last executing test programs: 5.994732781s ago: executing program 0 (id=2661): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r1}, 0x10) quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0) 5.81094478s ago: executing program 0 (id=2662): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000600)="$eJzs3U1vG1sZAODXzpeTm97kXu4CENBSCgVVdRK3jaouoKwQQpUQXYLUhsSNothxFDulCV2k/wGJSqxgyQ9g3RV7Ngh2bMoCiY8I1FRiYTTjSeomdpOSNI7i55FGM+eMM+85ieec+nXtE0DfuhQRWxExHBEPI2Iiq89lW9xtbcnjXm0/nd/Zfjqfi2bz/j9z6fmkLtp+JvFRds1CRPzoexE/zR2MW9/YXJ6rVMprWXmqUV2dqm9sXl+qzi2WF8srpdLszOz07Ru3SifW14vV4ezoyy//sPWtnyfNGs9q2vtxklpdH9qLE9nv/AcfIlgPDETEYPb8yVzoZXt4P/mI+DQiLqf3/0QMpH9NAOA8azYnojnRXgYAzrt8mgPL5YtZLmA88vlisZXD+yzG8pVavXHtUW19ZaGVK5uMofyjpUp5OssVTsZQLinPpMdvyqV95RsR8UlE/GJkNC0X52uVhV7+wwcA+thH++b//4y05n8A4Jwr9LoBAMCpM/8DQP8x/wNA/zH/A0D/Mf8DQP8x/wNA/zH/A0Bf+eG9e8nW3Mm+/3rh8cb6cu3x9YVyfblYXZ8vztfWVouLtdpi+p091cOuV6nVVmduxvqTyW+v1htT9Y3NB9Xa+krjQfq93g/KQ6fSKwDgXT65+OLPuYjYujOabtG2loO5Gs63fK8bAPTMQK8bAPSM1b6gfx3jNb70AJwTHZbofUshIkb3VzabzeaHaxLwgV39gvw/9Ku2/L//BQx9Rv4f+lfX/P+BF/vAedNs5o665n8c9YEAwNkmxw90ef//02z/2+zNgZ8s7H/E8/0VPlEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA/9hd/7eYrdwxHvl8sRhxISImYyj3aKlSno6IjyPiTyNDI0l5psdtBgCOK/+3XLb+19WJK+P7zw7nXo+k+4j42a/u//LJXKOx9sek/l979Y3nWX2pF+0HAA6zO0+n+7YX8q+2n87vbqfZnr9/NyIKrfg728Oxsxd/MAbTfSGGImLs37ms3JJry10cx9aziPh8p/7nYjzNgbRWPt0fP4l94VTj59+Kn0/PtfbJ7+JzJ9AW6DcvkvHnbqf7Lx+X0n3n+7+QjlDHl41/yaXmd9Ix8E383fFvoMv4d+moMW7+/vuto9GD555FfHEwYjf2Ttv4sxs/1yX+lYOX6+gvX/rK5W7nmr+OuBqd47fHmmpUV6fqG5vXl6pzi+XF8kqpNDszO337xq3SVJqjnuo+G/zjzrWPu51L+j/WJX7hkP5//Wjdj9/89+GPv/qO+N/8Wqf4+fjsHfGTOfEbR4w/N/a7QrdzSfyFLv0/7O9/7YjxX/5188Cy4QBA79Q3NpfnKpXymgMHZ/8gecqegWZ0PPjOacUajvf6qWbz/4rVbcQ4iawbcBbs3fQR8brXjQEAAAAAAAAAAAAAADo6jU8s9bqPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnF//CwAA//8wuNJ1") 5.54873342s ago: executing program 0 (id=2663): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) r1 = socket(0x10, 0x3, 0x6) r2 = socket(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0xf1, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x90, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4]}}}}, @TCA_RATE={0x6}]}, 0x90}}, 0x20000000) 5.301357339s ago: executing program 0 (id=2666): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000007000000ef"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000180)=@sg0, 0x0, 0x0) 5.024082268s ago: executing program 0 (id=2671): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18) r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x22402, 0x0) ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000080)=0x14) ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f00000000c0)=0x32) close(r2) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x297880e5d24e7381}, 0x9c) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000280)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0xfffffffd, 0x0, 0xa}, &(0x7f0000000340)=0x9c) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000080)={[{@nolazytime}, {}]}, 0x6, 0x4eb, &(0x7f0000000a40)="$eJzs3c9vVFsdAPDvnXZoKQMFZaFGBRFFQ5j+ABqCC2GjMYTESFy5gNoOTdMZpum0SCuLsnRvIokr/RPcuTBh5cKdO925wYUJKnkv9CVvMS/3zqUd2g7te7Qd6Hw+ye2955xhvufMcM6Ze2B6AuhZZyNiNSKORMS9iBjO85P8iButI33cq5ePp9ZePp5Kotm8878kK0/zou3PpI7lzzkYET/7ccQvk61xG8src5PVamUhT48s1uZHGssrl2YLec74xNjE6LXLV8f3rK1nan968aPZWz//y5+/8fzvq9//dVqt0m+OZ2Xt7dhLraYXo9SW1x8Rt/YjWJf0539/+PCkve1LEXEu6//D0Ze9mwDAYdZsDkdzuD0NABx26f1/KZJCOV8LKEWhUC631vBOx1ChWm8sXhyuLz2YjmwN62QUC/dnq5XRfK3wZBSTND2WXW+kxzelL0fEqYj47cDRLF2eqlenu/nBBwB62LFN8//HA635HwA45Aa7XQEA4MCZ/wGg95j/AaD3fI7537cDAeCQcP8PAL3H/A8AvWfH+f/JwdQDADgQP719Oz2aa/nvv55+uLz0g9LDS9OVxly5tjRVnqovzJdn6vWZaqU81Wzu9HzVen1+7Mp6srG8crdWX3qweHe2NjlTuVsp7nN7AICdnTrz7J9JRKxeP5od0baXg7kaDrdCtysAdE1ftysAdI3v80Dv2sU9vmUAOOS22aL3DR3/i9BTm7/Ch+rCV63/Q6+y/g+964ut//9wz+sBHDzr/9C7ms3Env8A0GOs8QPv9O//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KNK2ZEUytle4Kvpz0K5HHE8Ik5GMbk/W62MRsSJiPjHQHEgTY91u9IAwDsq/CfJ9/+6MHy+tLn0SPLJQHaOiF/9/s7vHk0uLi6Mpfn/X89ffJrnjx/pRgMAgHY3tma15un83HYj/+rl46nXx0FW8cXN1uaiady1/GiV9Ed/dh6MYkQMfZTk6Zb080rfHsRffRIRX9lo/6O2CKVsDaS18+nm+Gns4/sQf+P13xy/8Eb8QlaWnovZa/HlPagL9JpnN1vjZN730i6W979CnM3O2/f/wWyEenevx7+1LeNfYX3869sSP8n6/Nn19Ntr8uLKX3+yJbM53Cp7EvG1/u3iJ+vxkw7j7/ldtvFfX//muU5lzT9EXIjt47fUsmF2ZLE2P9JYXrk0W5ucqcxUHoyPT4xNjF67fHV8JFujbv3823Yx/nv94olO8dP2D3WIP7hD+7+zy/b/8dN7v/jWW+J/79vbv/+n3xI/nRO/u8v4k0M3Om7fncaf7tD+nd7/i7uM//zfK9O7fCgAcAAayytzk9VqZWGHi/Sz5k6PcfFhXsRqxHtQDRfv1UW3RyZgv210+m7XBAAAAAAAAAAAAAAA6KSxvDI3EPv7daJutxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDD67MAAAD//w/PzvM=") r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0) ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000040)) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10) write$binfmt_script(r5, &(0x7f0000000380), 0x208e24b) ioctl$EXT4_IOC_MIGRATE(r5, 0x6609) 4.595805386s ago: executing program 0 (id=2679): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) listen(r1, 0x0) syz_emit_ethernet(0x5a, &(0x7f0000000200)={@local, @random="a6dde6557137", @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x24, 0x6, 0x0, @local, @local, {[], {{0x1, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x9, 0xc2, 0x0, 0x0, 0x0, {[@mptcp=@mp_join={0x1e, 0x3, 0x0, 0x2}, @mptcp=@syn={0x1e, 0xc}]}}}}}}}}, 0x0) 4.008143704s ago: executing program 4 (id=2687): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x4}, {}, {0x3}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_UDP_DST_PORT={0x6}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40a0}, 0x800) 3.906277814s ago: executing program 4 (id=2689): syz_emit_ethernet(0x46, &(0x7f00000000c0)={@link_local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010120", 0x10, 0x3a, 0xff, @ipv4={'\x00', '\xff\xff', @local}, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0xff}}}}}}, 0x0) 3.795055293s ago: executing program 4 (id=2691): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000240)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) rt_sigqueueinfo(0x0, 0x10, 0x0) 3.631968443s ago: executing program 2 (id=2693): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3477, 0x0, 0x0, 0x0, 0x8}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7535}}]}, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) epoll_create1(0x0) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) syz_genetlink_get_family_id$devlink(0x0, r2) r3 = socket$nl_route(0x10, 0x3, 0x0) syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYRES8=0x0, @ANYRESDEC], 0x1, 0x140, &(0x7f00000003c0)="$eJzs27Fq21AUBuDj2m3ddvFcOgi6dDJtn6CluFAqaEnwkEwJOFnsYIgXJZMfJS8YCJ683ZAo2Imxhwy2IPq+RT/8CO4dpMMV6OjT2XAwnpyO/8+i3WhE60dkMW9EJ15FM0rTAABeknlKcZNSSm+n8e4qUkpVrwgA2DbzHwDqx/wHgPox/wGgfvYPDv/+zPPeXpa1I66nRb/ol9ey//0n733N7nWWd82Kot9c9N/KPnvav473D/33tf2b+PK57O+6X//ylf5DDLa/fQAAAKiFbraw9nzf7W7qy/To+8DK+b0VH1s72wYA8AyTi8vh8Wh0ci4IgrAIVb+ZgG1bPvRVrwQAAAAAAAAAAAAAANhkF78TVb1HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWHUbAAD//0DvUik=") sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r4 = getpid() sched_setscheduler(r4, 0x2, &(0x7f0000000180)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x4000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$nl_route(r3, &(0x7f0000000700)={&(0x7f0000000380), 0xc, &(0x7f00000006c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="f32300001a0000002cbd70001cdcdf2580808006fe00fd0500000000"], 0x1c}, 0x1, 0x0, 0x0, 0x89c}, 0x4000) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10) r8 = getpid() syz_clone3(&(0x7f0000000500)={0x4000000, 0x0, 0x0, 0x0, {0x2d}, 0x0, 0x0, 0x0, &(0x7f00000004c0)=[r8], 0x1}, 0x58) 3.631698763s ago: executing program 4 (id=2694): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r1, 0x408c5333, &(0x7f0000000080)) 3.440140432s ago: executing program 4 (id=2697): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r1, 0x8923, &(0x7f0000000000)={'vlan1\x00', @broadcast}) 3.351003122s ago: executing program 4 (id=2699): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r1}, 0x18) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r2}, 0x10) quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0) 1.716163926s ago: executing program 2 (id=2713): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x1, 0x7, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r2}, &(0x7f00000000c0), &(0x7f0000000180)='%ps \x00', 0xc00}, 0x20) 1.428145755s ago: executing program 2 (id=2716): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000340)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15) r3 = dup(r2) write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53) write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3]) truncate(&(0x7f0000000040)='./file0\x00', 0xff8c) 1.300245265s ago: executing program 2 (id=2718): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = socket$rds(0x15, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f0000000380), 0x4) setsockopt$RDS_FREE_MR(r3, 0x114, 0x3, &(0x7f0000000040)={{}, 0x6e}, 0x10) 1.270916414s ago: executing program 3 (id=2719): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0xbc}, 0x18) syz_open_dev$sg(0x0, 0x0, 0x22c01) bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0xa, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x3fffffffffffffd}, 0x18) socket$inet(0x2, 0x2, 0x1) r2 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'dh\x00', 0x10, 0x5, 0x2d}, 0x2c) setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00', 0x3a, 0x0, 0x7f}, 0x2c) 908.145893ms ago: executing program 3 (id=2720): r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) fcntl$setlease(r0, 0x400, 0x0) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000040), 0x0, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ioctl$SIOCX25SCAUSEDIAG(0xffffffffffffffff, 0x89ec, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) fremovexattr(r0, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00') 842.114573ms ago: executing program 1 (id=2721): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000002c0)={r0, 0xffffffffffffffff, 0x24, 0x0, @void}, 0x10) 784.766483ms ago: executing program 3 (id=2722): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000005000000"], 0x2c}}, 0x0) 578.997962ms ago: executing program 1 (id=2723): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000005c0)='kfree\x00', r1, 0x0, 0x2}, 0x18) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001a0000000c000180080001"], 0x20}}, 0x0) 577.801002ms ago: executing program 3 (id=2724): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="020000000400000008"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket(0x11, 0x800000003, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, 0x0, 0x2) sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x54, 0x9, 0x6, 0x801, 0x0, 0x0, {0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_PROTO={0x5, 0x7, 0xff}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80) 532.685952ms ago: executing program 1 (id=2725): open_tree(0xffffffffffffffff, &(0x7f0000000100)='.\x00', 0x0) 424.215702ms ago: executing program 1 (id=2726): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000480)={0x1, &(0x7f0000000b00)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff5}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="190000000400000008000000ff"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000340)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4739}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@norecovery}, {@user_xattr}]}, 0xfd, 0x4fa, &(0x7f00000005c0)="$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") listxattr(&(0x7f0000000a00)='./file1\x00', 0x0, 0x0) 413.778152ms ago: executing program 3 (id=2727): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c000280080001400000000009000100"], 0xb0}}, 0x0) 357.048841ms ago: executing program 2 (id=2728): socket$nl_route(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_open_dev$sg(&(0x7f00000003c0), 0xfb, 0x101080) r0 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0) r1 = gettid() timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000000)=0x0) timer_settime(r2, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f0000000880)={0xc, 0x8, 0x144, {0x0}}, 0x10) 264.230751ms ago: executing program 3 (id=2729): syz_open_dev$tty1(0xc, 0x4, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000300), 0x82fc, 0xc8081) ioctl$EVIOCGREP(r2, 0x80084503, &(0x7f0000001340)=""/4108) 247.192681ms ago: executing program 2 (id=2730): socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f00000003c0)='kmem_cache_free\x00', r3}, 0x18) sendmsg$tipc(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) recvmsg(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1}, 0x0) 216.224201ms ago: executing program 1 (id=2731): r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_USER_AVC(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x3ec, 0x400, 0x70bd2e, 0x25dfdbfd}, 0x10}, 0x1, 0x0, 0x0, 0x4000041}, 0x4000000) 0s ago: executing program 1 (id=2732): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) creat(&(0x7f0000000040)='./file0\x00', 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000340), 0x0}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) setitimer(0x1, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r2}, 0x10) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000001bc0)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',version=9p2000']) kernel console output (not intermixed with test programs): [ T7627] unsupported nla_type 65024 [ 234.174803][ T7640] loop4: detected capacity change from 0 to 512 [ 234.241091][ T7640] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 234.321993][ T7633] infiniband syz!: set active [ 234.327300][ T7633] infiniband syz!: added team_slave_0 [ 234.328669][ T7640] EXT4-fs (loop4): 1 truncate cleaned up [ 234.358997][ T7640] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 234.494034][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 234.506500][ T7633] RDS/IB: syz!: added [ 234.531501][ T7633] smc: adding ib device syz! with port count 1 [ 234.548329][ T7633] smc: ib device syz! port 1 has pnetid [ 235.069927][ T7666] loop4: detected capacity change from 0 to 128 [ 235.127831][ T7666] FAT-fs (loop4): bogus number of reserved sectors [ 235.134570][ T7666] FAT-fs (loop4): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 235.143994][ T7666] FAT-fs (loop4): Can't find a valid FAT filesystem [ 236.096973][ T4241] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 236.287099][ T7671] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 236.483379][ T7671] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 236.525371][ T7684] syz.4.1153[7684] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 236.525507][ T7684] syz.4.1153[7684] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 236.680625][ T7671] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 236.861496][ T7671] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.086168][ T7671] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.116693][ T7671] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.139571][ T7671] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.159326][ T7671] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.373226][ T7712] usb usb4: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 238.029779][ T26] kauditd_printk_skb: 74 callbacks suppressed [ 238.029794][ T26] audit: type=1326 audit(1735606638.005:2472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7727 comm="syz.0.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 238.140798][ T26] audit: type=1326 audit(1735606638.045:2473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7727 comm="syz.0.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 238.220649][ T26] audit: type=1326 audit(1735606638.065:2474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7727 comm="syz.0.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 238.297537][ T26] audit: type=1326 audit(1735606638.065:2475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7727 comm="syz.0.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 238.364094][ T26] audit: type=1326 audit(1735606638.065:2476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7727 comm="syz.0.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 238.393557][ T7735] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1177'. [ 238.420766][ T26] audit: type=1326 audit(1735606638.255:2477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.0.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 238.470535][ T26] audit: type=1326 audit(1735606638.315:2478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.0.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 238.553248][ T26] audit: type=1326 audit(1735606638.315:2479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.0.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 238.624885][ T26] audit: type=1326 audit(1735606638.315:2480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.0.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 238.663151][ T26] audit: type=1326 audit(1735606638.325:2481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.0.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 239.089855][ T7754] device veth0_virt_wifi entered promiscuous mode [ 239.122969][ T7754] device veth0_virt_wifi left promiscuous mode [ 239.975461][ T7780] xt_hashlimit: size too large, truncated to 1048576 [ 240.097465][ T7785] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1195'. [ 240.366493][ T7789] loop4: detected capacity change from 0 to 1024 [ 240.464363][ T7789] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 240.824105][ T7797] tipc: Enabling of bearer rejected, already enabled [ 240.858659][ T7797] tipc: Enabling of bearer rejected, already enabled [ 241.247397][ T7813] 9pnet_fd: Insufficient options for proto=fd [ 241.886150][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 242.031015][ T7820] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1201'. [ 242.212383][ T7825] netlink: 'syz.4.1212': attribute type 7 has an invalid length. [ 242.230655][ T7825] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1212'. [ 242.647392][ T4297] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x4 [ 242.669630][ T7708] Set syz1 is full, maxelem 65536 reached [ 242.673378][ T4297] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x2 [ 242.703615][ T4297] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x3 [ 242.746230][ T4297] hid-generic 0000:3000000:0000.0003: hidraw0: HID v0.00 Device [sy] on syz0 [ 243.033620][ T26] kauditd_printk_skb: 51 callbacks suppressed [ 243.033635][ T26] audit: type=1326 audit(1735606643.015:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.0.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 243.130603][ T26] audit: type=1326 audit(1735606643.015:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.0.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 243.175881][ T26] audit: type=1326 audit(1735606643.015:2535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.0.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 243.191561][ T7854] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1224'. [ 243.221370][ T26] audit: type=1326 audit(1735606643.055:2536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.0.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 243.247751][ T26] audit: type=1326 audit(1735606643.055:2537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.0.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 243.313441][ T26] audit: type=1326 audit(1735606643.055:2538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.0.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 243.356939][ T26] audit: type=1326 audit(1735606643.055:2539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.0.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 243.385884][ T26] audit: type=1326 audit(1735606643.055:2540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.0.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 243.459753][ T26] audit: type=1326 audit(1735606643.055:2541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.0.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 243.537899][ T26] audit: type=1326 audit(1735606643.065:2542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.0.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 243.871108][ T7875] capability: warning: `syz.1.1234' uses 32-bit capabilities (legacy support in use) [ 245.153469][ T4450] kernel read not supported for file 389/task/390/cmdline (pid: 4450 comm: kworker/1:11) [ 246.019971][ T7983] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1281'. [ 247.105775][ T8034] loop4: detected capacity change from 0 to 512 [ 247.158192][ T8034] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 247.199322][ T8034] ext4 filesystem being mounted at /223/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 247.413303][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 247.682128][ T8030] Set syz1 is full, maxelem 65536 reached [ 247.686243][ T8060] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1317'. [ 247.910279][ T8069] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1323'. [ 248.211285][ T8086] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1328'. [ 248.672702][ T8097] loop3: detected capacity change from 0 to 8192 [ 248.740699][ T26] kauditd_printk_skb: 136 callbacks suppressed [ 248.740716][ T26] audit: type=1326 audit(1735606648.715:2679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8071 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7fc00000 [ 248.809149][ T26] audit: type=1800 audit(1735606648.735:2680): pid=8097 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1333" name="bus" dev="loop3" ino=1048603 res=0 errno=0 [ 249.063202][ T8105] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 249.076952][ T8090] Set syz1 is full, maxelem 65536 reached [ 249.088827][ T8105] FAT-fs (loop3): Filesystem has been set read-only [ 249.123105][ T8107] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 249.132319][ T8113] loop4: detected capacity change from 0 to 1024 [ 249.173211][ T8113] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 249.176035][ T8097] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 2074) [ 249.279269][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 249.493952][ T4262] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 2074) [ 249.494420][ T8127] device syz_tun entered promiscuous mode [ 249.582429][ T8127] device syz_tun left promiscuous mode [ 249.730110][ T8136] loop3: detected capacity change from 0 to 512 [ 249.823494][ T8136] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1348: invalid indirect mapped block 4294967295 (level 1) [ 249.935213][ T8150] netlink: 'syz.2.1355': attribute type 3 has an invalid length. [ 249.949600][ T8136] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1348: invalid indirect mapped block 4294967295 (level 1) [ 250.003520][ T8136] EXT4-fs (loop3): 2 truncates cleaned up [ 250.009331][ T8136] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 250.072407][ T8156] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1359'. [ 250.135114][ T26] audit: type=1326 audit(1735606650.115:2681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 250.222880][ T8169] EXT4-fs error (device loop3): empty_inline_dir:1877: inode #12: block 7: comm syz.3.1348: bad entry in directory: rec_len % 4 != 0 - offset=4, inode=4278190093, rec_len=255, size=60 fake=0 [ 250.242596][ T26] audit: type=1326 audit(1735606650.145:2682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 250.281177][ T8169] EXT4-fs warning (device loop3): empty_inline_dir:1884: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60 [ 250.335509][ T26] audit: type=1326 audit(1735606650.145:2683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 250.431567][ T26] audit: type=1326 audit(1735606650.145:2684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 250.480061][ T26] audit: type=1326 audit(1735606650.145:2685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 250.550554][ T26] audit: type=1326 audit(1735606650.145:2686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 250.599568][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 250.618424][ T26] audit: type=1326 audit(1735606650.145:2687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 250.674441][ T26] audit: type=1326 audit(1735606650.145:2688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 251.141463][ T8211] loop4: detected capacity change from 0 to 512 [ 251.179143][ T8211] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1381: invalid indirect mapped block 4294967295 (level 1) [ 251.210239][ T8211] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1381: invalid indirect mapped block 4294967295 (level 1) [ 251.249472][ T8211] EXT4-fs (loop4): 2 truncates cleaned up [ 251.264338][ T8211] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 251.437340][ T8227] EXT4-fs error (device loop4): empty_inline_dir:1877: inode #12: block 7: comm syz.4.1381: bad entry in directory: rec_len % 4 != 0 - offset=4, inode=4278190093, rec_len=255, size=60 fake=0 [ 251.460858][ T4297] kernel read not supported for file 452/task/453/cmdline (pid: 4297 comm: kworker/0:6) [ 251.479134][ T8227] EXT4-fs warning (device loop4): empty_inline_dir:1884: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60 [ 251.648479][ T8221] Set syz1 is full, maxelem 65536 reached [ 251.759901][ T8237] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1391'. [ 251.765108][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 251.895697][ T8237] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1391'. [ 252.282918][ T8257] x_tables: unsorted underflow at hook 2 [ 252.337703][ T8260] loop4: detected capacity change from 0 to 1024 [ 252.383014][ T8260] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 252.460624][ T8265] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1401'. [ 252.482869][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 252.689070][ T8241] Set syz1 is full, maxelem 65536 reached [ 252.859731][ T8283] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1410'. [ 253.056837][ T8297] loop3: detected capacity change from 0 to 512 [ 253.171986][ T8297] EXT4-fs warning (device loop3): ext4_enable_quotas:7029: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 253.246027][ T8297] EXT4-fs (loop3): mount failed [ 253.514961][ T8315] loop4: detected capacity change from 0 to 512 [ 253.579257][ T8315] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 253.590754][ T8315] ext4 filesystem being mounted at /253/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 253.619429][ T8322] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1423'. [ 253.641492][ T8315] EXT4-fs (loop4): unmounting filesystem. [ 253.682864][ T8324] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1424'. [ 254.107634][ T8338] autofs4:pid:8338:autofs_fill_super: called with bogus options [ 254.431982][ T26] kauditd_printk_skb: 183 callbacks suppressed [ 254.431998][ T26] audit: type=1326 audit(1735606654.415:2871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8354 comm="syz.4.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 254.542699][ T26] audit: type=1326 audit(1735606654.415:2872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8354 comm="syz.4.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 254.633691][ T26] audit: type=1326 audit(1735606654.415:2873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8354 comm="syz.4.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 254.692896][ T26] audit: type=1326 audit(1735606654.415:2874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8354 comm="syz.4.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 254.735173][ T26] audit: type=1326 audit(1735606654.415:2875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8354 comm="syz.4.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 254.757781][ T26] audit: type=1326 audit(1735606654.415:2876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8354 comm="syz.4.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 254.781889][ T26] audit: type=1326 audit(1735606654.475:2877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8354 comm="syz.4.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 254.833839][ T26] audit: type=1326 audit(1735606654.475:2878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8354 comm="syz.4.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 255.001127][ T8375] netlink: 'syz.0.1442': attribute type 10 has an invalid length. [ 255.077625][ T8379] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1447'. [ 255.538836][ T8368] Set syz1 is full, maxelem 65536 reached [ 255.581385][ T26] audit: type=1326 audit(1735606655.565:2879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8396 comm="syz.1.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 255.640599][ T26] audit: type=1326 audit(1735606655.565:2880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8396 comm="syz.1.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 255.693914][ T8401] IPv6: NLM_F_CREATE should be specified when creating new route [ 255.785478][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.791887][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.279770][ T8430] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1470'. [ 256.380945][ T8432] loop3: detected capacity change from 0 to 2048 [ 256.424631][ T8432] loop3: p1 p2 p3 < > p4 < > [ 256.433361][ T8432] loop3: partition table partially beyond EOD, truncated [ 256.453421][ T8432] loop3: p1 size 33024 extends beyond EOD, truncated [ 256.473889][ T8432] loop3: p2 start 16908804 is beyond EOD, truncated [ 256.500804][ T8432] loop3: p3 start 4284289 is beyond EOD, truncated [ 257.018940][ T8428] Set syz1 is full, maxelem 65536 reached [ 258.169047][ T8491] Set syz1 is full, maxelem 65536 reached [ 258.287731][ T8521] loop3: detected capacity change from 0 to 4096 [ 258.335772][ T8521] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 258.372813][ T8521] EXT4-fs (loop3): shut down requested (0) [ 258.462516][ T8521] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1514'. [ 258.473788][ T8521] netlink: 'syz.3.1514': attribute type 21 has an invalid length. [ 258.482546][ T8521] netlink: 'syz.3.1514': attribute type 1 has an invalid length. [ 258.490354][ T8521] netlink: 144 bytes leftover after parsing attributes in process `syz.3.1514'. [ 258.544017][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 258.862013][ T8550] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1524'. [ 258.937776][ T8553] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 259.250710][ T8565] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1530'. [ 260.621255][ T8618] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1551'. [ 260.768806][ T8625] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1554'. [ 260.783534][ T8621] block device autoloading is deprecated and will be removed. [ 260.897809][ T8627] loop3: detected capacity change from 0 to 512 [ 260.934566][ T8627] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 261.006855][ T8627] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 261.050602][ T8627] ext4 filesystem being mounted at /278/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 261.308387][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 261.653256][ T8648] loop3: detected capacity change from 0 to 512 [ 261.747847][ T8648] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.1563: invalid block [ 261.850684][ T8648] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1563: invalid indirect mapped block 4294967295 (level 1) [ 261.902976][ T8648] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1563: invalid indirect mapped block 4294967295 (level 1) [ 261.927264][ T8648] EXT4-fs (loop3): 2 truncates cleaned up [ 261.941314][ T8648] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 262.136854][ T26] kauditd_printk_skb: 114 callbacks suppressed [ 262.136871][ T26] audit: type=1326 audit(1735606662.115:2995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.1565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 262.224002][ T26] audit: type=1326 audit(1735606662.115:2996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.1565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 262.294052][ T26] audit: type=1326 audit(1735606662.115:2997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.1565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 262.340781][ T26] audit: type=1326 audit(1735606662.125:2998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.1565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 262.389973][ T26] audit: type=1326 audit(1735606662.125:2999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.1565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 262.423829][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 262.485449][ T26] audit: type=1326 audit(1735606662.125:3000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.1565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 262.558661][ T26] audit: type=1326 audit(1735606662.125:3001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.1565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 262.558705][ T26] audit: type=1326 audit(1735606662.125:3002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.1565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 262.558739][ T26] audit: type=1326 audit(1735606662.125:3003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.1565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 262.558779][ T26] audit: type=1326 audit(1735606662.125:3004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.1565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 262.843199][ T8678] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1574'. [ 262.935572][ T8678] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1574'. [ 263.004634][ T8684] netlink: 332 bytes leftover after parsing attributes in process `syz.1.1576'. [ 263.493706][ T8698] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1583'. [ 263.869488][ T8557] Set syz1 is full, maxelem 65536 reached [ 264.366315][ T8726] loop4: detected capacity change from 0 to 512 [ 264.474002][ T8726] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 264.515460][ T8726] ext4 filesystem being mounted at /282/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 264.831227][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 265.200090][ T8757] loop4: detected capacity change from 0 to 1024 [ 265.256578][ T8757] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 265.503882][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 265.936675][ T8774] loop4: detected capacity change from 0 to 512 [ 266.011166][ T8774] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 266.026830][ T8774] ext4 filesystem being mounted at /287/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 266.094675][ T8774] Process accounting resumed [ 266.195147][ T8774] EXT4-fs (loop4): re-mounted. Quota mode: writeback. [ 266.288070][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 267.297384][ T8796] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1623'. [ 268.164638][ T8822] loop4: detected capacity change from 0 to 512 [ 268.183374][ T8822] EXT4-fs: Ignoring removed nomblk_io_submit option [ 268.199232][ T8822] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 268.236425][ T8822] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1633: invalid indirect mapped block 4294967295 (level 1) [ 268.262636][ T8822] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1633: invalid indirect mapped block 4294967295 (level 1) [ 268.287868][ T8822] EXT4-fs (loop4): 2 truncates cleaned up [ 268.293705][ T8822] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 268.411368][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 268.512054][ T8831] loop4: detected capacity change from 0 to 512 [ 268.542780][ T8831] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 268.596085][ T8831] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 268.630707][ T8831] ext4 filesystem being mounted at /295/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 268.724094][ T8831] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 269.262100][ T8849] loop0: detected capacity change from 0 to 1024 [ 269.314317][ T8849] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 269.363159][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 269.552952][ T5270] EXT4-fs (loop0): unmounting filesystem. [ 269.952714][ T8860] loop0: detected capacity change from 0 to 512 [ 269.984700][ T8860] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 270.064086][ T8860] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #17: comm syz.0.1648: iget: bad i_size value: -6917529027641081756 [ 270.092924][ T8860] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1648: couldn't read orphan inode 17 (err -117) [ 270.120139][ T8860] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 270.278964][ T5270] EXT4-fs (loop0): unmounting filesystem. [ 270.882303][ T8887] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1658'. [ 271.140334][ T8897] netlink: '+}[@': attribute type 13 has an invalid length. [ 271.153196][ T8678] Set syz1 is full, maxelem 65536 reached [ 271.183180][ T8897] netlink: 152 bytes leftover after parsing attributes in process `+}[@'. [ 271.205509][ T8897] syz_tun: refused to change device tx_queue_len [ 271.546025][ T26] kauditd_printk_skb: 43 callbacks suppressed [ 271.546041][ T26] audit: type=1326 audit(1735606671.525:3048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 271.615194][ T26] audit: type=1326 audit(1735606671.555:3049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 271.657214][ T26] audit: type=1326 audit(1735606671.565:3050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 271.701469][ T26] audit: type=1326 audit(1735606671.565:3051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 271.733373][ T26] audit: type=1326 audit(1735606671.565:3052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 271.896085][ T26] audit: type=1326 audit(1735606671.565:3053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 271.979645][ T26] audit: type=1326 audit(1735606671.565:3054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 272.037597][ T26] audit: type=1326 audit(1735606671.565:3055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 272.092653][ T26] audit: type=1326 audit(1735606671.565:3056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 272.132985][ T26] audit: type=1326 audit(1735606671.565:3057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 272.239928][ T8928] loop4: detected capacity change from 0 to 256 [ 272.410311][ T8931] loop0: detected capacity change from 0 to 2048 [ 272.655619][ T8931] loop0: p1 < > p4 [ 272.672913][ T8931] loop0: p4 size 8388608 extends beyond EOD, truncated [ 273.000231][ T4241] udevd[4241]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 273.014560][ T4267] udevd[4267]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 273.221425][ T4261] Bluetooth: hci2: command 0x0406 tx timeout [ 273.665216][ T8966] netlink: 'syz.4.1691': attribute type 4 has an invalid length. [ 274.101351][ T8957] Set syz1 is full, maxelem 65536 reached [ 274.194779][ T8982] loop0: detected capacity change from 0 to 1024 [ 274.254589][ T8982] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 274.489284][ T5270] EXT4-fs (loop0): unmounting filesystem. [ 274.603802][ T9001] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1707'. [ 274.631232][ T9001] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 274.651276][ T9001] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 275.119062][ T9023] loop3: detected capacity change from 0 to 256 [ 275.151996][ T9023] FAT-fs (loop3): bogus number of FAT sectors [ 275.190711][ T9023] FAT-fs (loop3): Can't find a valid FAT filesystem [ 275.223942][ T9009] Set syz1 is full, maxelem 65536 reached [ 276.674909][ T26] kauditd_printk_skb: 68 callbacks suppressed [ 276.674925][ T26] audit: type=1326 audit(1735606676.655:3126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9080 comm="syz.4.1737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 276.730866][ T26] audit: type=1326 audit(1735606676.655:3127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9080 comm="syz.4.1737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 276.767786][ T9062] Set syz1 is full, maxelem 65536 reached [ 276.776679][ T26] audit: type=1326 audit(1735606676.685:3128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9080 comm="syz.4.1737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 276.822349][ T26] audit: type=1326 audit(1735606676.685:3129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9080 comm="syz.4.1737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 276.864042][ T26] audit: type=1326 audit(1735606676.685:3130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9080 comm="syz.4.1737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 276.890685][ T26] audit: type=1326 audit(1735606676.695:3131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9080 comm="syz.4.1737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 276.923759][ T26] audit: type=1326 audit(1735606676.695:3132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9080 comm="syz.4.1737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 276.945099][ T9088] loop4: detected capacity change from 0 to 1024 [ 276.956740][ T26] audit: type=1326 audit(1735606676.695:3133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9080 comm="syz.4.1737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 276.995970][ T9092] loop3: detected capacity change from 0 to 512 [ 277.032412][ T9092] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.1740: invalid block [ 277.048673][ T9088] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 277.063952][ T9092] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1740: invalid indirect mapped block 4294967295 (level 1) [ 277.101934][ T9092] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1740: invalid indirect mapped block 4294967295 (level 1) [ 277.123310][ T9092] EXT4-fs (loop3): 2 truncates cleaned up [ 277.129119][ T9092] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 277.149146][ T9088] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2739: inode #14: comm syz.4.1739: corrupted in-inode xattr [ 277.183806][ T9088] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #14: comm syz.4.1739: attempt to clear invalid blocks 1886221359 len 1 [ 277.282633][ T9104] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 277.328160][ T9106] loop0: detected capacity change from 0 to 1024 [ 277.380023][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 277.416947][ T9104] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 277.417795][ T9106] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 277.519114][ T9104] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 277.562853][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 277.717904][ T5270] EXT4-fs (loop0): unmounting filesystem. [ 277.734327][ T9104] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 277.837130][ T26] audit: type=1326 audit(1735606677.815:3134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9114 comm="syz.3.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 277.949980][ T26] audit: type=1326 audit(1735606677.815:3135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9114 comm="syz.3.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 278.044421][ T9104] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.064480][ T9104] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.082745][ T9104] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.115429][ T9104] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.167420][ T9134] xt_hashlimit: max too large, truncated to 1048576 [ 278.349911][ T9139] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1755'. [ 278.370439][ T9139] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 278.380969][ T9139] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 278.710076][ T9146] loop3: detected capacity change from 0 to 512 [ 278.756306][ T9146] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1758: invalid indirect mapped block 4294967295 (level 1) [ 278.803689][ T9146] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1758: invalid indirect mapped block 4294967295 (level 1) [ 278.861237][ T9146] EXT4-fs (loop3): 2 truncates cleaned up [ 278.870667][ T9146] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 278.981446][ T9152] usb usb8: usbfs: process 9152 (syz.3.1758) did not claim interface 0 before use [ 279.405261][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 280.181936][ T9182] loop3: detected capacity change from 0 to 128 [ 280.497612][ T9190] loop4: detected capacity change from 0 to 512 [ 280.577360][ T9190] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.1775: invalid block [ 280.599993][ T9190] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1775: invalid indirect mapped block 4294967295 (level 1) [ 280.648889][ T9190] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1775: invalid indirect mapped block 4294967295 (level 1) [ 280.689362][ T9190] EXT4-fs (loop4): 2 truncates cleaned up [ 280.716045][ T9190] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 280.849655][ T9203] usb usb8: usbfs: process 9203 (syz.4.1775) did not claim interface 0 before use [ 281.007453][ T9212] smc: net device bond0 applied user defined pnetid SYZ2 [ 281.017335][ T9212] smc: net device bond0 erased user defined pnetid SYZ2 [ 281.180161][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 281.620004][ T9229] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma? [ 282.169448][ T9250] loop4: detected capacity change from 0 to 512 [ 282.225988][ T9250] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 282.245637][ T9250] ext4 filesystem being mounted at /336/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 282.323590][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 282.327821][ T9129] Set syz1 is full, maxelem 65536 reached [ 282.476987][ T9263] loop4: detected capacity change from 0 to 128 [ 282.478852][ T9264] netlink: 'syz.0.1803': attribute type 1 has an invalid length. [ 282.510434][ T9263] FAT-fs (loop4): Directory bread(block 162) failed [ 282.520581][ T9264] netlink: 83992 bytes leftover after parsing attributes in process `syz.0.1803'. [ 282.524808][ T9263] FAT-fs (loop4): Directory bread(block 163) failed [ 282.539811][ T9263] FAT-fs (loop4): Directory bread(block 164) failed [ 282.547015][ T9263] FAT-fs (loop4): Directory bread(block 165) failed [ 282.556260][ T9263] FAT-fs (loop4): Directory bread(block 166) failed [ 282.563163][ T9263] FAT-fs (loop4): Directory bread(block 167) failed [ 282.569998][ T9263] FAT-fs (loop4): Directory bread(block 168) failed [ 282.578847][ T9263] FAT-fs (loop4): Directory bread(block 169) failed [ 282.616268][ T9263] FAT-fs (loop4): Directory bread(block 162) failed [ 282.680927][ T9263] FAT-fs (loop4): Directory bread(block 163) failed [ 282.689892][ T9263] syz.4.1802: attempt to access beyond end of device [ 282.689892][ T9263] loop4: rw=3, sector=226, nr_sectors = 6 limit=128 [ 282.710655][ T9263] syz.4.1802: attempt to access beyond end of device [ 282.710655][ T9263] loop4: rw=2051, sector=232, nr_sectors = 2 limit=128 [ 282.957543][ T9282] loop3: detected capacity change from 0 to 1024 [ 283.015167][ T9282] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 283.128813][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 283.321404][ T9295] loop3: detected capacity change from 0 to 512 [ 283.410540][ T9295] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 283.422788][ T9295] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it [ 283.433859][ T9295] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.1817: Corrupt directory, running e2fsck is recommended [ 283.450064][ T9295] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117 [ 283.459010][ T9295] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2186: inode #15: comm syz.3.1817: corrupted in-inode xattr [ 283.478152][ T9295] EXT4-fs (loop3): Remounting filesystem read-only [ 283.490714][ T9295] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1817: couldn't read orphan inode 15 (err -117) [ 283.514639][ T9295] EXT4-fs (loop3): Remounting filesystem read-only [ 283.519005][ T9287] Set syz1 is full, maxelem 65536 reached [ 283.521297][ T9295] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 283.717570][ T9306] loop4: detected capacity change from 0 to 512 [ 283.754228][ T9306] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 283.766033][ T9308] netlink: 192 bytes leftover after parsing attributes in process `syz.1.1822'. [ 283.812532][ T9306] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 283.851517][ T9306] ext4 filesystem being mounted at /344/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 283.956605][ T9306] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 283.988063][ T9306] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 32768 with max blocks 1 with error 28 [ 284.006509][ T9306] EXT4-fs (loop4): This should not happen!! Data will be lost [ 284.006509][ T9306] [ 284.030897][ T9306] EXT4-fs (loop4): Total free blocks count 0 [ 284.050693][ T9306] EXT4-fs (loop4): Free/Dirty block details [ 284.061000][ T9306] EXT4-fs (loop4): free_blocks=39626 [ 284.080753][ T9306] EXT4-fs (loop4): dirty_blocks=1 [ 284.096173][ T9306] EXT4-fs (loop4): Block reservation details [ 284.132201][ T9306] EXT4-fs (loop4): i_reserved_data_blocks=1 [ 284.216563][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 284.406035][ T26] kauditd_printk_skb: 83 callbacks suppressed [ 284.406049][ T26] audit: type=1326 audit(1735606684.385:3219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9329 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 284.487231][ T26] audit: type=1326 audit(1735606684.425:3220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9329 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 284.501110][ T9333] loop0: detected capacity change from 0 to 512 [ 284.522794][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 284.549831][ T26] audit: type=1326 audit(1735606684.425:3221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9329 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 284.606944][ T9333] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.1833: invalid block [ 284.647475][ T9338] Set syz1 is full, maxelem 65536 reached [ 284.656770][ T9333] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.1833: invalid indirect mapped block 4294967295 (level 1) [ 284.676642][ T26] audit: type=1326 audit(1735606684.425:3222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9329 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 284.706852][ T9333] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.1833: invalid indirect mapped block 4294967295 (level 1) [ 284.727085][ T26] audit: type=1326 audit(1735606684.425:3223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9329 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 284.760325][ T9333] EXT4-fs (loop0): 2 truncates cleaned up [ 284.776516][ T9333] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 284.849754][ T26] audit: type=1326 audit(1735606684.745:3224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9339 comm="syz.2.1837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 284.855361][ T9347] usb usb8: usbfs: process 9347 (syz.0.1833) did not claim interface 0 before use [ 284.922932][ T26] audit: type=1326 audit(1735606684.745:3225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9339 comm="syz.2.1837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 285.012439][ T26] audit: type=1326 audit(1735606684.745:3226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9339 comm="syz.2.1837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 285.107181][ T26] audit: type=1326 audit(1735606684.745:3227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9339 comm="syz.2.1837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 285.129982][ T26] audit: type=1326 audit(1735606684.745:3228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9339 comm="syz.2.1837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 285.815500][ T5270] EXT4-fs (loop0): unmounting filesystem. [ 285.940960][ T9359] netlink: 252 bytes leftover after parsing attributes in process `syz.4.1842'. [ 286.369857][ T9365] x_tables: eb_tables: snat.0 target: invalid size 16 (kernel) != (user) 0 [ 286.517959][ T9388] atomic_op ffff8880566bd998 conn xmit_atomic 0000000000000000 [ 286.598827][ T9392] loop0: detected capacity change from 0 to 512 [ 286.643917][ T9392] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.1854: invalid block [ 286.680581][ T9398] loop3: detected capacity change from 0 to 256 [ 286.687843][ T9398] FAT-fs (loop3): Unrecognized mount option "00000000000000000000003" or missing value [ 286.731874][ T9392] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.1854: invalid indirect mapped block 4294967295 (level 1) [ 286.790565][ T9392] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.1854: invalid indirect mapped block 4294967295 (level 1) [ 286.843157][ T9392] EXT4-fs (loop0): 2 truncates cleaned up [ 286.848949][ T9392] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 286.978343][ T9420] usb usb8: usbfs: process 9420 (syz.0.1854) did not claim interface 0 before use [ 287.390694][ T5270] EXT4-fs (loop0): unmounting filesystem. [ 287.976135][ T9457] loop4: detected capacity change from 0 to 512 [ 288.029746][ T9457] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.1882: invalid block [ 288.051181][ T9457] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1882: invalid indirect mapped block 4294967295 (level 1) [ 288.106157][ T9457] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1882: invalid indirect mapped block 4294967295 (level 1) [ 288.154064][ T9457] EXT4-fs (loop4): 2 truncates cleaned up [ 288.170828][ T9457] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 288.266964][ T9463] usb usb8: usbfs: process 9463 (syz.4.1882) did not claim interface 0 before use [ 288.648243][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 289.391527][ T9485] rdma_rxe: rxe_register_device failed with error -23 [ 289.412467][ T9485] rdma_rxe: failed to add team_slave_0 [ 289.808504][ T26] kauditd_printk_skb: 68 callbacks suppressed [ 289.808520][ T26] audit: type=1326 audit(1735606689.785:3297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9497 comm="syz.1.1896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 289.883762][ T26] audit: type=1326 audit(1735606689.785:3298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9497 comm="syz.1.1896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 289.921834][ T9498] 9pnet_fd: Insufficient options for proto=fd [ 289.927179][ T9500] loop4: detected capacity change from 0 to 512 [ 289.948684][ T26] audit: type=1326 audit(1735606689.835:3299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9497 comm="syz.1.1896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 290.000556][ T26] audit: type=1326 audit(1735606689.835:3300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9497 comm="syz.1.1896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 290.042231][ T9500] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.1897: invalid block [ 290.066322][ T9500] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1897: invalid indirect mapped block 4294967295 (level 1) [ 290.083308][ T26] audit: type=1326 audit(1735606689.835:3301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9497 comm="syz.1.1896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 290.106240][ T26] audit: type=1326 audit(1735606689.835:3302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9497 comm="syz.1.1896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 290.130123][ T26] audit: type=1326 audit(1735606689.845:3303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9497 comm="syz.1.1896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 290.152686][ T26] audit: type=1326 audit(1735606689.845:3304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9497 comm="syz.1.1896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 290.175627][ T9500] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1897: invalid indirect mapped block 4294967295 (level 1) [ 290.193396][ T9500] EXT4-fs (loop4): 2 truncates cleaned up [ 290.199174][ T9500] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 290.208207][ T26] audit: type=1326 audit(1735606689.845:3305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9497 comm="syz.1.1896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 290.240544][ T9500] usb usb8: usbfs: process 9500 (syz.4.1897) did not claim interface 0 before use [ 290.250020][ T26] audit: type=1326 audit(1735606689.845:3306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9497 comm="syz.1.1896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 290.315236][ T9409] Set syz1 is full, maxelem 65536 reached [ 290.478858][ T9508] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1900'. [ 290.633399][ T9502] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 290.683748][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 290.855051][ T9517] Set syz1 is full, maxelem 65536 reached [ 290.993829][ T9522] syz.3.1906[9522] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 290.993970][ T9522] syz.3.1906[9522] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 291.572894][ T9537] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1913'. [ 291.633292][ T9539] loop3: detected capacity change from 0 to 512 [ 291.661662][ T9539] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.1914: invalid block [ 291.681700][ T9539] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1914: invalid indirect mapped block 4294967295 (level 1) [ 291.699484][ T9543] device syz_tun entered promiscuous mode [ 291.706178][ T9539] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1914: invalid indirect mapped block 4294967295 (level 1) [ 291.723321][ T9543] device syz_tun left promiscuous mode [ 291.732289][ T9539] EXT4-fs (loop3): 2 truncates cleaned up [ 291.739329][ T9539] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 291.755368][ T9539] usb usb8: usbfs: process 9539 (syz.3.1914) did not claim interface 0 before use [ 292.140940][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 292.559677][ T9566] Set syz1 is full, maxelem 65536 reached [ 293.146068][ T9584] loop3: detected capacity change from 0 to 512 [ 293.157955][ T9584] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.1932: invalid block [ 293.173947][ T9584] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1932: invalid indirect mapped block 4294967295 (level 1) [ 293.189831][ T9584] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1932: invalid indirect mapped block 4294967295 (level 1) [ 293.207896][ T9584] EXT4-fs (loop3): 2 truncates cleaned up [ 293.213815][ T9584] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 293.232290][ T9584] usb usb8: usbfs: process 9584 (syz.3.1932) did not claim interface 0 before use [ 293.512040][ T9598] Set syz1 is full, maxelem 65536 reached [ 293.650136][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 293.661927][ T9608] loop0: detected capacity change from 0 to 1024 [ 293.698507][ T9608] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 293.710985][ T9612] Set syz1 is full, maxelem 65536 reached [ 293.717744][ T9608] ext4 filesystem being mounted at /282/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 293.774728][ T9614] loop3: detected capacity change from 0 to 164 [ 293.819485][ T9614] +}[@: attempt to access beyond end of device [ 293.819485][ T9614] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 293.842121][ T9614] +}[@: attempt to access beyond end of device [ 293.842121][ T9614] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 293.846917][ T5270] EXT4-fs (loop0): unmounting filesystem. [ 293.869950][ T9616] 9pnet: Could not find request transport: 0xffffffffffffffff [ 294.070250][ T9627] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1950'. [ 294.085026][ T9627] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1950'. [ 294.213336][ T9635] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1954'. [ 294.650755][ T9654] netlink: 24 bytes leftover after parsing attributes in process `+}k'. [ 294.700296][ T9654] netlink: 4 bytes leftover after parsing attributes in process `+}k'. [ 294.874998][ T9637] Set syz1 is full, maxelem 65536 reached [ 294.893813][ T9664] loop4: detected capacity change from 0 to 512 [ 294.946899][ T9664] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.1966: invalid block [ 294.961124][ T9664] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1966: invalid indirect mapped block 4294967295 (level 1) [ 295.012834][ T9664] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1966: invalid indirect mapped block 4294967295 (level 1) [ 295.059691][ T9664] EXT4-fs (loop4): 2 truncates cleaned up [ 295.068073][ T9675] syz.3.1972[9675] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 295.068213][ T9675] syz.3.1972[9675] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 295.079378][ T9664] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 295.146088][ T9664] usb usb8: usbfs: process 9664 (syz.4.1966) did not claim interface 0 before use [ 295.454272][ T9693] batman_adv: batadv0: Adding interface: ip6gretap1 [ 295.473249][ T9693] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 295.576570][ T9693] batman_adv: batadv0: Interface activated: ip6gretap1 [ 295.595186][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 295.610788][ T9697] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1979'. [ 295.637393][ T9697] batman_adv: batadv0: Interface deactivated: ip6gretap1 [ 295.659387][ T9697] batman_adv: batadv0: Removing interface: ip6gretap1 [ 295.943190][ T9712] loop0: detected capacity change from 0 to 512 [ 295.988990][ T9712] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1987: casefold flag without casefold feature [ 296.003780][ T9714] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1989'. [ 296.025610][ T9712] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1987: couldn't read orphan inode 15 (err -117) [ 296.042409][ T9714] bond0: (slave bond_slave_0): Slave does not support ipsec offload [ 296.051221][ T9712] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 296.084406][ T9700] Set syz1 is full, maxelem 65536 reached [ 296.222043][ T5270] EXT4-fs (loop0): unmounting filesystem. [ 296.319756][ T9721] loop3: detected capacity change from 0 to 512 [ 296.363973][ T9721] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.1994: invalid block [ 296.382061][ T9721] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1994: invalid indirect mapped block 4294967295 (level 1) [ 296.444135][ T9721] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1994: invalid indirect mapped block 4294967295 (level 1) [ 296.465436][ T9730] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1996'. [ 296.493956][ T9721] EXT4-fs (loop3): 2 truncates cleaned up [ 296.546618][ T9721] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 296.568857][ T9737] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1999'. [ 296.600824][ T9721] usb usb8: usbfs: process 9721 (syz.3.1994) did not claim interface 0 before use [ 296.823034][ T26] kauditd_printk_skb: 86 callbacks suppressed [ 296.823048][ T26] audit: type=1326 audit(1735606696.805:3393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9752 comm="syz.2.2007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 296.880873][ T26] audit: type=1326 audit(1735606696.835:3394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9752 comm="syz.2.2007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 296.911232][ T26] audit: type=1326 audit(1735606696.835:3395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9752 comm="syz.2.2007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 296.934795][ T26] audit: type=1326 audit(1735606696.835:3396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9752 comm="syz.2.2007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 296.959138][ T26] audit: type=1326 audit(1735606696.835:3397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9752 comm="syz.2.2007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 297.044103][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 297.109158][ T26] audit: type=1326 audit(1735606697.085:3398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9760 comm=34B9DF737F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 297.151576][ T26] audit: type=1326 audit(1735606697.115:3399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9760 comm=34B9DF737F exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 297.198066][ T26] audit: type=1326 audit(1735606697.115:3400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9760 comm=34B9DF737F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 297.264473][ T26] audit: type=1326 audit(1735606697.115:3401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9760 comm=34B9DF737F exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 297.317133][ T9751] Set syz1 is full, maxelem 65536 reached [ 297.323113][ T26] audit: type=1326 audit(1735606697.115:3402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9760 comm=34B9DF737F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 297.421357][ C1] dccp_v4_rcv: dropped packet with invalid checksum [ 297.745821][ T9794] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2025'. [ 297.766307][ T9794] 0ªX¹¦À: renamed from caif0 [ 297.776006][ T9794] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 297.980813][ T9810] tipc: New replicast peer: 255.255.255.255 [ 297.995314][ T9810] tipc: Enabled bearer , priority 10 [ 298.206438][ T9821] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.2036'. [ 298.224749][ T9816] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.2036'. [ 298.299513][ T9823] syz.0.2039[9823] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 298.299657][ T9823] syz.0.2039[9823] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 298.492961][ T9804] Set syz1 is full, maxelem 65536 reached [ 298.666618][ T9839] tls_set_device_offload_rx: netdev not found [ 299.047126][ T9820] Invalid ELF header magic: != ELF [ 300.075115][ T9864] loop4: detected capacity change from 0 to 512 [ 300.196483][ T9864] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.2053: invalid block [ 300.277307][ T9864] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.2053: invalid indirect mapped block 4294967295 (level 1) [ 300.362115][ T9864] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.2053: invalid indirect mapped block 4294967295 (level 1) [ 300.412338][ T9864] EXT4-fs (loop4): 2 truncates cleaned up [ 300.432663][ T9864] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 300.482553][ T9864] usb usb8: usbfs: process 9864 (syz.4.2053) did not claim interface 0 before use [ 300.869434][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 301.127274][ T9902] loop4: detected capacity change from 0 to 512 [ 301.175798][ T9890] Set syz1 is full, maxelem 65536 reached [ 301.337669][ T9907] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2067'. [ 301.444640][ T9888] Set syz1 is full, maxelem 65536 reached [ 301.678652][ T9925] Cannot find add_set index 3 as target [ 302.473355][ T26] kauditd_printk_skb: 28 callbacks suppressed [ 302.473369][ T26] audit: type=1326 audit(1735606702.455:3431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.2.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 302.529060][ T26] audit: type=1326 audit(1735606702.455:3432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.2.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 302.577614][ T9962] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2090'. [ 302.583131][ T26] audit: type=1326 audit(1735606702.495:3433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.2.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 302.657150][ T26] audit: type=1326 audit(1735606702.495:3434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.2.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 302.758029][ T26] audit: type=1326 audit(1735606702.495:3435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.2.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 302.828984][ T26] audit: type=1326 audit(1735606702.555:3436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9961 comm="syz.1.2090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 302.880031][ T26] audit: type=1326 audit(1735606702.555:3437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9961 comm="syz.1.2090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 302.929661][ T26] audit: type=1326 audit(1735606702.555:3438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9961 comm="syz.1.2090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 303.002298][ T26] audit: type=1326 audit(1735606702.555:3439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9961 comm="syz.1.2090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 303.066104][ T26] audit: type=1326 audit(1735606702.555:3440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9961 comm="syz.1.2090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 303.665974][ T9997] syz.2.2103[9997] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 303.666108][ T9997] syz.2.2103[9997] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 303.736339][ T9998] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2103'. [ 303.852737][ C0] dccp_v6_rcv: dropped packet with invalid checksum [ 303.859849][ C0] dccp_v6_rcv: dropped packet with invalid checksum [ 304.156065][T10009] loop0: detected capacity change from 0 to 512 [ 304.184367][T10009] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2109: invalid block [ 304.196993][T10009] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.2109: invalid indirect mapped block 4294967295 (level 1) [ 304.212633][T10009] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.2109: invalid indirect mapped block 4294967295 (level 1) [ 304.227487][T10009] EXT4-fs (loop0): 2 truncates cleaned up [ 304.384021][T10009] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 304.397607][ T9951] Set syz1 is full, maxelem 65536 reached [ 304.404303][T10009] usb usb8: usbfs: process 10009 (syz.0.2109) did not claim interface 0 before use [ 304.660321][T10026] xt_CT: No such helper "netbios-ns" [ 304.747349][T10032] loop3: detected capacity change from 0 to 4096 [ 304.803491][T10032] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 304.851229][ T5270] EXT4-fs (loop0): unmounting filesystem. [ 305.011193][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 305.500602][T10061] netem: change failed [ 306.766924][T10050] Set syz1 is full, maxelem 65536 reached [ 306.784913][T10078] loop3: detected capacity change from 0 to 8192 [ 307.359245][T10105] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2145'. [ 307.546614][ T26] kauditd_printk_skb: 143 callbacks suppressed [ 307.546629][ T26] audit: type=1326 audit(1735606707.525:3584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10116 comm="syz.1.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 307.620994][ T26] audit: type=1326 audit(1735606707.565:3585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10116 comm="syz.1.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 307.700202][ T26] audit: type=1326 audit(1735606707.565:3586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10116 comm="syz.1.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 307.770285][ T26] audit: type=1326 audit(1735606707.565:3587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10116 comm="syz.1.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 307.800948][ T26] audit: type=1326 audit(1735606707.565:3588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10116 comm="syz.1.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 307.826349][ T26] audit: type=1326 audit(1735606707.565:3589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10116 comm="syz.1.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 307.852692][ T26] audit: type=1326 audit(1735606707.565:3590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10116 comm="syz.1.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 307.876656][ T26] audit: type=1326 audit(1735606707.565:3591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10116 comm="syz.1.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 307.885259][T10132] serio: Serial port ptm0 [ 307.900237][ T26] audit: type=1326 audit(1735606707.565:3592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10116 comm="syz.1.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 307.926745][ T26] audit: type=1326 audit(1735606707.565:3593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10116 comm="syz.1.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 308.039328][T10141] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma? [ 308.412537][T10153] loop0: detected capacity change from 0 to 512 [ 308.452742][T10153] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2164: invalid block [ 308.468232][T10153] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.2164: invalid indirect mapped block 4294967295 (level 1) [ 308.485485][T10153] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.2164: invalid indirect mapped block 4294967295 (level 1) [ 308.503529][T10153] EXT4-fs (loop0): 2 truncates cleaned up [ 308.509314][T10153] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 308.525732][T10153] usb usb8: usbfs: process 10153 (syz.0.2164) did not claim interface 0 before use [ 308.725455][T10163] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2168'. [ 308.787777][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.802111][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.817687][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.828399][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.836646][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.877114][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.887227][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.907014][ T5270] EXT4-fs (loop0): unmounting filesystem. [ 308.917599][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.927736][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.944465][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.969676][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.985744][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.997106][T10178] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2177'. [ 308.998028][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.015660][T10178] netlink: 'syz.1.2177': attribute type 10 has an invalid length. [ 309.021655][ C1] dccp_v4_rcv: dropped packet with invalid checksum [ 309.030300][ C1] dccp_v4_rcv: dropped packet with invalid checksum [ 309.037372][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.045432][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.055769][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.063530][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.071086][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.078590][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.080074][T10178] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 309.086092][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.103335][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.110869][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.122913][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.147447][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.165131][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.175244][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.185009][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.193298][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.200797][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.211546][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.218970][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.228202][ T27] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 309.249816][ T27] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [sy] on syz0 [ 309.379142][T10194] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2183'. [ 309.542961][T10202] xt_hashlimit: max too large, truncated to 1048576 [ 309.566997][T10201] usb usb8: usbfs: process 10201 (syz.0.2185) did not claim interface 0 before use [ 311.416318][T10237] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 311.498117][T10237] tipc: Enabling of bearer rejected, already enabled [ 311.509196][T10241] usb usb8: usbfs: process 10241 (syz.3.2202) did not claim interface 0 before use [ 311.525686][T10237] tipc: Enabling of bearer rejected, already enabled [ 311.992635][T10268] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2215'. [ 312.003431][T10266] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2214'. [ 312.060299][T10270] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 312.078152][T10270] tipc: Bearer : already 2 bearers with priority 10 [ 312.085924][T10270] tipc: Bearer : trying with adjusted priority [ 312.096715][T10270] tipc: Enabled bearer , priority 9 [ 312.113340][T10270] tipc: Enabling of bearer rejected, max 3 bearers permitted [ 312.702894][T10284] loop4: detected capacity change from 0 to 128 [ 312.998586][T10284] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 313.091875][T10284] ext4 filesystem being mounted at /432/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 313.404358][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 313.615537][T10308] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 313.647541][T10308] tipc: Enabling of bearer rejected, already enabled [ 313.659750][T10308] tipc: Enabling of bearer rejected, already enabled [ 313.743007][T10319] loop3: detected capacity change from 0 to 512 [ 313.754490][T10319] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.2237: casefold flag without casefold feature [ 313.768912][T10319] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.2237: couldn't read orphan inode 15 (err -117) [ 313.782800][T10319] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 313.977820][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 313.999528][T10333] loop4: detected capacity change from 0 to 512 [ 314.053869][T10333] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 314.122658][T10333] EXT4-fs (loop4): orphan cleanup on readonly fs [ 314.145726][ T26] kauditd_printk_skb: 284 callbacks suppressed [ 314.145742][ T26] audit: type=1326 audit(1735606714.125:3878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10339 comm="syz.1.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 314.192616][T10333] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.2240: bg 0: block 248: padding at end of block bitmap is not set [ 314.261343][ T26] audit: type=1326 audit(1735606714.125:3879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10339 comm="syz.1.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 314.331218][T10333] Quota error (device loop4): write_blk: dquota write failed [ 314.341658][ T26] audit: type=1326 audit(1735606714.125:3880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10339 comm="syz.1.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 314.375772][T10333] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 314.399264][T10333] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.2240: Failed to acquire dquot type 1 [ 314.428332][ T26] audit: type=1326 audit(1735606714.125:3881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10339 comm="syz.1.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 314.470107][T10333] EXT4-fs (loop4): 1 truncate cleaned up [ 314.483824][ T26] audit: type=1326 audit(1735606714.125:3882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10339 comm="syz.1.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 314.517022][T10333] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 314.552081][T10349] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2249'. [ 314.610114][T10351] netlink: 'syz.3.2252': attribute type 6 has an invalid length. [ 314.622317][T10353] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 314.666770][T10353] tipc: Enabling of bearer rejected, already enabled [ 314.692300][T10353] tipc: Enabling of bearer rejected, already enabled [ 314.798170][T10355] usb usb8: usbfs: process 10355 (syz.3.2253) did not claim interface 0 before use [ 315.519104][T10379] loop0: detected capacity change from 0 to 128 [ 315.751129][T10391] usb usb8: usbfs: process 10391 (syz.3.2271) did not claim interface 0 before use [ 316.111431][ T26] audit: type=1326 audit(1735606716.095:3883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10408 comm="syz.1.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 316.181008][ T26] audit: type=1326 audit(1735606716.095:3884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10408 comm="syz.1.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 316.232358][ T26] audit: type=1326 audit(1735606716.115:3885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10408 comm="syz.1.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6b72385d29 code=0x7ffc0000 [ 316.389266][T10419] netlink: 104 bytes leftover after parsing attributes in process `syz.2.2284'. [ 317.190343][T10458] usb usb8: usbfs: process 10458 (syz.3.2298) did not claim interface 0 before use [ 317.227207][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.233610][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.696213][T10504] Cannot find set identified by id 632 to match [ 319.388703][ T26] kauditd_printk_skb: 27 callbacks suppressed [ 319.388718][ T26] audit: type=1326 audit(1735606719.365:3913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.2.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 319.472403][ T26] audit: type=1326 audit(1735606719.405:3914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.2.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 319.564246][ T26] audit: type=1326 audit(1735606719.405:3915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.2.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 319.642001][ T26] audit: type=1326 audit(1735606719.405:3916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.2.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 319.693714][ T26] audit: type=1326 audit(1735606719.405:3917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.2.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 319.756353][ T26] audit: type=1326 audit(1735606719.405:3918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.2.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 319.821097][ T26] audit: type=1326 audit(1735606719.405:3919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.2.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 319.867939][ T26] audit: type=1326 audit(1735606719.405:3920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.2.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 319.921099][ T26] audit: type=1326 audit(1735606719.415:3921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.2.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 319.968229][ T26] audit: type=1326 audit(1735606719.415:3922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.2.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 320.066995][T10522] Set syz1 is full, maxelem 65536 reached [ 320.887113][T10577] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2352'. [ 321.027599][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 324.031822][T10661] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.2388'. [ 324.424885][ T26] kauditd_printk_skb: 106 callbacks suppressed [ 324.424901][ T26] audit: type=1326 audit(1735606724.405:4029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 324.478928][ T26] audit: type=1326 audit(1735606724.405:4030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 324.524208][ T26] audit: type=1326 audit(1735606724.445:4031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 324.595211][T10684] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2398'. [ 324.600533][ T26] audit: type=1326 audit(1735606724.445:4032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 324.676363][ T26] audit: type=1326 audit(1735606724.445:4033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 324.676415][ T26] audit: type=1326 audit(1735606724.445:4034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 324.676449][ T26] audit: type=1326 audit(1735606724.445:4035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 324.676482][ T26] audit: type=1326 audit(1735606724.445:4036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 324.676515][ T26] audit: type=1326 audit(1735606724.445:4037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 324.676546][ T26] audit: type=1326 audit(1735606724.445:4038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff289585d29 code=0x7ffc0000 [ 324.694153][T10689] dccp_invalid_packet: P.type (CLOSE) not Data || [Data]Ack, while P.X == 0 [ 324.878635][ C0] vkms_vblank_simulate: vblank timer overrun [ 324.910796][ C0] vkms_vblank_simulate: vblank timer overrun [ 324.996506][ C0] vkms_vblank_simulate: vblank timer overrun [ 325.056819][T10700] loop3: detected capacity change from 0 to 2048 [ 325.106616][T10700] loop3: p1 < > p4 [ 325.114047][T10700] loop3: p4 size 8388608 extends beyond EOD, truncated [ 325.278863][T10706] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2410'. [ 325.709918][T10727] device sit1 entered promiscuous mode [ 325.798921][T10729] loop3: detected capacity change from 0 to 2048 [ 325.820624][T10569] Set syz1 is full, maxelem 65536 reached [ 325.859201][T10729] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 326.377734][T10755] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2429'. [ 326.406529][T10755] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2429'. [ 326.471884][T10755] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 326.480889][T10755] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 326.489100][T10755] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 326.497399][T10755] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 326.598405][T10757] netlink: 'syz.2.2430': attribute type 8 has an invalid length. [ 326.854723][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 326.927792][T10764] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2434'. [ 328.342928][T10798] syz.1.2448[10798] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 328.343069][T10798] syz.1.2448[10798] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 329.854168][T10831] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2460'. [ 330.102677][T10850] IPVS: Error connecting to the multicast addr [ 330.216192][ T26] kauditd_printk_skb: 68 callbacks suppressed [ 330.216208][ T26] audit: type=1326 audit(330.226:4107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10854 comm="syz.3.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 330.244269][ C0] vkms_vblank_simulate: vblank timer overrun [ 330.275760][T10858] netlink: 100 bytes leftover after parsing attributes in process `syz.1.2473'. [ 330.282945][ T26] audit: type=1326 audit(330.226:4108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10854 comm="syz.3.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 330.317262][ T26] audit: type=1326 audit(330.266:4109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10854 comm="syz.3.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 330.340996][ T26] audit: type=1326 audit(330.266:4110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10854 comm="syz.3.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 330.370217][ T26] audit: type=1326 audit(330.266:4111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10854 comm="syz.3.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 330.392087][ C0] vkms_vblank_simulate: vblank timer overrun [ 331.286801][T10874] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2478'. [ 331.662532][T10887] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 331.669809][T10887] IPv6: NLM_F_CREATE should be set when creating new route [ 331.740429][T10891] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2485'. [ 331.808589][T10896] Set syz1 is full, maxelem 65536 reached [ 332.070128][ T26] audit: type=1326 audit(332.076:4112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10907 comm="syz.2.2494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 332.113245][ T26] audit: type=1326 audit(332.106:4113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10907 comm="syz.2.2494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 332.657017][ T26] audit: type=1326 audit(332.106:4114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10907 comm="syz.2.2494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 332.944645][ T26] audit: type=1326 audit(332.106:4115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10907 comm="syz.2.2494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 333.040049][ T26] audit: type=1326 audit(332.106:4116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10907 comm="syz.2.2494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 333.093438][T10916] loop0: detected capacity change from 0 to 512 [ 333.100704][T10916] ext4: Unknown parameter 'euid' [ 333.414387][ T4261] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 333.417803][ T4240] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 333.424969][ T4261] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 333.438876][ T4261] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 333.447606][ T4261] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 333.455524][ T4261] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 333.464487][T10920] IPVS: Error connecting to the multicast addr [ 333.470794][ T4261] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 333.612502][ T4240] usb 4-1: Using ep0 maxpacket: 32 [ 333.646217][ T4240] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 333.657891][ T4240] usb 4-1: config 0 has no interfaces? [ 333.663531][ T4240] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 333.672990][ T4240] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 333.779026][T10924] loop0: detected capacity change from 0 to 128 [ 333.794087][T10924] FAT-fs (loop0): bogus number of reserved sectors [ 333.800892][T10924] FAT-fs (loop0): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 333.810279][T10924] FAT-fs (loop0): Can't find a valid FAT filesystem [ 334.681258][ T4240] usb 4-1: config 0 descriptor?? [ 334.954891][ T4240] usb 4-1: USB disconnect, device number 9 [ 335.704287][ T4266] Bluetooth: hci5: command 0x0409 tx timeout [ 336.087654][T10917] chnl_net:caif_netlink_parms(): no params data found [ 336.247475][T10968] loop4: detected capacity change from 0 to 512 [ 336.323883][T10968] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002] [ 336.343208][T10968] System zones: 0-2, 18-18, 34-34 [ 336.359492][T10917] bridge0: port 1(bridge_slave_0) entered blocking state [ 336.373559][T10917] bridge0: port 1(bridge_slave_0) entered disabled state [ 336.383228][T10968] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm +}[@: bg 0: block 248: padding at end of block bitmap is not set [ 336.392479][T10917] device bridge_slave_0 entered promiscuous mode [ 336.407121][T10917] bridge0: port 2(bridge_slave_1) entered blocking state [ 336.424872][T10917] bridge0: port 2(bridge_slave_1) entered disabled state [ 336.439749][T10968] __quota_error: 21 callbacks suppressed [ 336.439767][T10968] Quota error (device loop4): write_blk: dquota write failed [ 336.460880][T10968] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 336.478407][T10968] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm +}[@: Failed to acquire dquot type 1 [ 336.491902][T10917] device bridge_slave_1 entered promiscuous mode [ 336.514234][T10968] EXT4-fs (loop4): 1 truncate cleaned up [ 336.519964][T10968] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 336.626520][T10917] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 336.667556][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 336.672372][T10917] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 336.757434][T10917] team0: Port device team_slave_0 added [ 336.812637][T10917] team0: Port device team_slave_1 added [ 336.902708][T10917] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 336.910093][T10917] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 336.963158][T10989] ieee802154 phy0 wpan0: encryption failed: -22 [ 337.000201][T10917] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 337.034284][T10917] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 337.055351][T10917] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 337.119775][T10997] rdma_op ffff88807e37f9f0 conn xmit_rdma 0000000000000000 [ 337.130639][T10917] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 337.179042][T10996] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2521'. [ 337.204401][T11000] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2523'. [ 337.276222][T10917] device hsr_slave_0 entered promiscuous mode [ 337.283880][T10917] device hsr_slave_1 entered promiscuous mode [ 337.290743][T10917] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 337.298333][T10917] Cannot create hsr debugfs directory [ 337.343687][T11002] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2524'. [ 337.438050][T11002] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2524'. [ 337.539391][T10917] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 337.553379][T10917] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 337.553635][T11002] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2524'. [ 337.628129][T10917] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 337.649344][T10917] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 337.710888][T10917] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 337.710995][T10917] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 337.734080][ T26] audit: type=1326 audit(337.746:4138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11014 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 337.734318][ T26] audit: type=1326 audit(337.746:4139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11014 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 337.734787][ T26] audit: type=1326 audit(337.746:4140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11014 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 337.735028][ T26] audit: type=1326 audit(337.746:4141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11014 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 337.735258][ T26] audit: type=1326 audit(337.746:4142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11014 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 337.735571][ T26] audit: type=1326 audit(337.746:4143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11014 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 337.735748][ T26] audit: type=1326 audit(337.746:4144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11014 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 337.735948][ T26] audit: type=1326 audit(337.746:4145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11014 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c17785d29 code=0x7ffc0000 [ 337.782307][ T4266] Bluetooth: hci5: command 0x041b tx timeout [ 337.930706][T10917] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 337.930743][T10917] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 338.074070][T10917] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 338.077224][T10917] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 338.080202][T10917] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 338.109346][T10917] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 338.163612][T11025] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2532'. [ 338.356517][T10917] 8021q: adding VLAN 0 to HW filter on device bond0 [ 338.383275][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 338.393287][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 338.411857][T11033] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 338.425869][T10917] 8021q: adding VLAN 0 to HW filter on device team0 [ 338.443319][T11038] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2537'. [ 338.451054][T11033] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 338.472836][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 338.488293][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 338.511295][ T7379] bridge0: port 1(bridge_slave_0) entered blocking state [ 338.518462][ T7379] bridge0: port 1(bridge_slave_0) entered forwarding state [ 338.527536][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 338.539008][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 338.548854][ T7379] bridge0: port 2(bridge_slave_1) entered blocking state [ 338.556014][ T7379] bridge0: port 2(bridge_slave_1) entered forwarding state [ 338.587926][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 338.608541][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 338.620337][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 338.656204][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 338.680068][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 338.693519][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 338.705571][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 338.716649][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 338.731049][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 338.759085][T10917] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 338.778138][T10917] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 338.788100][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 338.797286][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 338.806254][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 339.085611][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 339.108291][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x1 [ 339.111824][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 339.116936][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.132245][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.137213][T10917] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 339.139785][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.164036][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.174369][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 339.176362][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.185084][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 339.199664][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.207499][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.215165][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.234898][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.243835][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 339.252273][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.254017][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 339.269212][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x4 [ 339.286477][T10917] device veth0_vlan entered promiscuous mode [ 339.291763][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.294526][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 339.312255][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.323826][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 339.327792][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.339803][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.348072][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.357463][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.359982][T10917] device veth1_vlan entered promiscuous mode [ 339.365310][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.379129][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.394670][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.413670][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.413935][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 339.429173][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.433207][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 339.444612][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.444637][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.444658][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.444677][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.444696][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.444716][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.444736][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.444763][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.444782][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.514297][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.518337][T10917] device veth0_macvtap entered promiscuous mode [ 339.521876][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.535705][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.543706][ T27] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0 [ 339.552672][ T27] hid-generic 0000:0003:0000.0005: hidraw0: HID v0.00 Device [syz0] on syz0 [ 339.559710][T10917] device veth1_macvtap entered promiscuous mode [ 339.605159][T10917] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 339.623881][T10917] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 339.654929][T10917] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 339.675832][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 339.692191][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 339.710336][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 339.730037][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 339.751233][T10917] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 339.764473][T10917] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 339.792153][T10917] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 339.807310][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 339.825053][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 339.845919][T10917] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 339.865479][T10917] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 339.883343][T10917] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 339.900505][T10917] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 339.940795][ T4266] Bluetooth: hci5: command 0x040f tx timeout [ 340.099909][ T7379] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 340.117632][ T7379] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 340.154493][T11098] loop0: detected capacity change from 0 to 512 [ 340.163257][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 340.188924][ T4299] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 340.204914][T11098] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 340.209779][ T4299] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 340.225447][T11098] EXT4-fs (loop0): 1 truncate cleaned up [ 340.231336][T11098] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 340.234891][ T7379] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 340.262389][T11098] EXT4-fs (loop0): re-mounted. Quota mode: writeback. [ 340.311299][ T5270] EXT4-fs (loop0): unmounting filesystem. [ 340.708339][T11123] loop0: detected capacity change from 0 to 512 [ 340.749252][T11123] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities [ 341.328454][T11156] loop1: detected capacity change from 0 to 2048 [ 341.361905][T11156] loop1: p1 < > p4 [ 341.374605][T11156] loop1: p4 size 8388608 extends beyond EOD, truncated [ 341.679003][ T26] kauditd_printk_skb: 63 callbacks suppressed [ 341.679020][ T26] audit: type=1326 audit(341.686:4209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.4.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 341.760630][ T26] audit: type=1326 audit(341.716:4210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.4.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 341.802613][ T26] audit: type=1326 audit(341.716:4211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.4.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 341.854065][ T26] audit: type=1326 audit(341.726:4212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.4.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 341.930783][ T26] audit: type=1326 audit(341.726:4213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.4.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 341.974533][ T26] audit: type=1326 audit(341.726:4214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.4.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 341.982377][T11178] loop4: detected capacity change from 0 to 256 [ 342.013889][T11179] loop1: detected capacity change from 0 to 1024 [ 342.020885][ T4266] Bluetooth: hci5: command 0x0419 tx timeout [ 342.028471][T11179] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 342.039758][T11183] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 342.039864][ T26] audit: type=1326 audit(341.736:4215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.4.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 342.061717][T11183] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 342.071574][ T26] audit: type=1326 audit(341.736:4216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.4.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 342.126003][T11179] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 342.132910][ T26] audit: type=1326 audit(341.736:4217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.4.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 342.184440][ T26] audit: type=1326 audit(341.736:4218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.4.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f675f985d29 code=0x7ffc0000 [ 342.221679][T11179] EXT4-fs (loop1): orphan cleanup on readonly fs [ 342.248916][T11179] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #3: comm syz.1.2593: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0) [ 342.287724][T11179] EXT4-fs (loop1): Remounting filesystem read-only [ 342.294609][T11179] EXT4-fs error (device loop1): ext4_quota_enable:6988: comm syz.1.2593: Bad quota inode: 3, type: 0 [ 342.310638][T11179] EXT4-fs (loop1): Remounting filesystem read-only [ 342.327402][T11179] EXT4-fs warning (device loop1): ext4_enable_quotas:7029: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 342.350545][T11179] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 342.357376][T11179] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 342.420118][T10917] EXT4-fs (loop1): unmounting filesystem. [ 343.385905][ T75] tipc: Disabling bearer [ 343.405229][ T75] tipc: Disabling bearer [ 343.414670][T11219] loop1: detected capacity change from 0 to 8192 [ 343.424962][ T75] tipc: Disabling bearer [ 343.440208][ T75] tipc: Left network mode [ 343.446164][T11219] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 343.946405][T11239] loop1: detected capacity change from 0 to 512 [ 343.965276][T11239] EXT4-fs: Ignoring removed mblk_io_submit option [ 344.001891][T11239] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 344.193274][T11213] Set syz1 is full, maxelem 65536 reached [ 344.307366][T10917] EXT4-fs (loop1): unmounting filesystem. [ 345.084881][ T75] device hsr_slave_0 left promiscuous mode [ 345.098691][ T75] device hsr_slave_1 left promiscuous mode [ 345.148216][ T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 345.162850][ T75] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 345.177835][ T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 345.198459][ T75] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 345.277957][ T75] device veth1_macvtap left promiscuous mode [ 345.293577][ T75] device veth0_macvtap left promiscuous mode [ 345.330708][ T75] device veth1_vlan left promiscuous mode [ 345.460401][T11275] loop1: detected capacity change from 0 to 2048 [ 345.528871][T11275] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 345.708422][T11269] Set syz1 is full, maxelem 65536 reached [ 345.997387][T10917] EXT4-fs (loop1): unmounting filesystem. [ 346.509765][ T75] bond1 (unregistering): Released all slaves [ 347.144427][T11315] loop3: detected capacity change from 0 to 256 [ 347.478097][ T26] kauditd_printk_skb: 62 callbacks suppressed [ 347.478113][ T26] audit: type=1326 audit(347.486:4281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11322 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 347.529641][ T26] audit: type=1326 audit(347.486:4282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11322 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 347.560383][ T26] audit: type=1326 audit(347.486:4283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11322 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 347.573279][T11324] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2656'. [ 347.614764][ T26] audit: type=1326 audit(347.486:4284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11322 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 347.667503][ T26] audit: type=1326 audit(347.486:4285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11322 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 347.712365][ T26] audit: type=1326 audit(347.486:4286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11322 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 347.738329][ T26] audit: type=1326 audit(347.486:4287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11322 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 347.774336][ T26] audit: type=1326 audit(347.486:4288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11322 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 347.798768][ T26] audit: type=1326 audit(347.486:4289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11322 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 347.823918][ T26] audit: type=1326 audit(347.486:4290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11322 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 347.875130][ T75] team0 (unregistering): Port device team_slave_1 removed [ 348.006241][ T75] team0 (unregistering): Port device team_slave_0 removed [ 348.076890][ T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 348.174204][ T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 348.632346][ T75] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 349.079306][T11336] loop0: detected capacity change from 0 to 512 [ 349.112983][T11336] EXT4-fs (loop0): too many log groups per flexible block group [ 349.129042][T11336] EXT4-fs (loop0): failed to initialize mballoc (-12) [ 349.136097][T11336] EXT4-fs (loop0): mount failed [ 349.242180][ T75] bond0 (unregistering): Released all slaves [ 349.295188][T11317] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2653'. [ 349.311223][T11323] bond0 speed is unknown, defaulting to 1000 [ 349.317431][T11323] bond0 speed is unknown, defaulting to 1000 [ 349.351057][T11323] bond0 speed is unknown, defaulting to 1000 [ 349.378178][T11323] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 349.471578][T11323] bond0 speed is unknown, defaulting to 1000 [ 349.489552][T11323] bond0 speed is unknown, defaulting to 1000 [ 349.541782][T11323] bond0 speed is unknown, defaulting to 1000 [ 349.548756][T11323] bond0 speed is unknown, defaulting to 1000 [ 349.589523][T11323] bond0 speed is unknown, defaulting to 1000 [ 349.801190][T11311] Set syz1 is full, maxelem 65536 reached [ 349.903950][T11356] loop0: detected capacity change from 0 to 512 [ 349.952084][T11360] netlink: 144 bytes leftover after parsing attributes in process `syz.1.2673'. [ 349.972583][T11356] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 350.162734][T11370] loop1: detected capacity change from 0 to 512 [ 350.237589][T11370] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 350.319992][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 350.361515][T10917] EXT4-fs (loop1): unmounting filesystem. [ 350.398660][T11378] loop3: detected capacity change from 0 to 2048 [ 350.435630][T11378] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 350.524996][T11385] serio: Serial port ptm0 [ 350.547725][ T4262] EXT4-fs (loop3): unmounting filesystem. [ 351.243055][T11388] Set syz1 is full, maxelem 65536 reached [ 351.769253][T11430] loop1: detected capacity change from 0 to 1024 [ 351.777932][T11430] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869) [ 351.800550][T11430] EXT4-fs (loop1): invalid journal inode [ 351.806376][T11430] EXT4-fs (loop1): can't get journal size [ 351.823014][T11430] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 351.855797][T11430] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2703'. [ 351.941134][T10917] EXT4-fs (loop1): unmounting filesystem. [ 352.158871][T11436] loop1: detected capacity change from 0 to 128 [ 353.020405][T11440] Set syz1 is full, maxelem 65536 reached [ 353.237590][ T26] kauditd_printk_skb: 51 callbacks suppressed [ 353.237615][ T26] audit: type=1326 audit(353.246:4342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.3.2715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 353.321459][ T26] audit: type=1326 audit(353.246:4343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.3.2715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 353.371600][ T26] audit: type=1326 audit(353.286:4344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.3.2715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 353.398842][ T26] audit: type=1326 audit(353.286:4345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.3.2715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 353.426694][ T26] audit: type=1326 audit(353.286:4346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.3.2715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 353.493157][ T26] audit: type=1326 audit(353.286:4347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.3.2715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 353.547243][ T26] audit: type=1326 audit(353.286:4348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.3.2715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 353.580279][ T26] audit: type=1326 audit(353.286:4349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.3.2715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 353.622425][ T26] audit: type=1326 audit(353.496:4350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11462 comm="syz.3.2717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 353.838501][ T26] audit: type=1326 audit(353.496:4351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11462 comm="syz.3.2717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527b85d29 code=0x7ffc0000 [ 354.342013][T11482] Set syz1 is full, maxelem 65536 reached [ 354.386577][T11484] loop1: detected capacity change from 0 to 512 [ 354.447677][T11487] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2727'. [ 354.479958][T11484] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 354.603303][T10917] EXT4-fs (loop1): unmounting filesystem. [ 354.944659][T11500] 9pnet: Could not find request transport: fd0x000000000000000a [ 354.982116][T11361] ------------[ cut here ]------------ [ 354.988154][T11361] kernel BUG at fs/buffer.c:2666! [ 354.994019][T11361] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 355.000121][T11361] CPU: 1 PID: 11361 Comm: kmmpd-loop0 Tainted: G W 6.1.122-syzkaller #0 [ 355.009936][T11361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 355.019995][T11361] RIP: 0010:submit_bh_wbc+0x4c0/0x4e0 [ 355.025384][T11361] Code: 02 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c be fe ff ff 48 89 ef e8 b1 48 e0 ff e9 b1 fe ff ff e8 77 b5 88 ff 0f 0b e8 70 b5 88 ff <0f> 0b e8 69 b5 88 ff 0f 0b e8 62 b5 88 ff 0f 0b e8 5b b5 88 ff 0f [ 355.045015][T11361] RSP: 0018:ffffc90003357c40 EFLAGS: 00010293 [ 355.051096][T11361] RAX: ffffffff8201e700 RBX: 0000000000000000 RCX: ffff88807d330000 [ 355.059086][T11361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 355.067076][T11361] RBP: ffffc90003357d50 R08: ffffffff8201e2dd R09: ffffed100a842f97 [ 355.075061][T11361] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100a842f96 [ 355.083047][T11361] R13: ffff888054217cb0 R14: 0000000000000000 R15: 0000000000003801 [ 355.091036][T11361] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 355.099970][T11361] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 355.106561][T11361] CR2: 00000000201bb030 CR3: 000000000d08e000 CR4: 00000000003506e0 [ 355.114552][T11361] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 355.122547][T11361] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 355.130523][T11361] Call Trace: [ 355.133811][T11361] [ 355.136763][T11361] ? __die_body+0x5e/0xa0 [ 355.141116][T11361] ? die+0x83/0xb0 [ 355.144857][T11361] ? do_trap+0x11e/0x350 [ 355.149110][T11361] ? submit_bh_wbc+0x4c0/0x4e0 [ 355.153886][T11361] ? submit_bh_wbc+0x4c0/0x4e0 [ 355.158660][T11361] ? do_error_trap+0x13d/0x1e0 [ 355.163433][T11361] ? submit_bh_wbc+0x4c0/0x4e0 [ 355.168206][T11361] ? do_int3+0x30/0x30 [ 355.172285][T11361] ? report_bug+0x3e0/0x500 [ 355.176796][T11361] ? rcu_is_watching+0x11/0xb0 [ 355.181565][T11361] ? handle_invalid_op+0x2c/0x40 [ 355.186513][T11361] ? submit_bh_wbc+0x4c0/0x4e0 [ 355.191281][T11361] ? exc_invalid_op+0x2f/0x40 [ 355.195971][T11361] ? asm_exc_invalid_op+0x16/0x20 [ 355.201022][T11361] ? submit_bh_wbc+0x9d/0x4e0 [ 355.205721][T11361] ? submit_bh_wbc+0x4c0/0x4e0 [ 355.211132][T11361] ? submit_bh_wbc+0x4c0/0x4e0 [ 355.216066][T11361] write_mmp_block_thawed+0x3b6/0x5a0 [ 355.221459][T11361] ? read_mmp_block+0x7e0/0x7e0 [ 355.226326][T11361] ? update_process_times+0x1b0/0x1b0 [ 355.231719][T11361] ? kmmpd+0x40c/0xa70 [ 355.235795][T11361] write_mmp_block+0x13f/0x390 [ 355.240573][T11361] kmmpd+0x40c/0xa70 [ 355.244485][T11361] ? write_mmp_block_thawed+0x5a0/0x5a0 [ 355.250034][T11361] ? __kthread_parkme+0x168/0x1c0 [ 355.255068][T11361] kthread+0x28d/0x320 [ 355.259140][T11361] ? write_mmp_block_thawed+0x5a0/0x5a0 [ 355.264691][T11361] ? kthread_blkcg+0xd0/0xd0 [ 355.269290][T11361] ret_from_fork+0x1f/0x30 [ 355.273728][T11361] [ 355.276871][T11361] Modules linked in: [ 355.307135][T11506] loop1: detected capacity change from 0 to 2048 [ 355.315063][T11361] ---[ end trace 0000000000000000 ]--- [ 355.321448][T11361] RIP: 0010:submit_bh_wbc+0x4c0/0x4e0 [ 355.326904][T11361] Code: 02 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c be fe ff ff 48 89 ef e8 b1 48 e0 ff e9 b1 fe ff ff e8 77 b5 88 ff 0f 0b e8 70 b5 88 ff <0f> 0b e8 69 b5 88 ff 0f 0b e8 62 b5 88 ff 0f 0b e8 5b b5 88 ff 0f [ 355.348009][T11361] RSP: 0018:ffffc90003357c40 EFLAGS: 00010293 [ 355.354653][T11361] RAX: ffffffff8201e700 RBX: 0000000000000000 RCX: ffff88807d330000 [ 355.364564][T11506] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 355.374658][T11361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 355.383446][T11361] RBP: ffffc90003357d50 R08: ffffffff8201e2dd R09: ffffed100a842f97 [ 355.391644][T11361] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100a842f96 [ 355.399756][T11361] R13: ffff888054217cb0 R14: 0000000000000000 R15: 0000000000003801 [ 355.407902][T11361] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 355.417164][T11361] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 355.423951][T11361] CR2: 000000110c2affa9 CR3: 000000007a6e1000 CR4: 00000000003506f0 [ 355.432098][T11361] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 355.440284][T11361] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 355.448913][T11361] Kernel panic - not syncing: Fatal exception [ 355.455257][T11361] Kernel Offset: disabled [ 355.459573][T11361] Rebooting in 86400 seconds..