T10226] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.2205: inode #1: comm syz.1.2205: iget: illegal inode # [ 255.382257][T10226] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.2205: error while reading EA inode 1 err=-117 [ 255.397166][T10226] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.2205: inode #1: comm syz.1.2205: iget: illegal inode # [ 255.421168][T10226] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.2205: error while reading EA inode 1 err=-117 [ 255.422813][T10220] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 255.444963][T10226] EXT4-fs (loop1): 1 orphan inode deleted [ 255.451606][T10226] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 255.461190][T10220] ext4 filesystem being mounted at /427/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 255.505632][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.595576][ T4249] EXT4-fs (loop1): unmounting filesystem. [ 255.650458][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 255.832305][T10243] usb usb7: usbfs: process 10243 (syz.2.2208) did not claim interface 0 before use [ 256.437536][T10264] loop1: detected capacity change from 0 to 128 [ 256.495340][ T26] kauditd_printk_skb: 37 callbacks suppressed [ 256.495358][ T26] audit: type=1800 audit(1730047563.635:2490): pid=10264 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2219" name="bus" dev="loop1" ino=1048630 res=0 errno=0 [ 256.571287][T10267] loop3: detected capacity change from 0 to 256 [ 256.583325][T10267] FAT-fs (loop3): Unrecognized mount option "00000000000004020000000" or missing value [ 256.658752][T10267] loop3: detected capacity change from 0 to 512 [ 256.705592][T10267] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 256.763049][T10267] ext4 filesystem being mounted at /407/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 257.093988][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 257.205494][ T26] audit: type=1326 audit(1730047564.345:2491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10292 comm="syz.4.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 257.237046][T10296] usb usb7: usbfs: process 10296 (syz.0.2233) did not claim interface 0 before use [ 257.269297][ T26] audit: type=1326 audit(1730047564.375:2492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10292 comm="syz.4.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 257.330502][ T26] audit: type=1326 audit(1730047564.375:2493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10292 comm="syz.4.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 257.393632][ T26] audit: type=1326 audit(1730047564.375:2494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10292 comm="syz.4.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 257.420636][T10301] loop1: detected capacity change from 0 to 1024 [ 257.452728][ T26] audit: type=1326 audit(1730047564.375:2495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10292 comm="syz.4.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 257.492719][ T26] audit: type=1326 audit(1730047564.375:2496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10292 comm="syz.4.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 257.510054][T10301] EXT4-fs (loop1): INFO: recovery required on readonly filesystem [ 257.531488][ T26] audit: type=1326 audit(1730047564.375:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10292 comm="syz.4.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 257.560997][T10301] EXT4-fs (loop1): write access will be enabled during recovery [ 257.568111][ T26] audit: type=1326 audit(1730047564.375:2498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10292 comm="syz.4.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 257.578431][T10301] JBD2: no valid journal superblock found [ 257.607761][T10301] EXT4-fs (loop1): error loading journal [ 257.611637][ T26] audit: type=1326 audit(1730047564.375:2499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10292 comm="syz.4.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 258.819265][T10326] loop2: detected capacity change from 0 to 512 [ 258.865723][T10326] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 258.906765][T10326] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2002c018, mo2=0002] [ 258.925618][T10326] System zones: 1-12 [ 258.950376][T10326] EXT4-fs (loop2): 1 truncate cleaned up [ 258.959794][T10326] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 259.162154][T10330] netlink: 'syz.2.2243': attribute type 4 has an invalid length. [ 259.178257][T10330] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2243'. [ 259.515058][T10336] loop0: detected capacity change from 0 to 2048 [ 259.585472][T10336] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 259.643071][T10341] usb usb7: usbfs: process 10341 (syz.4.2247) did not claim interface 0 before use [ 259.699076][T10336] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 259.742628][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 259.778754][T10336] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 28 [ 259.831924][T10336] EXT4-fs (loop0): This should not happen!! Data will be lost [ 259.831924][T10336] [ 259.893119][T10336] EXT4-fs (loop0): Total free blocks count 0 [ 259.899369][T10336] EXT4-fs (loop0): Free/Dirty block details [ 259.942749][T10336] EXT4-fs (loop0): free_blocks=2415919104 [ 259.949041][T10336] EXT4-fs (loop0): dirty_blocks=16 [ 259.962796][T10336] EXT4-fs (loop0): Block reservation details [ 259.974540][T10336] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 259.996034][T10342] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 28 [ 260.421470][T10364] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2258'. [ 260.650062][T10368] loop0: detected capacity change from 0 to 512 [ 260.662145][T10368] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 260.691223][T10368] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2002c018, mo2=0002] [ 260.702851][T10368] System zones: 1-12 [ 260.725298][T10368] EXT4-fs (loop0): 1 truncate cleaned up [ 260.735771][T10368] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 260.944856][T10380] netlink: 'syz.0.2260': attribute type 4 has an invalid length. [ 260.966940][T10380] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2260'. [ 261.020971][T10382] loop2: detected capacity change from 0 to 4096 [ 261.042138][T10382] EXT4-fs: Ignoring removed nobh option [ 261.061368][T10382] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 261.090448][T10382] EXT4-fs error (device loop2): ext4_acquire_dquot:6801: comm syz.2.2264: Failed to acquire dquot type 1 [ 261.173657][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 261.215413][T10388] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2269'. [ 261.628382][ T4257] EXT4-fs (loop0): unmounting filesystem. [ 261.746473][ T26] kauditd_printk_skb: 30 callbacks suppressed [ 261.746490][ T26] audit: type=1326 audit(1730047568.885:2528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10406 comm="syz.2.2274" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5d5877e719 code=0x0 [ 262.111256][ T26] audit: type=1326 audit(1730047569.245:2529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.4.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 262.174971][ T26] audit: type=1326 audit(1730047569.275:2530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.4.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 262.232754][ T26] audit: type=1326 audit(1730047569.275:2531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.4.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 262.521147][T10442] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2281'. [ 262.669782][ T26] audit: type=1326 audit(1730047569.805:2532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.2.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d5877e719 code=0x7ffc0000 [ 262.751177][ T26] audit: type=1326 audit(1730047569.805:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.2.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d5877e719 code=0x7ffc0000 [ 262.824628][T10450] loop1: detected capacity change from 0 to 512 [ 262.832060][ T26] audit: type=1326 audit(1730047569.805:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.2.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d5877e719 code=0x7ffc0000 [ 262.882912][T10450] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 262.950034][T10450] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2002c018, mo2=0002] [ 262.966656][ T26] audit: type=1326 audit(1730047569.805:2535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.2.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d5877e719 code=0x7ffc0000 [ 263.011599][T10452] loop4: detected capacity change from 0 to 1024 [ 263.019328][T10450] System zones: 1-12 [ 263.024429][ T26] audit: type=1326 audit(1730047569.815:2536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.2.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d5877e719 code=0x7ffc0000 [ 263.049077][ T26] audit: type=1326 audit(1730047569.815:2537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.2.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d5877e719 code=0x7ffc0000 [ 263.073171][T10450] EXT4-fs (loop1): 1 truncate cleaned up [ 263.078851][T10450] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 263.139697][T10452] EXT4-fs (loop4): INFO: recovery required on readonly filesystem [ 263.178092][T10452] EXT4-fs (loop4): write access will be enabled during recovery [ 263.240419][T10473] netlink: 'syz.1.2284': attribute type 4 has an invalid length. [ 263.246978][T10452] JBD2: no valid journal superblock found [ 263.254470][T10473] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2284'. [ 263.289083][T10452] EXT4-fs (loop4): error loading journal [ 263.489805][T10481] usb usb7: usbfs: process 10481 (syz.2.2294) did not claim interface 0 before use [ 263.651268][T10473] syz.1.2284 (10473) used greatest stack depth: 19032 bytes left [ 263.657186][ T4249] EXT4-fs (loop1): unmounting filesystem. [ 263.693515][T10490] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2296'. [ 263.786130][T10493] loop1: detected capacity change from 0 to 128 [ 263.858986][T10493] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 263.880285][T10493] ext4 filesystem being mounted at /454/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 264.112082][ T4249] EXT4-fs (loop1): unmounting filesystem. [ 264.962863][T10537] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2310'. [ 264.998934][T10540] loop3: detected capacity change from 0 to 512 [ 265.065090][T10540] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 265.148486][T10540] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2002c018, mo2=0002] [ 265.156764][T10540] System zones: 1-12 [ 265.182195][T10540] EXT4-fs (loop3): 1 truncate cleaned up [ 265.193180][T10540] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 265.211495][T10547] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2312'. [ 265.243528][T10550] usb usb7: usbfs: process 10550 (syz.2.2313) did not claim interface 0 before use [ 265.420893][T10564] netlink: 'syz.3.2308': attribute type 4 has an invalid length. [ 265.449502][T10564] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2308'. [ 265.867412][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 266.121984][T10592] loop4: detected capacity change from 0 to 1024 [ 266.179362][T10597] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2326'. [ 266.263172][T10592] EXT4-fs (loop4): INFO: recovery required on readonly filesystem [ 266.353234][T10592] EXT4-fs (loop4): write access will be enabled during recovery [ 266.433085][T10592] JBD2: no valid journal superblock found [ 266.439198][T10592] EXT4-fs (loop4): error loading journal [ 266.491973][T10608] loop2: detected capacity change from 0 to 1024 [ 266.557985][T10608] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 266.845124][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 267.713739][T10638] usb usb7: usbfs: process 10638 (syz.2.2337) did not claim interface 0 before use [ 267.736333][T10643] loop4: detected capacity change from 0 to 512 [ 267.741757][ T26] kauditd_printk_skb: 22 callbacks suppressed [ 267.741773][ T26] audit: type=1326 audit(1730047574.875:2560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10637 comm="syz.2.2337" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5d5877e719 code=0x0 [ 267.771292][T10643] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 267.813155][T10643] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2002c018, mo2=0002] [ 267.821178][T10643] System zones: 1-12 [ 267.856128][T10643] EXT4-fs (loop4): 1 truncate cleaned up [ 267.861834][T10643] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 268.021345][T10655] loop0: detected capacity change from 0 to 1024 [ 268.036532][T10658] netlink: 'syz.4.2335': attribute type 4 has an invalid length. [ 268.076166][T10655] EXT4-fs (loop0): INFO: recovery required on readonly filesystem [ 268.080870][T10658] netlink: 152 bytes leftover after parsing attributes in process `syz.4.2335'. [ 268.128318][T10655] EXT4-fs (loop0): write access will be enabled during recovery [ 268.178159][T10655] JBD2: no valid journal superblock found [ 268.215417][T10655] EXT4-fs (loop0): error loading journal [ 268.492346][T10674] loop1: detected capacity change from 0 to 128 [ 268.500597][T10674] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 268.548152][T10674] devpts: called with bogus options [ 268.615442][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 269.086477][T10686] mmap: syz.4.2350 (10686) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 269.384064][T10698] usb usb7: usbfs: process 10698 (syz.3.2357) did not claim interface 0 before use [ 269.565589][T10706] loop2: detected capacity change from 0 to 512 [ 269.592388][T10706] EXT4-fs (loop2): filesystem is read-only [ 270.149352][T10723] loop2: detected capacity change from 0 to 8192 [ 270.198256][T10723] syz.2.2367: attempt to access beyond end of device [ 270.198256][T10723] loop2: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 270.217186][T10723] Buffer I/O error on dev loop2, logical block 57847, async page read [ 270.247432][T10723] syz.2.2367: attempt to access beyond end of device [ 270.247432][T10723] loop2: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 270.297920][T10723] Buffer I/O error on dev loop2, logical block 57847, async page read [ 270.446074][ T26] audit: type=1800 audit(1730047577.585:2561): pid=10723 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2367" name="file2" dev="loop2" ino=1048632 res=0 errno=0 [ 270.595216][T10738] usb usb7: usbfs: process 10738 (syz.0.2374) did not claim interface 0 before use [ 270.624958][T10736] usb usb7: usbfs: process 10736 (syz.1.2372) did not claim interface 0 before use [ 270.653509][ T26] audit: type=1326 audit(1730047577.795:2562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.2375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 270.733351][ T26] audit: type=1326 audit(1730047577.795:2563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.2375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 270.814964][ T26] audit: type=1326 audit(1730047577.825:2564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.2375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 270.849678][T10747] loop0: detected capacity change from 0 to 2048 [ 270.859711][ T26] audit: type=1326 audit(1730047577.825:2565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.2375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 270.884423][ T26] audit: type=1326 audit(1730047577.825:2566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.2375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 270.932813][ T26] audit: type=1326 audit(1730047577.825:2567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.2375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 270.941902][T10753] loop4: detected capacity change from 0 to 1024 [ 270.963835][T10749] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512) [ 270.982881][ T26] audit: type=1326 audit(1730047577.825:2568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.2375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 271.006531][T10753] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 271.017555][ T26] audit: type=1326 audit(1730047577.825:2569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.2375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 271.065412][T10747] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 271.076556][T10753] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 271.108553][T10765] binfmt_misc: register: failed to install interpreter file ./file0/../file0 [ 271.273915][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 271.281419][ T4257] EXT4-fs (loop0): unmounting filesystem. [ 271.394157][T10774] loop2: detected capacity change from 0 to 1024 [ 271.425950][T10779] usb usb7: usbfs: process 10779 (syz.4.2390) did not claim interface 0 before use [ 271.436718][T10774] EXT4-fs (loop2): INFO: recovery required on readonly filesystem [ 271.447684][T10774] EXT4-fs (loop2): write access will be enabled during recovery [ 271.462034][T10780] usb usb7: usbfs: process 10780 (syz.0.2389) did not claim interface 0 before use [ 271.477708][T10774] JBD2: no valid journal superblock found [ 271.503153][T10774] EXT4-fs (loop2): error loading journal [ 271.655163][T10791] netlink: 2048 bytes leftover after parsing attributes in process `syz.3.2391'. [ 271.699349][T10791] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2391'. [ 272.260600][T10812] usb usb7: usbfs: process 10812 (syz.1.2403) did not claim interface 0 before use [ 272.596193][T10821] usb usb7: usbfs: process 10821 (syz.3.2406) did not claim interface 0 before use [ 272.659485][T10823] loop4: detected capacity change from 0 to 512 [ 272.717614][T10823] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 272.732894][T10823] ext4 filesystem being mounted at /516/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 272.774764][ T26] kauditd_printk_skb: 1 callbacks suppressed [ 272.774788][ T26] audit: type=1326 audit(1730047579.915:2571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10828 comm="syz.1.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 272.806148][ T26] audit: type=1326 audit(1730047579.945:2572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10828 comm="syz.1.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 272.828864][ T26] audit: type=1326 audit(1730047579.945:2573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10828 comm="syz.1.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 272.921777][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 273.010426][T10831] device syzkaller0 entered promiscuous mode [ 273.122860][ T26] audit: type=1326 audit(1730047580.265:2574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.4.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 273.158665][ T26] audit: type=1326 audit(1730047580.285:2575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.4.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 273.189904][ T26] audit: type=1326 audit(1730047580.285:2576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.4.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 273.223625][ T26] audit: type=1326 audit(1730047580.285:2577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.4.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 273.570141][T10845] usb usb7: usbfs: process 10845 (syz.4.2416) did not claim interface 0 before use [ 273.977616][T10855] loop4: detected capacity change from 0 to 512 [ 273.995397][T10855] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 274.049013][T10855] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 274.086430][T10862] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2422'. [ 274.203086][T10855] EXT4-fs (loop4): 1 truncate cleaned up [ 274.208890][T10855] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 274.327273][T10872] usb usb7: usbfs: process 10872 (syz.0.2426) did not claim interface 0 before use [ 274.341550][ T26] audit: type=1326 audit(1730047581.475:2578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.0.2426" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x0 [ 274.364022][T10874] usb usb7: usbfs: process 10874 (syz.2.2428) did not claim interface 0 before use [ 274.932228][T10883] loop2: detected capacity change from 0 to 1024 [ 274.951540][T10883] EXT4-fs (loop2): INFO: recovery required on readonly filesystem [ 274.969887][T10883] EXT4-fs (loop2): write access will be enabled during recovery [ 275.009675][T10883] JBD2: no valid journal superblock found [ 275.023557][T10883] EXT4-fs (loop2): error loading journal [ 275.371246][T10890] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2434'. [ 276.037440][T10903] usb usb7: usbfs: process 10903 (syz.0.2439) did not claim interface 0 before use [ 279.307466][T10921] usb usb7: usbfs: process 10921 (syz.1.2446) did not claim interface 0 before use [ 279.360253][ T26] audit: type=1326 audit(1730047586.495:2579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10920 comm="syz.1.2446" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x0 [ 279.604017][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 279.732900][T10927] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2447'. [ 279.864024][T10932] loop4: detected capacity change from 0 to 1024 [ 279.886040][T10932] EXT4-fs: Ignoring removed orlov option [ 279.892229][T10932] EXT4-fs: Ignoring removed nomblk_io_submit option [ 279.994554][T10932] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 280.240254][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 280.562870][T10960] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2461'. [ 280.721263][T10961] loop3: detected capacity change from 0 to 1024 [ 280.732531][T10970] usb usb7: usbfs: process 10970 (syz.4.2465) did not claim interface 0 before use [ 280.759870][ T26] audit: type=1326 audit(1730047587.895:2580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10968 comm="syz.4.2465" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x0 [ 280.796472][T10961] EXT4-fs (loop3): INFO: recovery required on readonly filesystem [ 280.822524][T10961] EXT4-fs (loop3): write access will be enabled during recovery [ 280.857711][T10961] JBD2: no valid journal superblock found [ 280.881596][T10961] EXT4-fs (loop3): error loading journal [ 281.122417][ T26] audit: type=1326 audit(1730047588.255:2581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10975 comm="syz.1.2467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 281.189532][ T26] audit: type=1326 audit(1730047588.265:2582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10975 comm="syz.1.2467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fbae5d7cfb7 code=0x7ffc0000 [ 281.209824][T10978] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2468'. [ 281.276632][ T26] audit: type=1326 audit(1730047588.265:2583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10975 comm="syz.1.2467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 281.351380][ T26] audit: type=1326 audit(1730047588.265:2584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10975 comm="syz.1.2467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 281.524874][ T26] audit: type=1326 audit(1730047588.265:2585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10975 comm="syz.1.2467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 281.572695][ T26] audit: type=1326 audit(1730047588.265:2586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10975 comm="syz.1.2467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 281.604291][T10983] netlink: 'syz.2.2470': attribute type 10 has an invalid length. [ 281.632697][ T26] audit: type=1326 audit(1730047588.265:2587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10975 comm="syz.1.2467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 281.656060][T10983] bridge0: port 1(bridge_slave_0) entered disabled state [ 281.685904][ T26] audit: type=1326 audit(1730047588.275:2588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10975 comm="syz.1.2467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 281.731777][T10983] bridge0: port 1(bridge_slave_0) entered blocking state [ 281.739214][T10983] bridge0: port 1(bridge_slave_0) entered forwarding state [ 281.790181][T10983] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 282.024038][T10990] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2474'. [ 282.607793][T11008] loop2: detected capacity change from 0 to 512 [ 282.617303][T11010] usb usb7: usbfs: process 11010 (syz.0.2482) did not claim interface 0 before use [ 282.657093][T11008] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 282.742837][T11016] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2480'. [ 282.781485][T11018] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2486'. [ 282.824798][T11022] netlink: 'syz.1.2485': attribute type 10 has an invalid length. [ 282.837114][T11008] EXT4-fs warning (device loop2): ext4_enable_quotas:7036: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 282.943895][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 283.119060][T11035] loop1: detected capacity change from 0 to 1024 [ 283.167286][T11035] EXT4-fs (loop1): INFO: recovery required on readonly filesystem [ 283.220433][T11035] EXT4-fs (loop1): write access will be enabled during recovery [ 283.278954][T11035] JBD2: no valid journal superblock found [ 283.315336][T11035] EXT4-fs (loop1): error loading journal [ 283.539342][T11056] netlink: 'syz.2.2498': attribute type 4 has an invalid length. [ 283.634591][T11059] netlink: 'syz.2.2498': attribute type 4 has an invalid length. [ 283.750040][T11062] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2501'. [ 283.760791][T11063] netlink: 'syz.0.2500': attribute type 10 has an invalid length. [ 284.314235][T11079] usb usb7: usbfs: process 11079 (syz.2.2509) did not claim interface 0 before use [ 284.694810][T11087] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2513'. [ 284.759165][T11091] netlink: 'syz.3.2515': attribute type 10 has an invalid length. [ 284.809567][T11091] bridge0: port 2(bridge_slave_1) entered blocking state [ 284.816765][T11091] bridge0: port 2(bridge_slave_1) entered forwarding state [ 284.824234][T11091] bridge0: port 1(bridge_slave_0) entered blocking state [ 284.831370][T11091] bridge0: port 1(bridge_slave_0) entered forwarding state [ 284.855346][ T26] kauditd_printk_skb: 49 callbacks suppressed [ 284.855362][ T26] audit: type=1326 audit(1730047591.995:2637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.0.2517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 284.862030][T11091] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 284.952309][ T26] audit: type=1326 audit(1730047592.035:2638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.0.2517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 285.005828][ T26] audit: type=1326 audit(1730047592.035:2639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.0.2517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 285.062027][T11100] netem: change failed [ 285.092797][ T26] audit: type=1326 audit(1730047592.035:2640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.0.2517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 285.152640][ T26] audit: type=1326 audit(1730047592.035:2641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.0.2517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 285.208017][ T26] audit: type=1326 audit(1730047592.035:2642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.0.2517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 285.306639][ T26] audit: type=1326 audit(1730047592.445:2643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11109 comm="syz.3.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eda97e719 code=0x7ffc0000 [ 285.362345][T11113] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2 [ 285.373336][ T26] audit: type=1326 audit(1730047592.465:2644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11109 comm="syz.3.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3eda97e719 code=0x7ffc0000 [ 285.463276][ T26] audit: type=1326 audit(1730047592.465:2645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11109 comm="syz.3.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eda97e719 code=0x7ffc0000 [ 285.494091][T11117] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2526'. [ 285.496262][T11114] loop2: detected capacity change from 0 to 1024 [ 285.530022][ T26] audit: type=1326 audit(1730047592.465:2646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11109 comm="syz.3.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eda97e719 code=0x7ffc0000 [ 285.585746][T11114] EXT4-fs (loop2): INFO: recovery required on readonly filesystem [ 285.614031][T11114] EXT4-fs (loop2): write access will be enabled during recovery [ 285.661518][T11114] JBD2: no valid journal superblock found [ 285.720751][T11114] EXT4-fs (loop2): error loading journal [ 286.079211][T11134] loop3: detected capacity change from 0 to 512 [ 286.099732][T11135] netlink: 'syz.4.2532': attribute type 10 has an invalid length. [ 286.251041][T11134] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 286.312351][T11134] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 286.327278][T11134] ext4 filesystem being mounted at /471/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 286.383139][T11135] bridge0: port 3(syz_tun) entered disabled state [ 286.389879][T11135] bridge0: port 2(bridge_slave_1) entered disabled state [ 286.397432][T11135] bridge0: port 1(bridge_slave_0) entered disabled state [ 286.417677][T11135] bridge0: port 3(syz_tun) entered blocking state [ 286.424316][T11135] bridge0: port 3(syz_tun) entered forwarding state [ 286.431147][T11135] bridge0: port 2(bridge_slave_1) entered blocking state [ 286.438342][T11135] bridge0: port 2(bridge_slave_1) entered forwarding state [ 286.445805][T11135] bridge0: port 1(bridge_slave_0) entered blocking state [ 286.453073][T11135] bridge0: port 1(bridge_slave_0) entered forwarding state [ 286.574573][T11135] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 286.941316][ T22] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 286.975583][T11150] loop2: detected capacity change from 0 to 512 [ 287.000843][T11150] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 287.019469][T11152] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2540'. [ 287.030983][T11150] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 287.055877][T11150] EXT4-fs (loop2): 1 truncate cleaned up [ 287.061739][T11150] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 287.141597][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 287.150117][ T22] usb 4-1: device descriptor read/64, error -71 [ 287.442809][ T22] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 287.462999][T11168] netlink: 'syz.4.2548': attribute type 10 has an invalid length. [ 287.497055][T11168] bridge0: port 3(syz_tun) entered disabled state [ 287.503723][T11168] bridge0: port 2(bridge_slave_1) entered disabled state [ 287.510952][T11168] bridge0: port 1(bridge_slave_0) entered disabled state [ 287.656760][ T22] usb 4-1: device descriptor read/64, error -71 [ 287.701055][T11175] loop1: detected capacity change from 0 to 1024 [ 287.719418][T11175] EXT4-fs (loop1): INFO: recovery required on readonly filesystem [ 287.751367][T11175] EXT4-fs (loop1): write access will be enabled during recovery [ 287.768417][T11175] JBD2: no valid journal superblock found [ 287.801915][T11175] EXT4-fs (loop1): error loading journal [ 287.808191][ T22] usb usb4-port1: attempt power cycle [ 287.821722][T11181] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2553'. [ 287.969044][T11190] ieee802154 phy0 wpan0: encryption failed: -22 [ 288.222931][ T22] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 288.235717][T11198] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2560'. [ 288.245107][T11198] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2560'. [ 288.254196][T11198] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2560'. [ 288.263559][T11198] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2560'. [ 288.312954][ T22] usb 4-1: device descriptor read/8, error -71 [ 288.380153][T11202] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 288.380153][T11202] The task syz.4.2561 (11202) triggered the difference, watch for misbehavior. [ 288.722690][ T22] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 288.822973][ T22] usb 4-1: device descriptor read/8, error -71 [ 288.915321][T11206] netlink: 'syz.2.2562': attribute type 10 has an invalid length. [ 288.930875][T11206] bridge0: port 1(bridge_slave_0) entered disabled state [ 288.943050][ T22] usb usb4-port1: unable to enumerate USB device [ 289.087144][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 289.262204][T11214] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2566'. [ 289.435095][T11224] loop2: detected capacity change from 0 to 128 [ 289.523681][T11224] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 289.539748][T11224] ext4 filesystem being mounted at /498/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 289.588745][T11229] netlink: 'syz.0.2573': attribute type 10 has an invalid length. [ 289.627010][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 290.097755][T11249] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2580'. [ 290.450745][T11261] netlink: 'syz.0.2585': attribute type 10 has an invalid length. [ 290.518346][ T26] kauditd_printk_skb: 17 callbacks suppressed [ 290.518364][ T26] audit: type=1326 audit(1730047597.655:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11262 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eda97e719 code=0x7ffc0000 [ 290.620439][ T26] audit: type=1326 audit(1730047597.685:2665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11262 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eda97e719 code=0x7ffc0000 [ 290.712755][ T26] audit: type=1326 audit(1730047597.685:2666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11262 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f3eda97e719 code=0x7ffc0000 [ 290.744580][ T26] audit: type=1326 audit(1730047597.685:2667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11262 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eda97e719 code=0x7ffc0000 [ 290.775458][T11273] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2591'. [ 290.821136][ T26] audit: type=1326 audit(1730047597.685:2668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11262 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eda97e719 code=0x7ffc0000 [ 291.038038][T11267] syz.1.2588[11267] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 291.038162][T11267] syz.1.2588[11267] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 291.156628][ T26] audit: type=1326 audit(1730047598.295:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11291 comm="syz.4.2597" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x0 [ 291.200754][T11290] loop3: detected capacity change from 0 to 1024 [ 291.218878][T11290] EXT4-fs (loop3): INFO: recovery required on readonly filesystem [ 291.237024][T11290] EXT4-fs (loop3): write access will be enabled during recovery [ 291.244352][T11294] loop2: detected capacity change from 0 to 512 [ 291.250725][T11290] JBD2: no valid journal superblock found [ 291.260472][T11290] EXT4-fs (loop3): error loading journal [ 291.319353][T11294] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 291.338906][T11294] ext4 filesystem being mounted at /503/qY3aK supports timestamps until 2038-01-19 (0x7fffffff) [ 291.364498][T11298] netlink: 'syz.1.2599': attribute type 10 has an invalid length. [ 291.446103][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 291.567088][T11302] loop2: detected capacity change from 0 to 512 [ 291.584850][T11302] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 291.618403][T11302] EXT4-fs (loop2): 1 truncate cleaned up [ 291.630425][T11304] loop0: detected capacity change from 0 to 1024 [ 291.642909][T11302] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 291.700300][T11304] EXT4-fs (loop0): INFO: recovery required on readonly filesystem [ 291.709737][T11304] EXT4-fs (loop0): write access will be enabled during recovery [ 291.724803][T11304] EXT4-fs (loop0): barriers disabled [ 291.730488][T11304] JBD2: no valid journal superblock found [ 291.745884][T11304] EXT4-fs (loop0): error loading journal [ 291.757067][T11302] loop2: detected capacity change from 512 to 0 [ 291.841258][ C0] I/O error, dev loop2, sector 26 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2 [ 291.855570][ T4251] EXT4-fs warning (device loop2): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -5 reading directory block [ 291.885720][ C1] I/O error, dev loop2, sector 10 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2 [ 291.896461][ T4251] EXT4-fs error (device loop2): ext4_get_inode_loc:4644: inode #2: block 5: comm syz-executor: unable to read itable block [ 291.921958][ C1] I/O error, dev loop2, sector 12 op 0x0:(READ) flags 0x80700 phys_seg 4 prio class 2 [ 291.945860][ T46] loop: Write error at byte offset 9223372036854776831, length 1024. [ 291.954779][ C1] I/O error, dev loop2, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 291.964331][ C1] I/O error, dev loop2, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 291.974432][ C1] Buffer I/O error on dev loop2, logical block 1, lost sync page write [ 291.982820][ T4251] EXT4-fs (loop2): I/O error while writing superblock [ 291.989632][ T4251] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5885: IO failure [ 291.991869][T11312] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2605'. [ 292.012825][ T46] loop: Write error at byte offset 9223372036854776831, length 1024. [ 292.026689][ C0] I/O error, dev loop2, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 292.036365][ C0] I/O error, dev loop2, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 292.045882][ C0] Buffer I/O error on dev loop2, logical block 1, lost sync page write [ 292.054254][ T4251] EXT4-fs (loop2): I/O error while writing superblock [ 292.061540][ T4251] EXT4-fs error (device loop2): ext4_dirty_inode:6089: inode #2: comm syz-executor: mark_inode_dirty error [ 292.119605][ T7619] loop: Write error at byte offset 9223372036854776831, length 1024. [ 292.131238][ C0] I/O error, dev loop2, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 292.140827][ C0] I/O error, dev loop2, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 292.150344][ C0] Buffer I/O error on dev loop2, logical block 1, lost sync page write [ 292.158867][ T4251] EXT4-fs (loop2): I/O error while writing superblock [ 292.519785][ C0] I/O error, dev loop2, sector 12 op 0x0:(READ) flags 0x80700 phys_seg 4 prio class 2 [ 292.529547][ T61] EXT4-fs error (device loop2): __ext4_get_inode_loc_noinmem:4629: inode #2: block 5: comm kworker/u4:4: unable to read itable block [ 292.599597][ T7619] loop: Write error at byte offset 9223372036854776831, length 1024. [ 292.622790][ C0] Buffer I/O error on dev loop2, logical block 1, lost sync page write [ 292.631269][ T61] EXT4-fs (loop2): I/O error while writing superblock [ 292.653714][ T5856] EXT4-fs (loop2): unmounting filesystem. [ 292.663310][ T61] loop: Write error at byte offset 9223372036854776831, length 1024. [ 292.688017][ C0] Buffer I/O error on dev loop2, logical block 1, lost sync page write [ 292.696482][ T5856] EXT4-fs (loop2): I/O error while writing superblock [ 292.766429][T11329] netlink: 'syz.1.2612': attribute type 10 has an invalid length. [ 292.916667][T11327] loop4: detected capacity change from 0 to 4096 [ 292.934629][T11327] EXT4-fs: Ignoring removed nobh option [ 292.940405][T11327] EXT4-fs: Ignoring removed i_version option [ 292.960424][T11327] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 293.074052][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 293.155117][T11338] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2618'. [ 293.227385][ T7619] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 293.404832][ T7619] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 293.492402][ T7619] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 293.641862][ T7619] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 293.854930][ T4264] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 293.866082][ T4264] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 293.883781][ T4264] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 293.893735][ T4264] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 293.901498][ T4264] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 293.910920][ T4264] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 293.926132][ T4263] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 293.934934][ T4263] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 293.942415][ T4263] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 293.950637][ T4263] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 293.959187][ T4263] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 293.966724][ T4263] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 294.021990][T11361] netlink: 'syz.1.2625': attribute type 10 has an invalid length. [ 294.601250][T11378] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2632'. [ 294.765428][T11356] chnl_net:caif_netlink_parms(): no params data found [ 294.855724][T11385] netlink: 'syz.4.2636': attribute type 10 has an invalid length. [ 294.955762][T11389] syz.0.2638[11389] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 294.955867][T11389] syz.0.2638[11389] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 295.114392][T11356] bridge0: port 1(bridge_slave_0) entered blocking state [ 295.203384][T11356] bridge0: port 1(bridge_slave_0) entered disabled state [ 295.220699][T11356] device bridge_slave_0 entered promiscuous mode [ 295.259223][T11397] loop0: detected capacity change from 0 to 2048 [ 295.289121][T11356] bridge0: port 2(bridge_slave_1) entered blocking state [ 295.296464][T11356] bridge0: port 2(bridge_slave_1) entered disabled state [ 295.305816][T11356] device bridge_slave_1 entered promiscuous mode [ 295.306329][T11397] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 295.386549][T11356] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 295.471480][ T4257] EXT4-fs (loop0): unmounting filesystem. [ 295.735227][T11356] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 295.749653][T11408] loop0: detected capacity change from 0 to 512 [ 295.771956][T11408] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 295.802504][T11411] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2645'. [ 295.843972][ T26] audit: type=1326 audit(1730047602.985:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11409 comm="syz.4.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 295.898619][ T26] audit: type=1326 audit(1730047602.985:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11409 comm="syz.4.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 295.905089][T11408] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 295.921793][ T26] audit: type=1326 audit(1730047602.985:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11409 comm="syz.4.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f888317d0b0 code=0x7ffc0000 [ 295.952846][ T26] audit: type=1326 audit(1730047602.985:2673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11409 comm="syz.4.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f888317ff47 code=0x7ffc0000 [ 295.982001][ T26] audit: type=1326 audit(1730047602.985:2674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11409 comm="syz.4.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 296.005891][ T26] audit: type=1326 audit(1730047602.985:2675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11409 comm="syz.4.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f888317ff47 code=0x7ffc0000 [ 296.029220][ T26] audit: type=1326 audit(1730047602.985:2676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11409 comm="syz.4.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f888317d3aa code=0x7ffc0000 [ 296.051916][T11408] ext4 filesystem being mounted at /552/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 296.062774][ T4263] Bluetooth: hci2: command tx timeout [ 296.072735][ T26] audit: type=1326 audit(1730047602.985:2677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11409 comm="syz.4.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 296.097823][ T26] audit: type=1326 audit(1730047602.985:2678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11409 comm="syz.4.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 296.106671][T11356] team0: Port device team_slave_0 added [ 296.121825][ T26] audit: type=1326 audit(1730047602.985:2679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11409 comm="syz.4.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888317e719 code=0x7ffc0000 [ 296.228916][ T4257] EXT4-fs (loop0): unmounting filesystem. [ 296.242827][T11356] team0: Port device team_slave_1 added [ 296.308463][T11423] netlink: 'syz.3.2649': attribute type 10 has an invalid length. [ 296.318016][T11423] bridge0: port 2(bridge_slave_1) entered disabled state [ 296.325307][T11423] bridge0: port 1(bridge_slave_0) entered disabled state [ 296.341861][T11356] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 296.350141][T11356] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 296.383039][T11356] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 296.408799][ T7619] device hsr_slave_0 left promiscuous mode [ 296.416137][ T7619] device hsr_slave_1 left promiscuous mode [ 296.424810][T11428] syz.3.2651[11428] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 296.424923][T11428] syz.3.2651[11428] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 296.437028][ T7619] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 296.468043][ T7619] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 296.482364][ T7619] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 296.490131][ T7619] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 296.498402][ T7619] device bridge_slave_0 left promiscuous mode [ 296.506923][ T7619] bridge0: port 1(bridge_slave_0) entered disabled state [ 296.559540][ T7619] device batadv0 left promiscuous mode [ 296.578336][ T7619] device veth1_macvtap left promiscuous mode [ 296.595293][ T7619] device veth0_macvtap left promiscuous mode [ 296.601528][ T7619] device veth1_vlan left promiscuous mode [ 296.617926][ T7619] device veth0_vlan left promiscuous mode [ 297.575508][T11439] loop4: detected capacity change from 0 to 1024 [ 297.632495][T11439] EXT4-fs (loop4): INFO: recovery required on readonly filesystem [ 297.650830][T11439] EXT4-fs (loop4): write access will be enabled during recovery [ 297.692776][T11439] JBD2: no valid journal superblock found [ 297.698847][T11439] EXT4-fs (loop4): error loading journal [ 298.143570][ T4264] Bluetooth: hci2: command tx timeout [ 298.205150][ T7619] team0 (unregistering): Port device team_slave_1 removed [ 298.365009][ T7619] team0 (unregistering): Port device team_slave_0 removed [ 298.464908][ T7619] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 298.511938][T11443] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2656'. [ 298.823575][ T7619] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 299.655625][ T7619] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 299.675832][ T7619] bond0 (unregistering): Released all slaves [ 299.817419][T11356] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 299.829934][T11356] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 299.901857][T11356] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 300.026416][T11454] netlink: 'syz.3.2661': attribute type 10 has an invalid length. [ 300.085619][T11356] device hsr_slave_0 entered promiscuous mode [ 300.110178][T11356] device hsr_slave_1 entered promiscuous mode [ 300.222912][ T4264] Bluetooth: hci2: command tx timeout [ 300.437008][T11356] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 300.472981][T11356] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 300.480513][T11463] loop3: detected capacity change from 0 to 128 [ 300.509860][T11356] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 300.532368][T11356] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 300.534201][T11463] ext4: Unknown parameter 'subj_type' [ 300.717941][T11356] 8021q: adding VLAN 0 to HW filter on device bond0 [ 300.757346][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 300.770001][T11469] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2667'. [ 300.780354][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 300.794388][T11356] 8021q: adding VLAN 0 to HW filter on device team0 [ 300.818416][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 300.841014][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 300.858724][ T7619] bridge0: port 1(bridge_slave_0) entered blocking state [ 300.865931][ T7619] bridge0: port 1(bridge_slave_0) entered forwarding state [ 300.921737][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 301.025115][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 301.043553][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 301.057563][ T7619] bridge0: port 2(bridge_slave_1) entered blocking state [ 301.064724][ T7619] bridge0: port 2(bridge_slave_1) entered forwarding state [ 301.121620][T11474] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 6 [ 301.137770][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 301.155948][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 301.172412][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 301.188539][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 301.206305][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 301.331392][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 301.346136][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 301.370923][T11356] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 301.827609][T11356] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 302.080766][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 302.103648][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 302.146974][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 302.163232][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 302.180487][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 302.242966][T11485] device sit0 entered promiscuous mode [ 302.302895][ T4264] Bluetooth: hci2: command tx timeout [ 302.403747][T11491] netlink: 'syz.3.2673': attribute type 10 has an invalid length. [ 302.565984][T11501] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2678'. [ 302.644597][T11505] loop1: detected capacity change from 0 to 512 [ 302.705927][T11505] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 302.828263][T11505] __quota_error: 37 callbacks suppressed [ 302.828283][T11505] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 302.856930][T11505] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 302.876226][T11505] EXT4-fs error (device loop1): ext4_acquire_dquot:6801: comm syz.1.2676: Failed to acquire dquot type 0 [ 302.898451][T11505] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 302.945842][T11505] EXT4-fs (loop1): 1 truncate cleaned up [ 302.982046][ T61] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 302.997799][ T61] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 303.016668][T11505] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 303.031029][T11522] loop3: detected capacity change from 0 to 1024 [ 303.045752][T11356] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 303.105564][T11525] loop0: detected capacity change from 0 to 1764 [ 303.144731][T11522] EXT4-fs (loop3): INFO: recovery required on readonly filesystem [ 303.184950][T11522] EXT4-fs (loop3): write access will be enabled during recovery [ 303.268690][T11522] JBD2: no valid journal superblock found [ 303.283506][T11522] EXT4-fs (loop3): error loading journal [ 303.311445][ T4249] EXT4-fs (loop1): unmounting filesystem. [ 303.443436][T11535] netlink: 'syz.4.2688': attribute type 10 has an invalid length. [ 303.546794][ T26] audit: type=1326 audit(1730047610.685:2717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.0.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 303.595217][T11539] loop0: detected capacity change from 0 to 512 [ 303.611874][ T26] audit: type=1326 audit(1730047610.715:2718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.0.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 303.649967][T11539] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 303.700440][ T26] audit: type=1326 audit(1730047610.715:2719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.0.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2faef7e753 code=0x7ffc0000 [ 303.713721][T11542] loop4: detected capacity change from 0 to 2048 [ 303.727424][T11539] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 303.772973][T11539] ext4 filesystem being mounted at /569/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 303.783800][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 303.794262][T11542] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 303.804117][ T26] audit: type=1326 audit(1730047610.715:2720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.0.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f2faef7d1ff code=0x7ffc0000 [ 303.813284][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 303.827147][ T26] audit: type=1326 audit(1730047610.735:2721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.0.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f2faef7e7a7 code=0x7ffc0000 [ 303.848246][T11549] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2691'. [ 303.858270][ T26] audit: type=1326 audit(1730047610.735:2722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.0.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2faef7d0b0 code=0x7ffc0000 [ 303.889037][ T26] audit: type=1326 audit(1730047610.735:2723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.0.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2faef7e31b code=0x7ffc0000 [ 303.912427][ T26] audit: type=1326 audit(1730047610.775:2724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.0.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f2faef7d3aa code=0x7ffc0000 [ 303.948075][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 303.958021][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 303.971235][T11356] device veth0_vlan entered promiscuous mode [ 303.979495][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 303.988467][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 304.001786][T11356] device veth1_vlan entered promiscuous mode [ 304.053798][T11356] device veth0_macvtap entered promiscuous mode [ 304.066231][T11356] device veth1_macvtap entered promiscuous mode [ 304.079286][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 304.088587][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 304.132539][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 304.152467][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 304.181692][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 304.193366][T11550] loop4: detected capacity change from 2048 to 0 [ 304.221866][T11542] ext4: Unknown parameter ' Z* m.Dc8'@C9G9?9S{1Jլ5 æԌ' [ 304.236779][ T4257] EXT4-fs (loop0): unmounting filesystem. [ 304.265259][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 304.284369][T11356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 304.296404][T11542] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.2690: bg 0: block 2: invalid block bitmap [ 304.303678][T11356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 304.329038][T11356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 304.352436][T11356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 304.383538][T11356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 304.403319][T11542] EXT4-fs error (device loop4): ext4_discard_preallocations:5119: comm syz.4.2690: Error -117 reading block bitmap for 0 [ 304.403796][T11356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 304.439359][ T4254] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /581/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0 [ 304.477583][T11356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 304.509225][T11356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 304.550234][T11356] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 304.593810][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 304.606523][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 304.645303][T11356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 304.674561][T11356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 304.711091][T11356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 304.742651][T11356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 304.781184][T11356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 304.809889][T11356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 304.892917][T11356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 304.912523][T11356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 304.954621][ T5896] EXT4-fs (loop4): unmounting filesystem. [ 304.970196][T11356] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 304.973547][T11562] syz.0.2697[11562] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 304.977565][T11562] syz.0.2697[11562] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 305.014664][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 305.081502][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 305.165179][ T5896] device syz_tun left promiscuous mode [ 305.170796][ T5896] bridge0: port 3(syz_tun) entered disabled state [ 305.194104][T11356] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 305.204372][T11356] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 305.215775][T11356] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 305.230063][T11356] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 305.242043][T11572] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2702'. [ 305.255058][T11565] netlink: 'syz.1.2699': attribute type 10 has an invalid length. [ 305.339261][T11561] device syzkaller0 entered promiscuous mode [ 305.996293][ T4264] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 306.016460][ T4264] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 306.036678][ T4264] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 306.047781][ T4264] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 306.055625][ T4264] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 306.082939][ T4252] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 308.147883][ T4252] Bluetooth: hci3: command tx timeout [ 309.437863][ T46] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 309.468791][T11595] loop1: detected capacity change from 0 to 512 [ 309.497017][T11595] ext4: Unknown parameter 'fsname' [ 309.507900][T11594] binfmt_misc: register: failed to install interpreter file ./file0/../file0 [ 309.612263][ T46] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 309.644322][T11597] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2713'. [ 309.658978][T11600] netlink: 'syz.0.2714': attribute type 10 has an invalid length. [ 309.745037][ T46] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 309.804453][ T7564] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 309.813005][T11603] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2715'. [ 309.831752][ T7564] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 309.879935][ T7564] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 309.891457][T11606] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2716'. [ 309.921572][T11606] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 309.941375][T11606] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 309.954224][T11606] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 309.974446][T11606] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 310.215291][ T46] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 310.226250][ T4252] Bluetooth: hci3: command tx timeout [ 310.281233][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 310.345350][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 310.396462][ T7564] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 310.448093][ T26] kauditd_printk_skb: 38 callbacks suppressed [ 310.448111][ T26] audit: type=1326 audit(1730047617.585:2763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11620 comm="syz.0.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 310.466748][T11588] chnl_net:caif_netlink_parms(): no params data found [ 310.522784][ T26] audit: type=1326 audit(1730047617.585:2764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11620 comm="syz.0.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 310.603336][ T26] audit: type=1326 audit(1730047617.585:2765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11620 comm="syz.0.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 310.702697][T11632] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2724'. [ 310.728053][ T26] audit: type=1326 audit(1730047617.585:2766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11620 comm="syz.0.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 310.779964][T11631] netlink: 'syz.0.2725': attribute type 10 has an invalid length. [ 310.809971][ T26] audit: type=1326 audit(1730047617.585:2767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11620 comm="syz.0.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 310.818518][T11634] loop1: detected capacity change from 0 to 1024 [ 310.944120][T11588] bridge0: port 1(bridge_slave_0) entered blocking state [ 310.960258][T11588] bridge0: port 1(bridge_slave_0) entered disabled state [ 310.971132][T11634] EXT4-fs (loop1): Invalid log cluster size: 1284 [ 310.983989][T11588] device bridge_slave_0 entered promiscuous mode [ 311.019603][ T26] audit: type=1326 audit(1730047618.155:2768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11640 comm="syz.0.2729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 311.049895][T11588] bridge0: port 2(bridge_slave_1) entered blocking state [ 311.057291][T11588] bridge0: port 2(bridge_slave_1) entered disabled state [ 311.073930][T11588] device bridge_slave_1 entered promiscuous mode [ 311.087967][ T26] audit: type=1326 audit(1730047618.185:2769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11640 comm="syz.0.2729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 311.185764][ T26] audit: type=1326 audit(1730047618.185:2770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11640 comm="syz.0.2729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 311.225822][T11643] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2730'. [ 311.235829][ T26] audit: type=1326 audit(1730047618.185:2771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11640 comm="syz.0.2729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 311.252205][T11643] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 311.285130][T11643] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 311.296138][ T26] audit: type=1326 audit(1730047618.205:2772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11640 comm="syz.0.2729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 311.321400][T11643] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 311.339367][T11643] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 311.861339][T11588] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 311.888269][T11588] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 311.980976][T11652] loop5: detected capacity change from 0 to 1024 [ 312.060507][T11652] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=800ec119, mo2=0002] [ 312.203492][T11659] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2736'. [ 312.280840][T11588] team0: Port device team_slave_0 added [ 312.304051][ T4252] Bluetooth: hci3: command tx timeout [ 312.315610][T11652] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 312.373377][T11652] EXT4-fs (loop5): re-mounted. Quota mode: writeback. [ 312.384682][T11588] team0: Port device team_slave_1 added [ 312.474393][T11356] EXT4-fs (loop5): unmounting filesystem. [ 312.525594][T11670] xt_hashlimit: max too large, truncated to 1048576 [ 312.570060][T11588] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 312.585543][T11588] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 312.637098][T11676] loop5: detected capacity change from 0 to 512 [ 312.658449][T11588] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 312.675206][T11677] loop0: detected capacity change from 0 to 512 [ 312.687722][T11676] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 312.723976][T11588] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 312.731317][T11588] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 312.736767][T11679] loop3: detected capacity change from 0 to 512 [ 312.758404][T11588] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 312.778573][T11676] EXT4-fs (loop5): 1 truncate cleaned up [ 312.793304][T11676] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 312.851469][T11679] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 312.875763][T11679] ext4 filesystem being mounted at /500/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 312.885020][T11588] device hsr_slave_0 entered promiscuous mode [ 312.896985][ T7] kernel write not supported for file /snd/seq (pid: 7 comm: kworker/0:0) [ 312.905270][T11356] EXT4-fs (loop5): unmounting filesystem. [ 312.946505][T11588] device hsr_slave_1 entered promiscuous mode [ 312.964496][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 312.970848][T11588] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 312.988971][T11588] Cannot create hsr debugfs directory [ 313.077848][T11692] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2747'. [ 313.147655][T11688] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2746'. [ 313.163352][T11688] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 313.172287][T11688] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 313.193553][T11688] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 313.201038][T11688] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 313.308715][T11699] syz.3.2750[11699] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 313.308828][T11699] syz.3.2750[11699] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 313.724359][ T46] device hsr_slave_0 left promiscuous mode [ 313.760024][ T46] device hsr_slave_1 left promiscuous mode [ 313.774474][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 313.782147][ T46] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 313.790835][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 313.799599][ T46] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 313.807689][ T46] device bridge_slave_1 left promiscuous mode [ 313.814648][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 313.855358][ T46] device bridge_slave_0 left promiscuous mode [ 313.862996][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 313.928907][ T46] device batadv0 left promiscuous mode [ 313.970330][ T46] device veth1_macvtap left promiscuous mode [ 313.977938][ T46] device veth0_macvtap left promiscuous mode [ 313.992342][ T46] device veth1_vlan left promiscuous mode [ 314.007034][ T46] device veth0_vlan left promiscuous mode [ 314.090597][T11717] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2761'. [ 314.424398][ T4252] Bluetooth: hci3: command tx timeout [ 314.818411][T11731] loop0: detected capacity change from 0 to 512 [ 314.839974][T11731] EXT4-fs: Ignoring removed nobh option [ 314.923304][T11731] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 314.937406][T11731] ext4 filesystem being mounted at /598/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 315.707679][ T46] team0 (unregistering): Port device team_slave_1 removed [ 315.768990][ T46] team0 (unregistering): Port device team_slave_0 removed [ 315.825417][ T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 315.875926][ T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 316.276652][ T46] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 316.285525][ T46] bond0 (unregistering): Released all slaves [ 316.371126][T11727] netlink: 'syz.0.2765': attribute type 10 has an invalid length. [ 316.383658][T11727] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2765'. [ 316.395428][T11729] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2766'. [ 316.404788][T11729] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 316.412309][T11729] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 316.423641][T11729] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 316.431485][T11729] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 316.442219][ T4257] EXT4-fs (loop0): unmounting filesystem. [ 316.647001][T11746] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2772'. [ 316.808166][T11748] netlink: 'syz.3.2774': attribute type 10 has an invalid length. [ 316.827326][T11754] loop0: detected capacity change from 0 to 512 [ 316.846873][T11754] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -13 [ 316.856599][T11754] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945729 > max in inode 13 [ 316.869432][T11754] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945730 > max in inode 13 [ 316.888129][T11754] EXT4-fs (loop0): 1 truncate cleaned up [ 316.908992][T11754] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 316.945247][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 316.949185][T11588] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 316.971202][T11588] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 316.978170][T11754] fscrypt (loop0, inode 2): Error -61 getting encryption context [ 316.989930][T11588] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 316.997781][T11754] fscrypt (loop0, inode 2): Error -61 getting encryption context [ 317.009952][T11588] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 317.102022][ T4257] EXT4-fs (loop0): unmounting filesystem. [ 317.218933][T11588] 8021q: adding VLAN 0 to HW filter on device bond0 [ 317.237656][ T26] kauditd_printk_skb: 17 callbacks suppressed [ 317.237673][ T26] audit: type=1326 audit(1730047624.375:2790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11766 comm="syz.5.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 317.271486][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 317.286876][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 317.318005][T11588] 8021q: adding VLAN 0 to HW filter on device team0 [ 317.342627][ T26] audit: type=1326 audit(1730047624.405:2791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11766 comm="syz.5.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 317.352297][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 317.400474][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 317.422035][ T7619] bridge0: port 1(bridge_slave_0) entered blocking state [ 317.429269][ T7619] bridge0: port 1(bridge_slave_0) entered forwarding state [ 317.444177][ T26] audit: type=1326 audit(1730047624.405:2792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11766 comm="syz.5.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 317.487370][ T26] audit: type=1326 audit(1730047624.405:2793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11766 comm="syz.5.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 317.494516][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 317.540888][T11775] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2785'. [ 317.563358][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 317.571747][ T26] audit: type=1326 audit(1730047624.405:2794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11766 comm="syz.5.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 317.594214][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 317.594676][ T7619] bridge0: port 2(bridge_slave_1) entered blocking state [ 317.609804][ T7619] bridge0: port 2(bridge_slave_1) entered forwarding state [ 317.651000][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 317.672957][T11779] netlink: 'syz.0.2787': attribute type 10 has an invalid length. [ 317.691539][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 317.717654][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 317.751067][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 317.768111][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 317.787097][ T26] audit: type=1326 audit(1730047624.925:2795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.0.2790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 317.822048][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 317.841094][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 317.875409][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 317.897852][ T26] audit: type=1326 audit(1730047624.975:2796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.0.2790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 318.061316][ T26] audit: type=1326 audit(1730047624.975:2797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.0.2790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 318.087363][ T26] audit: type=1326 audit(1730047624.975:2798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.0.2790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 318.102824][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 318.110141][ T26] audit: type=1326 audit(1730047624.975:2799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.0.2790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2faef7e719 code=0x7ffc0000 [ 318.146360][T11588] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 318.160467][T11588] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 318.175189][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 318.185127][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 318.459323][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 318.475236][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 318.509767][T11588] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 318.517441][T11804] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2795'. [ 318.536647][T11802] syz.1.2794[11802] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 318.536779][T11802] syz.1.2794[11802] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 318.864968][T11812] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2798'. [ 318.929411][T11819] netlink: 'syz.5.2800': attribute type 10 has an invalid length. [ 318.984613][T11822] loop3: detected capacity change from 0 to 256 [ 319.007892][T11822] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 319.008373][T11819] bridge0: port 2(bridge_slave_1) entered disabled state [ 319.016784][T11822] FAT-fs (loop3): Filesystem has been set read-only [ 319.024166][T11819] bridge0: port 1(bridge_slave_0) entered disabled state [ 319.030736][T11822] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 319.049487][T11822] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 319.060071][T11822] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 319.061967][T11819] bridge0: port 2(bridge_slave_1) entered blocking state [ 319.071815][T11822] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 319.075972][T11819] bridge0: port 2(bridge_slave_1) entered forwarding state [ 319.084804][T11822] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 319.092034][T11819] bridge0: port 1(bridge_slave_0) entered blocking state [ 319.101024][T11822] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 319.107846][T11819] bridge0: port 1(bridge_slave_0) entered forwarding state [ 319.130600][T11819] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 319.136578][T11822] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 319.176862][T11822] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 319.222673][T11822] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 319.317211][ T7564] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 319.327024][ T7564] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 319.387441][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 319.402142][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 319.440273][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 319.449596][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 319.481145][T11588] device veth0_vlan entered promiscuous mode [ 319.531538][T11588] device veth1_vlan entered promiscuous mode [ 319.541585][T11841] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2809'. [ 319.607145][ T7564] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 319.626236][ T7564] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 319.650222][T11588] device veth0_macvtap entered promiscuous mode [ 319.672372][T11588] device veth1_macvtap entered promiscuous mode [ 319.723090][T11588] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 319.727651][T11849] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2814'. [ 319.746184][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 319.758009][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 319.779731][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 319.799298][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 319.814593][T11851] netlink: 'syz.3.2815': attribute type 10 has an invalid length. [ 319.835476][T11588] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 319.851795][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 319.883770][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 319.916693][T11588] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 319.932520][T11588] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 319.957511][T11588] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 319.966583][T11858] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2826'. [ 319.978373][T11588] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 320.255004][ T7564] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 320.272658][ T7564] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 320.308142][T11864] loop1: detected capacity change from 0 to 512 [ 320.320344][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 320.323377][T11864] EXT4-fs: Ignoring removed bh option [ 320.340581][ T7619] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 320.365380][ T7619] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 320.386254][T11864] EXT4-fs error (device loop1): __ext4_iget:5055: inode #15: block 1803188595: comm syz.1.2819: invalid block [ 320.387487][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 320.429882][T11869] syz.3.2822[11869] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 320.429989][T11869] syz.3.2822[11869] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 320.453159][T11864] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2819: couldn't read orphan inode 15 (err -117) [ 320.497173][T11870] loop5: detected capacity change from 0 to 2048 [ 320.503837][T11864] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 320.513873][T11870] EXT4-fs: Ignoring removed orlov option [ 320.550779][T11870] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 320.589091][T11870] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 320.631982][T11870] syz.5.2821[11870] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 320.632088][T11870] syz.5.2821[11870] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 320.877053][T11877] loop0: detected capacity change from 0 to 512 [ 320.899530][T11877] EXT4-fs: Ignoring removed mblk_io_submit option [ 320.907137][T11877] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 320.922991][T11877] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2186: inode #15: comm syz.0.2825: corrupted in-inode xattr [ 320.937925][T11877] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.2825: couldn't read orphan inode 15 (err -117) [ 320.955065][T11877] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 321.057500][ T4249] EXT4-fs (loop1): unmounting filesystem. [ 321.064397][T11356] EXT4-fs (loop5): unmounting filesystem. [ 321.082002][ T4257] EXT4-fs (loop0): unmounting filesystem. [ 321.178997][T11882] netlink: 'syz.5.2827': attribute type 10 has an invalid length. [ 321.215470][T11882] bridge0: port 2(bridge_slave_1) entered disabled state [ 321.222746][T11882] bridge0: port 1(bridge_slave_0) entered disabled state [ 321.235153][T11886] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2830'. [ 321.922453][T11914] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2838'. [ 321.933404][ T4252] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 321.944115][ T4252] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 321.960956][ T4252] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 321.981756][ T4252] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 322.002152][ T4252] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 322.011142][ T4252] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 322.126104][T11922] PM: Enabling pm_trace changes system date and time during resume. [ 322.126104][T11922] PM: Correct system time has to be restored manually after resume. [ 322.135385][T11923] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2841'. [ 322.364212][T11914] bond0: (slave team0): Releasing backup interface [ 322.440682][T11929] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2844'. [ 322.450913][T11914] team0 (unregistering): Port device team_slave_0 removed [ 322.486747][T11914] team0 (unregistering): Port device team_slave_1 removed [ 322.576164][T11931] netlink: 'syz.5.2845': attribute type 10 has an invalid length. [ 322.959459][T11917] chnl_net:caif_netlink_parms(): no params data found [ 323.158868][T11948] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 323.189891][T11948] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 323.220542][T11948] bond0 (unregistering): Released all slaves [ 323.271035][T11917] bridge0: port 1(bridge_slave_0) entered blocking state [ 323.288416][T11956] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2854'. [ 323.321440][T11917] bridge0: port 1(bridge_slave_0) entered disabled state [ 323.341644][T11917] device bridge_slave_0 entered promiscuous mode [ 323.378891][T11917] bridge0: port 2(bridge_slave_1) entered blocking state [ 323.392980][T11917] bridge0: port 2(bridge_slave_1) entered disabled state [ 323.410353][T11917] device bridge_slave_1 entered promiscuous mode [ 323.465776][T11960] sg_write: process 1254 (syz.3.2856) changed security contexts after opening file descriptor, this is not allowed. [ 323.501907][T11917] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 323.517640][T11963] program syz.3.2856 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 323.524355][T11917] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 323.635421][T11917] team0: Port device team_slave_0 added [ 323.638655][T11967] loop5: detected capacity change from 0 to 1024 [ 323.649422][T11967] EXT4-fs: Ignoring removed oldalloc option [ 323.669430][T11917] team0: Port device team_slave_1 added [ 323.734852][ T26] kauditd_printk_skb: 66 callbacks suppressed [ 323.734869][ T26] audit: type=1326 audit(1730047630.875:2866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.1.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 323.735316][T11917] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 323.742043][T11967] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 323.763991][T11917] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 323.807195][T11917] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 323.811279][ T26] audit: type=1326 audit(1730047630.955:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.1.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 323.819935][T11917] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 323.847889][T11917] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 323.874152][T11917] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 323.925456][T11917] device hsr_slave_0 entered promiscuous mode [ 323.932875][ T26] audit: type=1326 audit(1730047630.985:2868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.1.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 323.955892][T11917] device hsr_slave_1 entered promiscuous mode [ 323.976208][ T26] audit: type=1326 audit(1730047630.985:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.1.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 324.002991][T11917] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 324.011053][T11917] Cannot create hsr debugfs directory [ 324.046696][ T26] audit: type=1326 audit(1730047630.985:2870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.1.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 324.046732][T11979] device syz_tun entered promiscuous mode [ 324.075333][ T4263] Bluetooth: hci4: command tx timeout [ 324.086064][ T26] audit: type=1326 audit(1730047630.985:2871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.1.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 324.103665][T11979] device vlan2 entered promiscuous mode [ 324.112827][ T26] audit: type=1326 audit(1730047630.985:2872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.1.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 324.141371][ T26] audit: type=1326 audit(1730047630.985:2873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.1.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 324.174351][ T26] audit: type=1326 audit(1730047630.985:2874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.1.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 324.200716][ T26] audit: type=1326 audit(1730047630.985:2875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.1.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae5d7e719 code=0x7ffc0000 [ 324.201879][T11356] EXT4-fs (loop5): unmounting filesystem. [ 324.430490][T11987] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2867'. [ 324.691338][T11991] loop1: detected capacity change from 0 to 512 [ 324.701482][T11985] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 324.725206][T11985] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 324.733222][T11991] EXT4-fs: Ignoring removed mblk_io_submit option [ 324.744291][T11991] EXT4-fs: Ignoring removed i_version option [ 324.756461][T11985] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 324.767709][T11985] bond0 (unregistering): Released all slaves [ 324.784763][T11991] EXT4-fs error (device loop1): __ext4_iget:5055: inode #11: block 1: comm syz.1.2869: invalid block [ 324.796610][T11983] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 324.806246][T11991] EXT4-fs (loop1): Remounting filesystem read-only [ 324.822815][T11991] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2869: couldn't read orphan inode 11 (err -117) [ 324.837127][T11983] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 324.864347][T11991] EXT4-fs (loop1): Remounting filesystem read-only [ 324.871268][T11991] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 324.939590][T11995] syz.5.2870[11995] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 324.939703][T11995] syz.5.2870[11995] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 325.112697][T11917] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 325.315026][T11917] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 325.503281][T11917] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 325.674480][T12011] loop3: detected capacity change from 0 to 512 [ 325.681678][T12011] EXT4-fs: Ignoring removed mblk_io_submit option [ 325.704286][T11917] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 325.725907][T12013] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2878'. [ 325.751786][T12011] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 325.805815][T12011] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002] [ 325.822834][T12011] System zones: 1-12 [ 325.840396][T12011] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2186: inode #15: comm syz.3.2877: corrupted in-inode xattr [ 325.931937][T12011] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.2877: couldn't read orphan inode 15 (err -117) [ 325.963175][T12011] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 326.091308][T11999] EXT4-fs error (device loop1): ext4_add_entry:2486: inode #2: comm syz.1.2869: Directory hole found for htree leaf block 0 [ 326.175201][ T4252] Bluetooth: hci4: command tx timeout [ 326.210926][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 326.285012][T11999] EXT4-fs (loop1): Remounting filesystem read-only [ 326.310081][T11917] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 326.325597][T11917] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 326.338068][T11917] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 326.394650][T11917] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 326.711399][T12022] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 326.734983][T12022] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 326.760084][T12022] bond0 (unregistering): Released all slaves [ 326.829949][T11917] 8021q: adding VLAN 0 to HW filter on device bond0 [ 326.869690][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 326.888901][ T4249] EXT4-fs (loop1): unmounting filesystem. [ 326.919062][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 326.948151][T11917] 8021q: adding VLAN 0 to HW filter on device team0 [ 326.971402][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 326.992460][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 327.003092][ T7619] bridge0: port 1(bridge_slave_0) entered blocking state [ 327.010233][ T7619] bridge0: port 1(bridge_slave_0) entered forwarding state [ 327.031450][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 327.044965][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 327.058629][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 327.076083][ T7619] bridge0: port 2(bridge_slave_1) entered blocking state [ 327.083278][ T7619] bridge0: port 2(bridge_slave_1) entered forwarding state [ 327.100766][T12033] syz.3.2887[12033] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 327.100873][T12033] syz.3.2887[12033] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 327.114586][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 327.140029][T12033] syz.3.2887[12033] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 327.140137][T12033] syz.3.2887[12033] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 327.144539][T12036] netlink: 56 bytes leftover after parsing attributes in process `syz.6.2889'. [ 327.177299][T12034] netlink: 'syz.5.2888': attribute type 1 has an invalid length. [ 327.202760][T12034] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2888'. [ 327.257376][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 327.277253][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 327.304129][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 327.325112][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 327.345626][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 327.363901][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 327.409044][T11917] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 327.430393][T12045] loop5: detected capacity change from 0 to 512 [ 327.438263][T11917] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 327.478888][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 327.487753][T12045] EXT4-fs: Ignoring removed mblk_io_submit option [ 327.507912][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 327.516049][T12045] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 327.523917][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 327.536765][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 327.545815][T12045] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002] [ 327.560835][T12045] System zones: 1-12 [ 327.576632][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 327.578089][T12045] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2186: inode #15: comm syz.5.2892: corrupted in-inode xattr [ 327.606829][T12045] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.2892: couldn't read orphan inode 15 (err -117) [ 327.663015][T12045] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 327.864334][T11356] EXT4-fs (loop5): unmounting filesystem. [ 328.048357][T12064] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 328.153105][T12064] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 328.274911][ T4252] Bluetooth: hci4: command tx timeout [ 328.360024][T12064] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 328.405292][T12064] bond0 (unregistering): Released all slaves [ 328.455185][T12076] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2903'. [ 328.514877][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 328.525623][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 328.541855][T11917] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 328.624313][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 328.645869][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 328.651171][T12080] loop6: detected capacity change from 0 to 512 [ 328.675481][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 328.686397][T12080] EXT4-fs: Ignoring removed mblk_io_submit option [ 328.693549][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 328.695954][T12082] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2914'. [ 328.711213][T11917] device veth0_vlan entered promiscuous mode [ 328.726721][T12080] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 328.728493][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 328.763615][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 328.779938][T12080] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002] [ 328.789650][T11917] device veth1_vlan entered promiscuous mode [ 328.810923][T12080] System zones: 1-12 [ 328.816650][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 328.845882][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 328.865637][T12080] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2186: inode #15: comm syz.6.2905: corrupted in-inode xattr [ 328.893994][T12080] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.2905: couldn't read orphan inode 15 (err -117) [ 328.906429][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 328.922307][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 328.935115][T11917] device veth0_macvtap entered promiscuous mode [ 328.936720][T12080] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 328.948935][T11917] device veth1_macvtap entered promiscuous mode [ 328.979905][T11917] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 329.000746][T11917] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 329.029423][T11917] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 329.058292][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 329.067984][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 329.089355][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 329.113262][T11588] EXT4-fs (loop6): unmounting filesystem. [ 329.126454][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 329.325386][T11917] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 329.343670][T11917] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 329.355414][T11917] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 329.367062][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 329.377842][ T7619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 329.389509][T11917] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 329.408419][T11917] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 329.433164][T11917] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 329.441921][T11917] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 329.469332][T12100] device pim6reg1 entered promiscuous mode [ 329.586986][ T7564] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 329.599931][ T7564] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 329.615454][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 329.636365][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 329.645004][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 329.656592][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 329.746717][T12110] loop3: detected capacity change from 0 to 128 [ 329.783762][ T26] kauditd_printk_skb: 12 callbacks suppressed [ 329.783780][ T26] audit: type=1800 audit(1730047636.925:2888): pid=12110 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2927" name="bus" dev="loop3" ino=1048644 res=0 errno=0 [ 329.968959][T12117] loop5: detected capacity change from 0 to 2048 [ 330.039318][T12117] EXT4-fs (loop5): failed to initialize system zone (-117) [ 330.053992][T12124] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2919'. [ 330.074676][T12117] EXT4-fs (loop5): mount failed [ 330.228352][T12119] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 330.275848][T12119] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 330.303099][ T4252] Bluetooth: hci4: command tx timeout [ 330.306856][T12119] bond0 (unregistering): Released all slaves [ 331.303203][T12142] netlink: 'syz.3.2941': attribute type 10 has an invalid length. [ 331.441306][T12150] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2934'. [ 331.492827][T12153] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2935'. [ 331.816680][T12174] loop3: detected capacity change from 0 to 1024 [ 331.891650][T12174] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 331.905997][T12174] ext4 filesystem being mounted at /549/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 331.982034][ T26] audit: type=1800 audit(1730047639.115:2889): pid=12174 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2945" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 332.026834][ T26] audit: type=1326 audit(1730047639.115:2890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.5.2948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 332.107999][T12181] syzkaller0: tun_chr_ioctl cmd 1074812118 [ 332.120589][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 332.142197][ T26] audit: type=1326 audit(1730047639.115:2891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.5.2948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 332.222180][ T26] audit: type=1326 audit(1730047639.115:2892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.5.2948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 332.265724][T12189] loop5: detected capacity change from 0 to 128 [ 332.298564][ T26] audit: type=1326 audit(1730047639.225:2893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.5.2948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 332.317430][T12192] loop6: detected capacity change from 0 to 512 [ 332.346094][T12192] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 332.369173][ T26] audit: type=1326 audit(1730047639.225:2894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.5.2948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 332.389268][T12192] EXT4-fs (loop6): 1 truncate cleaned up [ 332.392415][ T26] audit: type=1326 audit(1730047639.255:2895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.5.2948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 332.420043][T12195] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2953'. [ 332.428480][T12192] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 332.431385][ T26] audit: type=1326 audit(1730047639.255:2896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.5.2948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facdf17e719 code=0x7ffc0000 [ 332.460751][ T26] audit: type=1326 audit(1730047639.425:2897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12188 comm="syz.3.2950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eda97e719 code=0x7ffc0000 [ 332.543232][T12192] ================================================================== [ 332.551344][T12192] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x8ca/0x1f30 [ 332.559094][T12192] Read of size 18446744073709551572 at addr ffff888028b96050 by task L0'DX/12192 [ 332.569087][T12192] [ 332.571421][T12192] CPU: 0 PID: 12192 Comm: L0'DX Not tainted 6.1.114-syzkaller #0 [ 332.580020][T12192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 332.590112][T12192] Call Trace: [ 332.593404][T12192] [ 332.596372][T12192] dump_stack_lvl+0x1e3/0x2cb [ 332.601076][T12192] ? nf_tcp_handle_invalid+0x642/0x642 [ 332.606593][T12192] ? panic+0x764/0x764 [ 332.610667][T12192] ? _printk+0xd1/0x111 [ 332.614824][T12192] ? __virt_addr_valid+0x17f/0x530 [ 332.619936][T12192] ? __virt_addr_valid+0x17f/0x530 [ 332.625044][T12192] print_report+0x15f/0x4f0 [ 332.629583][T12192] ? __virt_addr_valid+0x17f/0x530 [ 332.634701][T12192] ? __virt_addr_valid+0x17f/0x530 [ 332.639817][T12192] ? __virt_addr_valid+0x45b/0x530 [ 332.644930][T12192] ? __phys_addr+0xb6/0x170 [ 332.649434][T12192] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 332.654889][T12192] kasan_report+0x136/0x160 [ 332.659394][T12192] ? __x64_sys_unlink+0x45/0x50 [ 332.664249][T12192] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 332.669702][T12192] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 332.675239][T12192] kasan_check_range+0x27f/0x290 [ 332.680229][T12192] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 332.685699][T12192] memmove+0x25/0x60 [ 332.689601][T12192] ext4_xattr_set_entry+0x8ca/0x1f30 [ 332.694892][T12192] ? ext4_xattr_inode_lookup_create+0x1ef0/0x1ef0 [ 332.701304][T12192] ? ext4_xattr_block_set+0x884/0x3920 [ 332.706812][T12192] ? kmemdup+0x41/0x60 [ 332.710879][T12192] ? memcpy+0x3c/0x60 [ 332.714860][T12192] ext4_xattr_block_set+0xa58/0x3920 [ 332.720143][T12192] ? __getblk_gfp+0x50/0xa20 [ 332.724725][T12192] ? _raw_spin_unlock+0x24/0x40 [ 332.729583][T12192] ? ext4_xattr_block_find+0x510/0x510 [ 332.735037][T12192] ? ext4_xattr_block_find+0x468/0x510 [ 332.740492][T12192] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 332.746388][T12192] ? ext4_xattr_set+0x3d0/0x3d0 [ 332.751228][T12192] ? rwsem_write_trylock+0x166/0x210 [ 332.756519][T12192] ? clear_nonspinnable+0x60/0x60 [ 332.761541][T12192] ? ext4_reserve_inode_write+0x2b3/0x360 [ 332.767261][T12192] ? dquot_initialize_needed+0x128/0x320 [ 332.772896][T12192] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 332.778532][T12192] __ext4_mark_inode_dirty+0x54f/0x920 [ 332.783999][T12192] ? ext4_blocks_for_truncate+0x270/0x270 [ 332.789716][T12192] ? current_time+0x1ba/0x300 [ 332.794398][T12192] ? atime_needs_update+0x7b0/0x7b0 [ 332.799610][T12192] __ext4_unlink+0x6ed/0xba0 [ 332.804206][T12192] ? __ext4_read_dirblock+0x890/0x890 [ 332.809581][T12192] ? rwsem_write_trylock+0x166/0x210 [ 332.814865][T12192] ? inode_permission+0xf7/0x450 [ 332.819798][T12192] ? clear_nonspinnable+0x60/0x60 [ 332.824824][T12192] ext4_unlink+0x1d5/0x670 [ 332.829285][T12192] vfs_unlink+0x359/0x5f0 [ 332.833623][T12192] do_unlinkat+0x4a5/0x820 [ 332.838048][T12192] ? fsnotify_link_count+0xf0/0xf0 [ 332.843173][T12192] __x64_sys_unlink+0x45/0x50 [ 332.847849][T12192] do_syscall_64+0x3b/0xb0 [ 332.852265][T12192] ? clear_bhb_loop+0x45/0xa0 [ 332.856934][T12192] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 332.862840][T12192] RIP: 0033:0x7fe9acb7e719 [ 332.867288][T12192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 332.886916][T12192] RSP: 002b:00007fe9ad9ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 332.895357][T12192] RAX: ffffffffffffffda RBX: 00007fe9acd35f80 RCX: 00007fe9acb7e719 [ 332.903330][T12192] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 332.911294][T12192] RBP: 00007fe9acbf132e R08: 0000000000000000 R09: 0000000000000000 [ 332.919258][T12192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 332.927225][T12192] R13: 0000000000000000 R14: 00007fe9acd35f80 R15: 00007ffd70925f28 [ 332.935234][T12192] [ 332.938264][T12192] [ 332.940597][T12192] Allocated by task 12192: [ 332.945029][T12192] kasan_set_track+0x4b/0x70 [ 332.949648][T12192] __kasan_kmalloc+0x97/0xb0 [ 332.954233][T12192] __kmalloc_node_track_caller+0xb1/0x220 [ 332.959948][T12192] kmemdup+0x26/0x60 [ 332.963851][T12192] ext4_xattr_block_set+0x884/0x3920 [ 332.969146][T12192] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 332.975072][T12192] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 332.980709][T12192] __ext4_mark_inode_dirty+0x54f/0x920 [ 332.986175][T12192] __ext4_unlink+0x6ed/0xba0 [ 332.990764][T12192] ext4_unlink+0x1d5/0x670 [ 332.995176][T12192] vfs_unlink+0x359/0x5f0 [ 332.999507][T12192] do_unlinkat+0x4a5/0x820 [ 333.003924][T12192] __x64_sys_unlink+0x45/0x50 [ 333.008604][T12192] do_syscall_64+0x3b/0xb0 [ 333.013027][T12192] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 333.018952][T12192] [ 333.021265][T12192] The buggy address belongs to the object at ffff888028b96000 [ 333.021265][T12192] which belongs to the cache kmalloc-1k of size 1024 [ 333.035429][T12192] The buggy address is located 80 bytes inside of [ 333.035429][T12192] 1024-byte region [ffff888028b96000, ffff888028b96400) [ 333.048716][T12192] [ 333.051031][T12192] The buggy address belongs to the physical page: [ 333.057531][T12192] page:ffffea0000a2e400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x28b90 [ 333.067682][T12192] head:ffffea0000a2e400 order:3 compound_mapcount:0 compound_pincount:0 [ 333.076013][T12192] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 333.083999][T12192] raw: 00fff00000010200 ffffea0001febe00 dead000000000002 ffff888017c41dc0 [ 333.092579][T12192] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000 [ 333.101149][T12192] page dumped because: kasan: bad access detected [ 333.107569][T12192] page_owner tracks the page as allocated [ 333.113278][T12192] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 0, tgid 0 (swapper/1), ts 70461418505, free_ts 46063920639 [ 333.133248][T12192] post_alloc_hook+0x18d/0x1b0 [ 333.138017][T12192] get_page_from_freelist+0x322e/0x33b0 [ 333.143576][T12192] __alloc_pages+0x28d/0x770 [ 333.148176][T12192] alloc_slab_page+0x6a/0x150 [ 333.152871][T12192] new_slab+0x84/0x2d0 [ 333.156960][T12192] ___slab_alloc+0xc20/0x1270 [ 333.161639][T12192] __kmem_cache_alloc_node+0x19f/0x260 [ 333.167103][T12192] __kmalloc_node_track_caller+0xa0/0x220 [ 333.172824][T12192] __alloc_skb+0x135/0x670 [ 333.177245][T12192] __tcp_send_ack+0x9a/0x600 [ 333.181833][T12192] tcp_rcv_established+0xf26/0x1f00 [ 333.187041][T12192] tcp_v4_do_rcv+0x487/0xb00 [ 333.191633][T12192] tcp_v4_rcv+0x29e0/0x3250 [ 333.196134][T12192] ip_protocol_deliver_rcu+0x381/0x740 [ 333.201596][T12192] ip_local_deliver_finish+0x304/0x580 [ 333.207053][T12192] NF_HOOK+0x39d/0x450 [ 333.211155][T12192] page last free stack trace: [ 333.215820][T12192] free_unref_page_prepare+0xf63/0x1120 [ 333.221374][T12192] free_unref_page+0x33/0x3e0 [ 333.226076][T12192] __unfreeze_partials+0x1b7/0x210 [ 333.231199][T12192] put_cpu_partial+0x17b/0x250 [ 333.235987][T12192] qlist_free_all+0x76/0xe0 [ 333.240503][T12192] kasan_quarantine_reduce+0x156/0x170 [ 333.245991][T12192] __kasan_slab_alloc+0x1f/0x70 [ 333.250857][T12192] slab_post_alloc_hook+0x52/0x3a0 [ 333.255972][T12192] kmem_cache_alloc_lru+0x10c/0x2d0 [ 333.261174][T12192] __d_alloc+0x31/0x710 [ 333.265348][T12192] d_alloc_cursor+0x40/0xd0 [ 333.269878][T12192] dcache_dir_open+0x37/0x70 [ 333.274478][T12192] do_dentry_open+0x7f9/0x10f0 [ 333.279283][T12192] path_openat+0x2644/0x2e60 [ 333.283887][T12192] do_filp_open+0x230/0x480 [ 333.288404][T12192] do_sys_openat2+0x13b/0x4f0 [ 333.293088][T12192] [ 333.295404][T12192] Memory state around the buggy address: [ 333.301031][T12192] ffff888028b95f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 333.309087][T12192] ffff888028b95f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 333.317163][T12192] >ffff888028b96000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 333.325224][T12192] ^ [ 333.331932][T12192] ffff888028b96080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 333.339988][T12192] ffff888028b96100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 333.348040][T12192] ================================================================== [ 333.372632][T12192] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 333.379899][T12192] CPU: 1 PID: 12192 Comm: L0'DX Not tainted 6.1.114-syzkaller #0 [ 333.388528][T12192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 333.398609][T12192] Call Trace: [ 333.401907][T12192] [ 333.404857][T12192] dump_stack_lvl+0x1e3/0x2cb [ 333.409554][T12192] ? nf_tcp_handle_invalid+0x642/0x642 [ 333.415032][T12192] ? panic+0x764/0x764 [ 333.419124][T12192] ? preempt_schedule_common+0xa6/0xd0 [ 333.424600][T12192] ? vscnprintf+0x59/0x80 [ 333.428963][T12192] panic+0x318/0x764 [ 333.432896][T12192] ? check_panic_on_warn+0x1d/0xa0 [ 333.438038][T12192] ? memcpy_page_flushcache+0xfc/0xfc [ 333.443444][T12192] ? _raw_spin_unlock_irqrestore+0x128/0x130 [ 333.449460][T12192] ? _raw_spin_unlock+0x40/0x40 [ 333.454346][T12192] check_panic_on_warn+0x7e/0xa0 [ 333.459322][T12192] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 333.464804][T12192] end_report+0x66/0x110 [ 333.469072][T12192] kasan_report+0x143/0x160 [ 333.473592][T12192] ? __x64_sys_unlink+0x45/0x50 [ 333.478474][T12192] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 333.483967][T12192] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 333.489452][T12192] kasan_check_range+0x27f/0x290 [ 333.494408][T12192] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 333.499886][T12192] memmove+0x25/0x60 [ 333.503809][T12192] ext4_xattr_set_entry+0x8ca/0x1f30 [ 333.509126][T12192] ? ext4_xattr_inode_lookup_create+0x1ef0/0x1ef0 [ 333.515563][T12192] ? ext4_xattr_block_set+0x884/0x3920 [ 333.521041][T12192] ? kmemdup+0x41/0x60 [ 333.525131][T12192] ? memcpy+0x3c/0x60 [ 333.529136][T12192] ext4_xattr_block_set+0xa58/0x3920 [ 333.534453][T12192] ? __getblk_gfp+0x50/0xa20 [ 333.539068][T12192] ? _raw_spin_unlock+0x24/0x40 [ 333.543949][T12192] ? ext4_xattr_block_find+0x510/0x510 [ 333.549439][T12192] ? ext4_xattr_block_find+0x468/0x510 [ 333.554922][T12192] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 333.560870][T12192] ? ext4_xattr_set+0x3d0/0x3d0 [ 333.565739][T12192] ? rwsem_write_trylock+0x166/0x210 [ 333.571057][T12192] ? clear_nonspinnable+0x60/0x60 [ 333.576106][T12192] ? ext4_reserve_inode_write+0x2b3/0x360 [ 333.581860][T12192] ? dquot_initialize_needed+0x128/0x320 [ 333.587535][T12192] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 333.593209][T12192] __ext4_mark_inode_dirty+0x54f/0x920 [ 333.598701][T12192] ? ext4_blocks_for_truncate+0x270/0x270 [ 333.604445][T12192] ? current_time+0x1ba/0x300 [ 333.609157][T12192] ? atime_needs_update+0x7b0/0x7b0 [ 333.614383][T12192] __ext4_unlink+0x6ed/0xba0 [ 333.619020][T12192] ? __ext4_read_dirblock+0x890/0x890 [ 333.624412][T12192] ? rwsem_write_trylock+0x166/0x210 [ 333.629720][T12192] ? inode_permission+0xf7/0x450 [ 333.634688][T12192] ? clear_nonspinnable+0x60/0x60 [ 333.639742][T12192] ext4_unlink+0x1d5/0x670 [ 333.644183][T12192] vfs_unlink+0x359/0x5f0 [ 333.648557][T12192] do_unlinkat+0x4a5/0x820 [ 333.653012][T12192] ? fsnotify_link_count+0xf0/0xf0 [ 333.658164][T12192] __x64_sys_unlink+0x45/0x50 [ 333.662867][T12192] do_syscall_64+0x3b/0xb0 [ 333.667300][T12192] ? clear_bhb_loop+0x45/0xa0 [ 333.671997][T12192] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 333.677924][T12192] RIP: 0033:0x7fe9acb7e719 [ 333.682359][T12192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 333.702009][T12192] RSP: 002b:00007fe9ad9ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 333.710459][T12192] RAX: ffffffffffffffda RBX: 00007fe9acd35f80 RCX: 00007fe9acb7e719 [ 333.718456][T12192] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 333.726453][T12192] RBP: 00007fe9acbf132e R08: 0000000000000000 R09: 0000000000000000 [ 333.734443][T12192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 333.742435][T12192] R13: 0000000000000000 R14: 00007fe9acd35f80 R15: 00007ffd70925f28 [ 333.750436][T12192] [ 333.753793][T12192] Kernel Offset: disabled [ 333.758120][T12192] Rebooting in 86400 seconds..