last executing test programs: 4.219647539s ago: executing program 4 (id=1272): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="18020000fcffffff00000000000000008500000041000000850000007d00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 3.949173906s ago: executing program 4 (id=1274): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = socket(0x10, 0x3, 0x0) write(r1, &(0x7f0000000080)="1400000052004f030e789e7ee2ce2fa4ff612d27", 0x14) recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'}) write$sndseq(r2, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8) 3.831521038s ago: executing program 2 (id=1276): sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6(0xa, 0x3, 0x3c) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff274140000001100"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4000, 0x10, @mcast1, 0x5}, 0x1c) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0x5aa}], 0x1) 3.441696854s ago: executing program 2 (id=1280): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000340), 0x1, 0x599, &(0x7f0000000540)="$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") openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) unshare(0x62040200) 3.324431354s ago: executing program 0 (id=1282): bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000220000000400000002"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1, 0xffffffffffffffff}, &(0x7f0000000200), &(0x7f0000000140)=r0}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r2, 0xffffffffffffffff}, &(0x7f0000000280), &(0x7f00000002c0)=r0}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000400)={r3, &(0x7f0000000340), 0x0}, 0x20) 2.968373238s ago: executing program 0 (id=1286): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$inet6(0x10, 0x3, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r2}, 0x10) sendto$inet6(r1, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0) 2.460052524s ago: executing program 3 (id=1287): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x3, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r1, &(0x7f0000000f40)=[{{&(0x7f00000001c0)={0x2, 0x4e23, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000600)="72e0a01e28ad594daa3163f87e", 0xd}, {&(0x7f0000000380)="a5c930d5a5636015aef4beb68f7af32d188f86812ecac8d3b912a66c9c036452fe9f2bd78b5ee8fe8d499777a52530fe688f35c829f4439d4e8bd3bee729de597178e0b664435e748673b46ee808e6a484fd32bacc2cf7256409d71307a8b4eb333da4ea713747c9e3e21b29a0c356", 0x6f}, {&(0x7f00000004c0)="c1d5e1172b0eb4973392171508f4e651548f988e829c9bef5ab39c418fc10f3616a9ae032258f5885d93c7467e7c23ce9764dff6d266063125e3108b5d81bab2604991952097b14590715b51d94a5d010ab825f38c33ce1687e2fa45f1bea945c6ad3f8fdc93daa2eca2ccd4a17e", 0x6e}], 0x3}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000640)="604a898ae59fa212e8d63a63a6303d0102b3478f91dd7a802fe9e6d7cc0a7a72c0d9dc4311332f43d095af29b9e06c92471d7d43955a49041ecd1b96931d4afc80aa92c55514da4ecd960595e9f1c75fab0239e8", 0x54}, {&(0x7f00000007c0)="baa066016db9e67a3c69907322f95c6e9ed379e658ed82dc637fdcadb95d9a2e1ffa156eda30b96cdc64a60f49530cc6c7f9daeadb099ca81a2d715b3d099158fefced9bf7c09e9c98fea5dcfd4d6ded7cb4bdd0e04f2af19120f5cf234dbe4471385f107e56634444a28859a7d7b050c9256390cc78a38a0eb902a38a50d32ff3d8b96ef942a10a9325222c998903cf9a128ebae54ab42e754e089121962cc15b11c88552ae631e5f12", 0xaa}, {&(0x7f0000000880)="ece417fc7f96212e550d4ad27388f8e2d890d00641c588fa34890984e35a8629c26c0e7217e7ea557d953a5017243af2f106f1e6d24b88dd424966eec111e551fca801b6a122326e9533492287de9391539fab52f3f3c703fd78269088a045d737f8a268a1ca445bdf32c631a1adeee7a86c11dd86dc5f8bdcebb5962fabd3d21e67724127a3ca590e6d5d574e9cedd82d3628f068bd315a2d835e7dfb459c6af1a1c5eb1512f590de11f22b318d2879993cc7a018f54c", 0xb7}, {&(0x7f00000000c0)="6afc678ca82e0dcebdb454a8ba30b4a9a184777c9d0782a05524120062fb24b3c039820caf07eacd9223516e722376cf6e273b124c48370226a71ed993cc1c9d09aa7c786424ffdacf6d7cc76408777cde6f3a9367d14f2089cbd4b7e9c9dde579412bd33ec107b18d01411e15d2df1aa1e0e83d051db6", 0x77}], 0x4}}, {{0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000b40)="043ebef0c4e9be0c1f44ae8902e00272f6e514f467f73aee0b0020878b9a08ddfbbbe73189ac63cff3f05820d019badf4ceb8aba782de8199b9d2516b5c30b6560a7920768d7cef6b62244b5b6eacfae9e281ff493618123129a02ced96eed241b223847ca27996331ba84f7358013560cb877ba9f28b6", 0x77}, {&(0x7f0000000980)="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", 0x142}, {&(0x7f0000000cc0)="1297ae593585c53da2d9ab7f016d73799ac8b458de9ab9362e13bbd0f646dd543f73dc932715477d024e63cfc37429a14b3b3f6a7fccb39d21c495977315e7c968b37bfb98b38d2c5d77cd65762ce82c1964d1ab07e811f680c1cb79e192492c23ab72063a111966fdfe17ea76ff5434c21a1d0f3b0dcd963ef367e43f1cd4399936ea72a8df30ff3533b9e6583a1cc020efea4d90e21d8b20482489dfe726d2b1f2e8d920219cf4a35d4a47b816db404ac3aa0863e1da9135a217e3059472a09bb0e71ed72641c6447d8d0a416b772090e1ba5f00674f9513720a61732e", 0xde}, {&(0x7f0000000c40)="a03a95a2c4774e048b320683232d0e74ade1aa9d9b05db336d35ad68", 0x1c}, {&(0x7f0000000080)="bf23010b2d05d776d6ce5a83cb637f092ceba712fd33c6cbdc1a7fb5c20f55832ff636f4a8", 0x25}, {&(0x7f0000000e00)="e5b5862970a93ac36cb456670c3f6deea03ae5cb4733480c5ffa9f0b02743e7d0589d4ec6a86aa53547467fb59d74c24c08d63314ab2155725edc200a8831e99e34b1cfd5f1f3a27d45a20c2857b85dbebe666bc6649282e0c1941c00307702e0816dbc15171c62116aecdfe85ff", 0x6e}], 0x6}}], 0x4, 0x2000c044) write(r1, &(0x7f00000006c0)="71ef33", 0x3) 2.435798095s ago: executing program 1 (id=1288): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000600000000"], 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0x20, &(0x7f00000003c0)={&(0x7f0000000280)=""/235, 0xeb, 0x0, &(0x7f0000000440)=""/245, 0xf5}}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000800)={{r0}, &(0x7f0000000740), &(0x7f00000007c0)}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r1, 0xffffffffffffffff}, &(0x7f0000000840), &(0x7f0000000880)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000001a00)={0x11, 0x20, &(0x7f0000001b00)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x3c0d}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffe}, @generic={0x6e, 0xe, 0x3, 0x8000, 0xb}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xe2}}, @map_fd={0x18, 0x8, 0x1, 0x0, r1}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x4, 0x1000, &(0x7f0000000a00)=""/4096, 0x41000, 0x55, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x4, 0x1, 0x8, 0x5}, 0x10, r2, 0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000580)=[{0x2, 0x2, 0x6, 0xb}], 0x10, 0xffffffff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x0) r4 = openat$misdntimer(0xffffffffffffff9c, 0x0, 0x20280, 0x0) ioctl$IMADDTIMER(r4, 0x80044940, &(0x7f0000000080)=0x14) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18) syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000)) mount$tmpfs(0x0, &(0x7f0000000680)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) r5 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a30000000000800410073697700140033006c6f"], 0xffaf}, 0x1, 0x0, 0x0, 0x854}, 0x0) gettid() fcntl$getown(0xffffffffffffffff, 0x9) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x1c0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="b4000000000000080f1000000000000063000000000000009500050000000000d1449c003b097606b153e6dc6de837ae96a815df705fef53cf0ff5e7bdc3bd95cfc0d4800fae421c84b7988e61ed7df452e4b7e139044387aa"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xba, &(0x7f000000cf3d)=""/186, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x3a) umount2(&(0x7f00000002c0)='./file0\x00', 0x800000000000000) close(r4) 2.279755853s ago: executing program 4 (id=1289): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="160000000000000005000000ff"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x2000300, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 2.1124151s ago: executing program 4 (id=1290): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0) 2.111676897s ago: executing program 1 (id=1291): sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6(0xa, 0x3, 0x3c) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff274140000001100"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4000, 0x10, @mcast1, 0x5}, 0x1c) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0x5aa}], 0x1) 2.08030317s ago: executing program 3 (id=1292): syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000e40)='./file2\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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") r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000040), 0x0}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0) pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) lseek(r2, 0x5, 0x4) 1.920090852s ago: executing program 0 (id=1293): bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001800", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) ustat(0x2, &(0x7f0000000000)) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x3, &(0x7f0000000580)=@framed={{0x18, 0x5}}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$inet6(0xa, 0x3, 0xff) r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmsg$inet_sctp(r0, 0x0, 0x20000000) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000"], &(0x7f0000000100)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15) remap_file_pages(&(0x7f000051c000/0x400000)=nil, 0x400d00, 0x0, 0x0, 0x0) 1.918914855s ago: executing program 1 (id=1294): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082", @ANYRES32, @ANYBLOB="180000000000000000000000000000001811"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sk_skb=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) creat(&(0x7f00000000c0)='./file0\x00', 0x48) pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15) r2 = dup(r1) write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94) write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc0}, 0x94) creat(&(0x7f00000003c0)='./file0\x00', 0x36) 1.133841207s ago: executing program 2 (id=1295): r0 = socket$kcm(0x10, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fc", 0x51}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0) 1.116603384s ago: executing program 4 (id=1296): r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0) ioctl$EXT4_IOC_GETFSUUID(r0, 0x8008662c, 0x0) 1.088955392s ago: executing program 1 (id=1297): socket$inet6(0xa, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sigaltstack(&(0x7f0000000480)={0x0, 0x80000001}, 0x0) 926.995035ms ago: executing program 0 (id=1298): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x40000) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0b040000000000000000020000000900010073797a30000000000900020073797a32000000001400000011"], 0x54}, 0x1, 0x0, 0x0, 0x20048004}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002580)=ANY=[@ANYBLOB], 0xcdc}}, 0x0) 926.234158ms ago: executing program 4 (id=1299): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = socket(0x10, 0x3, 0x0) write(r1, &(0x7f0000000080)="1400000052004f030e789e7ee2ce2fa4ff612d27", 0x14) recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'}) write$sndseq(r2, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8) 774.756087ms ago: executing program 2 (id=1300): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="160000000000000005000000ff"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x2000300, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 652.40955ms ago: executing program 3 (id=1301): r0 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10) listen(r0, 0x0) r1 = socket$tipc(0x1e, 0x5, 0x0) sendmsg$tipc(r1, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x480c0}, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) accept4(r0, 0x0, 0x0, 0x400000000000000) 610.451968ms ago: executing program 0 (id=1302): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000600000000"], 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0x20, &(0x7f00000003c0)={&(0x7f0000000280)=""/235, 0xeb, 0x0, &(0x7f0000000440)=""/245, 0xf5}}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000800)={{r0}, &(0x7f0000000740), &(0x7f00000007c0)}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r1, 0xffffffffffffffff}, &(0x7f0000000840), &(0x7f0000000880)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000001a00)={0x11, 0x20, &(0x7f0000001b00)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x3c0d}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffe}, @generic={0x6e, 0xe, 0x3, 0x8000, 0xb}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xe2}}, @map_fd={0x18, 0x8, 0x1, 0x0, r1}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x4, 0x1000, &(0x7f0000000a00)=""/4096, 0x41000, 0x55, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x4, 0x1, 0x8, 0x5}, 0x10, r2, 0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000580)=[{0x2, 0x2, 0x6, 0xb}], 0x10, 0xffffffff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x0) r4 = openat$misdntimer(0xffffffffffffff9c, 0x0, 0x20280, 0x0) ioctl$IMADDTIMER(r4, 0x80044940, &(0x7f0000000080)=0x14) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18) syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000)) mount$tmpfs(0x0, &(0x7f0000000680)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) r5 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a30000000000800410073697700140033006c6f"], 0xffaf}, 0x1, 0x0, 0x0, 0x854}, 0x0) gettid() fcntl$getown(0xffffffffffffffff, 0x9) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x1c0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="b4000000000000080f1000000000000063000000000000009500050000000000d1449c003b097606b153e6dc6de837ae96a815df705fef53cf0ff5e7bdc3bd95cfc0d4800fae421c84b7988e61ed7df452e4b7e139044387aa"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xba, &(0x7f000000cf3d)=""/186, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x3a) umount2(&(0x7f00000002c0)='./file0\x00', 0x800000000000000) close(r4) 587.941252ms ago: executing program 1 (id=1303): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000000000"], 0x0}, 0x94) r1 = socket$inet6(0x10, 0x3, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r2}, 0x10) sendto$inet6(r1, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0) 480.086236ms ago: executing program 2 (id=1304): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000003c0)='kmem_cache_free\x00', r4}, 0x18) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newqdisc={0x34, 0x24, 0xe0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xfff3, 0xd064db0e491fa98f}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000021}, 0x4044080) bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @remote}, 0x14) sendto$inet6(r0, &(0x7f0000000800)="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", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0) 392.657823ms ago: executing program 0 (id=1305): bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) r3 = syz_io_uring_setup(0x499, &(0x7f0000000140)={0x0, 0xa064, 0x3180, 0x2, 0x25c}, &(0x7f0000000080)=0x0, &(0x7f0000000340)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f00000000c0)=0xffb, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_TIMEOUT={0xb, 0x11, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x1, 0x40, 0x1}) io_uring_enter(r3, 0x628, 0xc88d, 0x43, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r6 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f00000000c0)=0xc) sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000580)=ANY=[@ANYBLOB="280000001800010000000000000000000200000008000000e00000020c00088008000c00", @ANYRES32=r7, @ANYBLOB="d9c3a20467035762d15ab417c772e7346b91969bf6c79c61b9f5ecf6db4584c6af1a902a6d5763a21e0bdeb018c77a3f7b7a90d5862771c5262d37a21d1321c79ab5b2f0784aa1afe59cb05fc8a01da2cf20155fff"], 0x28}}, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000004c0)='./file0\x00', 0x3000046, &(0x7f0000000240)={[{@delalloc}, {@discard}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@data_journal}, {@data_err_ignore}, {@dax_never}, {@oldalloc}, {@grpquota}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x1e}}, {@user_xattr}, {@nobh}, {@resuid={'resuid', 0x3d, r7}}]}, 0x1, 0x553, &(0x7f0000001080)="$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") bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000013c0)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r9, 0x0, 0x178}, 0x18) r10 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSSOFTCAR(r10, 0x5453, 0x0) flistxattr(0xffffffffffffffff, &(0x7f0000000000)=""/121, 0x79) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000540), 0xfffffdd8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil) 380.67116ms ago: executing program 1 (id=1306): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x80078b, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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") 328.429767ms ago: executing program 2 (id=1307): openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(0x0, r1) sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x305200, 0x0) close(r3) r4 = socket$unix(0x1, 0x1, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xb}, {0xffff, 0xffff}, {0xb}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0xa, 0x7f61, 0x1, 0xc5, 0xe23, 0x1, 0x1, 0x7fff, 0x1}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20008001}, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {}, {0xffe6, 0xb}, {0xffe0, 0x3}}, [@qdisc_kind_options=@q_blackhole={0xe}]}, 0x34}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000) ioctl$SIOCSIFHWADDR(r3, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 327.948626ms ago: executing program 3 (id=1308): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10) socket$inet6_sctp(0xa, 0x1, 0x84) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) socket$vsock_stream(0x28, 0x1, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) openat$random(0xffffffffffffff9c, &(0x7f0000000e40), 0x400, 0x0) socket$can_j1939(0x1d, 0x2, 0x7) socket$nl_generic(0x10, 0x3, 0x10) r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c00000003080102000000074441980000000000050003"], 0x1c}, 0x1, 0x0, 0x0, 0x50}, 0x10) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r5, &(0x7f0000000180), 0xfea7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0) r6 = openat$cgroup_ro(r3, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r8, @ANYBLOB="ff830500000700ffffff", @ANYRES8=r3], 0x4}}, 0x0) sendfile(r7, r6, 0x0, 0x100000002) 91.558288ms ago: executing program 3 (id=1309): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b000000050000000004000009000000"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) 0s ago: executing program 3 (id=1310): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05"], 0x48) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, 0x0, 0x0) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) write$cgroup_devices(r2, &(0x7f0000000080)=ANY=[@ANYBLOB='b *'], 0x47) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x40}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x58}}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080) kernel console output (not intermixed with test programs): e performance. Setting the MTU to 1560 would solve the problem. [ 79.850324][ T5869] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.931753][ T5869] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.939013][ T5869] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.965934][ T5869] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.013537][ T5871] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.021474][ T5871] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.048206][ T5871] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.097233][ T5865] hsr_slave_0: entered promiscuous mode [ 80.103838][ T5865] hsr_slave_1: entered promiscuous mode [ 80.110292][ T5865] debugfs: 'hsr0' already exists in 'hsr' [ 80.116408][ T5865] Cannot create hsr debugfs directory [ 80.122729][ T5871] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.129813][ T5871] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.156045][ T5871] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.290060][ T5871] hsr_slave_0: entered promiscuous mode [ 80.298245][ T5871] hsr_slave_1: entered promiscuous mode [ 80.304246][ T5871] debugfs: 'hsr0' already exists in 'hsr' [ 80.310085][ T5871] Cannot create hsr debugfs directory [ 80.361731][ T5869] hsr_slave_0: entered promiscuous mode [ 80.372133][ T5869] hsr_slave_1: entered promiscuous mode [ 80.379326][ T5869] debugfs: 'hsr0' already exists in 'hsr' [ 80.385626][ T5869] Cannot create hsr debugfs directory [ 80.718943][ T5864] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 80.754510][ T5864] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 80.767695][ T5864] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 80.801213][ T5864] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 80.881531][ T5870] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 80.906076][ T5870] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 80.916548][ T5870] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 80.939842][ T5870] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 81.041295][ T5865] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 81.052483][ T5865] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 81.087678][ T5865] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 81.098862][ T5865] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 81.194287][ T5871] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 81.206602][ T5871] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 81.219817][ T5871] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 81.232960][ T5871] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 81.299074][ T5864] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.357210][ T5864] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.388559][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.395954][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.409119][ T5869] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 81.420740][ T5869] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 81.431250][ T5869] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 81.446031][ T5184] Bluetooth: hci2: command tx timeout [ 81.446049][ T5879] Bluetooth: hci4: command tx timeout [ 81.446081][ T5879] Bluetooth: hci0: command tx timeout [ 81.451544][ T5874] Bluetooth: hci3: command tx timeout [ 81.458181][ T5880] Bluetooth: hci1: command tx timeout [ 81.474438][ T5870] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.491086][ T5869] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 81.515621][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.522787][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.590686][ T5870] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.644260][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.651468][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.693663][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.700845][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.737536][ T5865] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.832550][ T5871] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.869823][ T5865] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.914963][ T65] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.922163][ T65] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.952110][ T5871] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.982828][ T65] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.990054][ T65] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.058030][ T65] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.065580][ T65] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.097248][ T65] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.104415][ T65] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.171322][ T5870] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 82.231245][ T5869] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.312736][ T5871] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 82.357466][ T5871] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 82.432999][ T5869] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.467627][ T5864] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.494404][ T1098] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.501592][ T1098] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.612528][ T5870] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.658972][ T1098] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.666267][ T1098] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.899532][ T5870] veth0_vlan: entered promiscuous mode [ 82.974980][ T5871] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.001109][ T5870] veth1_vlan: entered promiscuous mode [ 83.022056][ T5865] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.160618][ T5870] veth0_macvtap: entered promiscuous mode [ 83.172326][ T5870] veth1_macvtap: entered promiscuous mode [ 83.230316][ T5871] veth0_vlan: entered promiscuous mode [ 83.258335][ T5871] veth1_vlan: entered promiscuous mode [ 83.279479][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.298717][ T5864] veth0_vlan: entered promiscuous mode [ 83.307214][ T5869] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.316974][ T5865] veth0_vlan: entered promiscuous mode [ 83.331974][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.361269][ T5865] veth1_vlan: entered promiscuous mode [ 83.388034][ T5864] veth1_vlan: entered promiscuous mode [ 83.398516][ T65] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.408474][ T65] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.432534][ T195] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.442282][ T65] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.488208][ T5871] veth0_macvtap: entered promiscuous mode [ 83.514116][ T5871] veth1_macvtap: entered promiscuous mode [ 83.526212][ T5879] Bluetooth: hci1: command tx timeout [ 83.526251][ T5874] Bluetooth: hci2: command tx timeout [ 83.531634][ T52] Bluetooth: hci0: command tx timeout [ 83.537261][ T5184] Bluetooth: hci4: command tx timeout [ 83.542722][ T5880] Bluetooth: hci3: command tx timeout [ 83.562936][ T5871] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.577185][ T5865] veth0_macvtap: entered promiscuous mode [ 83.613887][ T5865] veth1_macvtap: entered promiscuous mode [ 83.622860][ T5871] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.655212][ T65] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.676028][ T5864] veth0_macvtap: entered promiscuous mode [ 83.684222][ T5869] veth0_vlan: entered promiscuous mode [ 83.701447][ T65] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.710876][ T65] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.738833][ T5864] veth1_macvtap: entered promiscuous mode [ 83.750012][ T195] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.761717][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.773025][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.819148][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.832648][ T5869] veth1_vlan: entered promiscuous mode [ 83.862851][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.894010][ T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.898976][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.911428][ T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.938779][ T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.969609][ T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.977871][ T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.989719][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.000792][ T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.010173][ T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.054870][ T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.090173][ T5870] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 84.092674][ T1098] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.120086][ T1098] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.136164][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.144130][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.158788][ T1098] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.199530][ T5869] veth0_macvtap: entered promiscuous mode [ 84.220912][ T5869] veth1_macvtap: entered promiscuous mode [ 84.255732][ T1098] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.348676][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.417871][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.448221][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.464619][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.535511][ T50] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.572780][ T1019] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.616075][ T1019] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.632619][ T195] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.642320][ T195] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.672163][ T1019] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.792444][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.823340][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.902508][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.916504][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.948025][ T6005] loop3: detected capacity change from 0 to 512 [ 85.041852][ T1019] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.077921][ T6005] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.079933][ T1019] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.119727][ T6005] ext4 filesystem being mounted at /4/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 85.203215][ T195] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.211542][ T30] audit: type=1800 audit(1757467620.558:2): pid=6005 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.11" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 85.213657][ T30] audit: type=1800 audit(1757467620.578:3): pid=6005 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.11" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 85.282765][ T195] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.384172][ T6015] loop4: detected capacity change from 0 to 512 [ 85.557318][ T6015] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.607326][ T5880] Bluetooth: hci3: command tx timeout [ 85.607343][ T5184] Bluetooth: hci0: command tx timeout [ 85.607377][ T5184] Bluetooth: hci1: command tx timeout [ 85.612753][ T5880] Bluetooth: hci4: command tx timeout [ 85.618665][ T5184] Bluetooth: hci2: command tx timeout [ 85.621247][ T6015] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 85.699320][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.729484][ T6022] loop1: detected capacity change from 0 to 1024 [ 85.738836][ T6022] EXT4-fs: Ignoring removed nomblk_io_submit option [ 85.844531][ T6022] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 85.985753][ T6022] System zones: 0-1, 3-36 [ 86.012266][ T6022] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 86.035889][ T5864] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.124034][ T6029] Zero length message leads to an empty skb [ 86.320768][ T6034] loop2: detected capacity change from 0 to 128 [ 86.378278][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.396655][ T30] audit: type=1800 audit(1757467621.748:4): pid=6034 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.17" name="file2" dev="loop2" ino=1048605 res=0 errno=0 [ 86.418622][ T6034] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 86.444279][ T6034] FAT-fs (loop2): Filesystem has been set read-only [ 86.467211][ T6034] syz.2.17: attempt to access beyond end of device [ 86.467211][ T6034] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 86.498996][ T30] audit: type=1326 audit(1757467621.828:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6036 comm="syz.3.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 86.564351][ T6034] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 86.580145][ T30] audit: type=1326 audit(1757467621.828:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6036 comm="syz.3.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 86.609215][ T6034] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 86.619825][ T6034] syz.2.17: attempt to access beyond end of device [ 86.619825][ T6034] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 86.643144][ T30] audit: type=1326 audit(1757467621.828:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6036 comm="syz.3.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 86.695872][ T6042] netlink: 96 bytes leftover after parsing attributes in process `syz.1.19'. [ 86.711143][ T6034] syz.2.17: attempt to access beyond end of device [ 86.711143][ T6034] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 86.785473][ T6034] syz.2.17: attempt to access beyond end of device [ 86.785473][ T6034] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 86.815316][ T6034] syz.2.17: attempt to access beyond end of device [ 86.815316][ T6034] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 86.819502][ T24] cfg80211: failed to load regulatory.db [ 86.834969][ T6034] syz.2.17: attempt to access beyond end of device [ 86.834969][ T6034] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 86.878271][ T6049] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 86.880709][ T6034] syz.2.17: attempt to access beyond end of device [ 86.880709][ T6034] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 86.913951][ T6034] syz.2.17: attempt to access beyond end of device [ 86.913951][ T6034] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 86.930669][ T6034] syz.2.17: attempt to access beyond end of device [ 86.930669][ T6034] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 86.944826][ T6034] syz.2.17: attempt to access beyond end of device [ 86.944826][ T6034] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 86.972911][ T6046] netlink: 60 bytes leftover after parsing attributes in process `syz.0.23'. [ 87.102163][ T6054] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 87.141682][ T6054] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 87.172098][ T6054] netdevsim netdevsim1: Falling back to sysfs fallback for: . [ 87.514824][ T6067] binfmt_misc: register: failed to install interpreter file ./file0 [ 87.641556][ T6072] loop3: detected capacity change from 0 to 512 [ 87.659827][ T6072] EXT4-fs: Ignoring removed mblk_io_submit option [ 87.708392][ T6072] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 87.833699][ T6072] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 87.965102][ T6072] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0082] [ 87.985232][ T6072] System zones: 1-12 [ 87.998070][ T6072] EXT4-fs (loop3): 1 truncate cleaned up [ 88.562116][ T6072] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 88.729137][ T30] audit: type=1804 audit(1757467624.088:8): pid=6072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.33" name="/newroot/10/bus/bus" dev="loop3" ino=18 res=1 errno=0 [ 88.838766][ T6090] syz.2.41 uses obsolete (PF_INET,SOCK_PACKET) [ 88.942619][ T6094] loop2: detected capacity change from 0 to 512 [ 89.049977][ T6094] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.41: iget: bad i_size value: 38620345925642 [ 89.064602][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 89.129085][ T6094] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.41: couldn't read orphan inode 15 (err -117) [ 89.219882][ T6094] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 89.728016][ T6106] netlink: 156 bytes leftover after parsing attributes in process `syz.0.47'. [ 89.755629][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 89.785708][ T6108] tipc: Started in network mode [ 89.819309][ T6108] tipc: Node identity 56cbe66e5ccb, cluster identity 4711 [ 89.850788][ T6108] tipc: Enabled bearer , priority 0 [ 89.917504][ T6109] syzkaller0: entered promiscuous mode [ 89.923013][ T6109] syzkaller0: entered allmulticast mode [ 90.127150][ T30] audit: type=1326 audit(1757467625.488:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.0.50" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 90.167853][ T6112] netlink: 204 bytes leftover after parsing attributes in process `syz.0.50'. [ 90.305389][ T30] audit: type=1326 audit(1757467625.488:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.0.50" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 90.469549][ T30] audit: type=1326 audit(1757467625.528:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.0.50" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 90.588509][ T30] audit: type=1326 audit(1757467625.528:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.0.50" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 90.656688][ T6108] netlink: 2 bytes leftover after parsing attributes in process `syz.4.48'. [ 90.675173][ T30] audit: type=1326 audit(1757467625.528:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.0.50" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 90.676439][ T6124] loop0: detected capacity change from 0 to 512 [ 90.726422][ T6109] tipc: Resetting bearer [ 90.785609][ T6124] EXT4-fs warning (device loop0): ext4_xattr_inode_get:556: inode #11: comm syz.0.53: EA inode hash validation failed [ 90.798366][ T6107] tipc: Resetting bearer [ 90.822196][ T30] audit: type=1326 audit(1757467625.588:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.0.50" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 90.835571][ T6124] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 90.892205][ T6124] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #15: comm syz.0.53: corrupted inode contents [ 90.901568][ T30] audit: type=1326 audit(1757467625.588:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.0.50" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 90.936227][ T24] tipc: Node number set to 167831150 [ 90.943325][ T6107] tipc: Disabling bearer [ 90.970352][ T6124] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #15: comm syz.0.53: mark_inode_dirty error [ 91.012622][ T6124] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #15: comm syz.0.53: corrupted inode contents [ 91.082868][ T6124] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #15: comm syz.0.53: mark_inode_dirty error [ 91.100697][ T6124] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #15: comm syz.0.53: mark inode dirty (error -117) [ 91.161948][ T6124] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117) [ 91.213258][ T6124] EXT4-fs (loop0): 1 orphan inode deleted [ 91.223586][ T6124] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 91.389912][ T30] audit: type=1326 audit(1757467626.748:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6143 comm="syz.2.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 91.440653][ T30] audit: type=1326 audit(1757467626.748:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6143 comm="syz.2.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 91.481899][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.535907][ T30] audit: type=1326 audit(1757467626.748:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6143 comm="syz.2.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 91.614675][ T30] audit: type=1326 audit(1757467626.748:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6143 comm="syz.2.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 91.724782][ T6149] loop1: detected capacity change from 0 to 2048 [ 91.817426][ T6149] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 91.982917][ T6164] netlink: 96 bytes leftover after parsing attributes in process `syz.0.68'. [ 92.272999][ T6173] netlink: 8 bytes leftover after parsing attributes in process `syz.4.72'. [ 92.491530][ T6162] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 92.586037][ T6162] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 92.615691][ T6162] EXT4-fs (loop1): This should not happen!! Data will be lost [ 92.615691][ T6162] [ 92.662045][ T6162] EXT4-fs (loop1): Total free blocks count 0 [ 92.676221][ T6180] netlink: 60 bytes leftover after parsing attributes in process `syz.0.74'. [ 92.693700][ T6162] EXT4-fs (loop1): Free/Dirty block details [ 92.701540][ T6185] netlink: 24 bytes leftover after parsing attributes in process `syz.4.77'. [ 92.734458][ T6162] EXT4-fs (loop1): free_blocks=2415919104 [ 92.744139][ T6188] loop3: detected capacity change from 0 to 1024 [ 92.761617][ T6188] ======================================================= [ 92.761617][ T6188] WARNING: The mand mount option has been deprecated and [ 92.761617][ T6188] and is ignored by this kernel. Remove the mand [ 92.761617][ T6188] option from the mount to silence this warning. [ 92.761617][ T6188] ======================================================= [ 92.775113][ T6162] EXT4-fs (loop1): dirty_blocks=2256 [ 92.840095][ T6162] EXT4-fs (loop1): Block reservation details [ 92.865536][ T6162] EXT4-fs (loop1): i_reserved_data_blocks=141 [ 92.926826][ T6188] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 93.003151][ T6195] netlink: 96 bytes leftover after parsing attributes in process `syz.4.80'. [ 93.254240][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 93.269137][ T195] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 190 with error 28 [ 93.403780][ T6204] loop3: detected capacity change from 0 to 164 [ 93.671220][ T6211] netlink: 'syz.4.88': attribute type 1 has an invalid length. [ 93.679205][ T6211] netlink: 16134 bytes leftover after parsing attributes in process `syz.4.88'. [ 93.696499][ T6211] netlink: 'syz.4.88': attribute type 1 has an invalid length. [ 93.731173][ T6211] netlink: 16134 bytes leftover after parsing attributes in process `syz.4.88'. [ 94.208787][ T5943] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 94.235071][ T5943] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 94.244342][ T6227] loop3: detected capacity change from 0 to 1024 [ 94.265181][ T5943] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 94.273867][ T6227] EXT4-fs: Ignoring removed nomblk_io_submit option [ 94.299898][ T5943] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 94.339696][ T5943] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 94.349087][ T6224] syzkaller0: entered promiscuous mode [ 94.368582][ T6224] syzkaller0: entered allmulticast mode [ 94.374299][ T5943] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 94.397621][ T5943] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 94.414831][ T5943] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 94.416923][ T6227] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 94.423005][ T5943] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 94.442415][ T5943] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 94.469109][ T5943] hid-generic 0003:0004:0000.0001: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 94.523319][ T6237] atomic_op ffff888057b6a198 conn xmit_atomic 0000000000000000 [ 94.620331][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.879475][ T6243] netlink: 8 bytes leftover after parsing attributes in process `syz.2.100'. [ 95.268007][ T6249] loop3: detected capacity change from 0 to 8192 [ 95.369198][ T6256] loop4: detected capacity change from 0 to 128 [ 97.903381][ T6275] loop3: detected capacity change from 0 to 256 [ 97.933641][ T5958] hid-generic 0003:0004:0000.0002: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 97.982682][ T6275] FAT-fs (loop3): Directory bread(block 64) failed [ 98.031485][ T6275] FAT-fs (loop3): Directory bread(block 65) failed [ 98.059285][ T6275] FAT-fs (loop3): Directory bread(block 66) failed [ 98.070578][ T6275] FAT-fs (loop3): Directory bread(block 67) failed [ 98.100043][ T6275] FAT-fs (loop3): Directory bread(block 68) failed [ 98.136151][ T6275] FAT-fs (loop3): Directory bread(block 69) failed [ 98.153793][ T6275] FAT-fs (loop3): Directory bread(block 70) failed [ 98.183393][ T6275] FAT-fs (loop3): Directory bread(block 71) failed [ 98.209308][ T6275] FAT-fs (loop3): Directory bread(block 72) failed [ 98.220858][ T6275] FAT-fs (loop3): Directory bread(block 73) failed [ 98.300740][ T30] kauditd_printk_skb: 7 callbacks suppressed [ 98.300756][ T30] audit: type=1326 audit(1757467633.658:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6287 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 98.348269][ T6288] netlink: 204 bytes leftover after parsing attributes in process `syz.1.118'. [ 98.410341][ T30] audit: type=1326 audit(1757467633.658:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6287 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 98.490037][ T30] audit: type=1326 audit(1757467633.698:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6287 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 98.581096][ T30] audit: type=1326 audit(1757467633.698:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6287 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 98.658815][ T30] audit: type=1326 audit(1757467633.698:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6287 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 98.729594][ T6299] loop1: detected capacity change from 0 to 512 [ 98.752156][ T30] audit: type=1326 audit(1757467633.708:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6287 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 98.804969][ T6299] EXT4-fs: Ignoring removed bh option [ 98.805842][ T6301] netlink: 8 bytes leftover after parsing attributes in process `syz.3.125'. [ 98.832386][ T6299] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 98.841266][ T30] audit: type=1326 audit(1757467633.708:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6287 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 98.897018][ T6306] netlink: 48 bytes leftover after parsing attributes in process `syz.2.126'. [ 98.921832][ T30] audit: type=1326 audit(1757467633.708:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6287 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 98.944629][ T30] audit: type=1326 audit(1757467633.708:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6287 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 98.946253][ T6299] EXT4-fs (loop1): 1 truncate cleaned up [ 98.969851][ T30] audit: type=1326 audit(1757467633.708:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6287 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 99.037352][ T6299] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 99.166202][ T6299] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 1073741827 (only 1 groups) [ 99.333956][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.761641][ T6336] loop0: detected capacity change from 0 to 512 [ 99.797672][ T6336] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.138: casefold flag without casefold feature [ 99.823560][ T6336] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.138: couldn't read orphan inode 15 (err -117) [ 99.861801][ T6336] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.999407][ T6346] netlink: 96 bytes leftover after parsing attributes in process `syz.4.142'. [ 100.007940][ T6347] loop2: detected capacity change from 0 to 512 [ 100.078480][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.147169][ T6347] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.257634][ T6347] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 100.323285][ T6353] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 100.332173][ T6353] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 100.361696][ T6353] netdevsim netdevsim1: Falling back to sysfs fallback for: . [ 101.119398][ T1098] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 101.203233][ T6365] lo speed is unknown, defaulting to 1000 [ 101.230522][ T1098] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 5 with max blocks 1365 with error 28 [ 101.259225][ T1098] EXT4-fs (loop2): This should not happen!! Data will be lost [ 101.259225][ T1098] [ 101.267137][ T6365] lo speed is unknown, defaulting to 1000 [ 101.298752][ T1098] EXT4-fs (loop2): Total free blocks count 0 [ 101.304777][ T1098] EXT4-fs (loop2): Free/Dirty block details [ 101.314660][ T6365] lo speed is unknown, defaulting to 1000 [ 101.332283][ T1098] EXT4-fs (loop2): free_blocks=65280 [ 101.345106][ T1098] EXT4-fs (loop2): dirty_blocks=1367 [ 101.352392][ T6365] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 101.355143][ T1098] EXT4-fs (loop2): Block reservation details [ 101.381478][ T1098] EXT4-fs (loop2): i_reserved_data_blocks=1367 [ 101.392161][ T6365] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 101.494157][ T6365] lo speed is unknown, defaulting to 1000 [ 101.521663][ T6365] lo speed is unknown, defaulting to 1000 [ 101.530298][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.533710][ T6365] lo speed is unknown, defaulting to 1000 [ 101.609256][ T6365] lo speed is unknown, defaulting to 1000 [ 101.646471][ T6375] netlink: 4 bytes leftover after parsing attributes in process `syz.3.155'. [ 101.667298][ T6365] lo speed is unknown, defaulting to 1000 [ 102.557686][ T6388] netlink: 48 bytes leftover after parsing attributes in process `syz.0.158'. [ 102.883341][ T6396] syzkaller1: entered promiscuous mode [ 102.891162][ T6396] syzkaller1: entered allmulticast mode [ 103.063893][ T6411] loop4: detected capacity change from 0 to 164 [ 103.684388][ T6432] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22 [ 103.693920][ T6432] netdevsim netdevsim4: Direct firmware load for . failed with error -22 [ 103.702928][ T6432] netdevsim netdevsim4: Falling back to sysfs fallback for: . [ 105.262231][ T6481] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.292697][ T6482] netlink: 'syz.1.199': attribute type 1 has an invalid length. [ 105.325612][ T6482] 8021q: adding VLAN 0 to HW filter on device bond1 [ 105.378783][ T6481] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.419473][ T9] hid_parser_main: 26 callbacks suppressed [ 105.419492][ T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 105.434701][ T9] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 105.492278][ T6481] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.647201][ T6481] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.854898][ T12] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.910993][ T65] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.965651][ T195] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.046429][ T195] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.802711][ T6534] loop0: detected capacity change from 0 to 256 [ 106.917436][ T6534] FAT-fs (loop0): Directory bread(block 64) failed [ 106.940250][ T6534] FAT-fs (loop0): Directory bread(block 65) failed [ 106.954421][ T6534] FAT-fs (loop0): Directory bread(block 66) failed [ 106.979763][ T6534] FAT-fs (loop0): Directory bread(block 67) failed [ 106.998288][ T6534] FAT-fs (loop0): Directory bread(block 68) failed [ 107.006483][ T6534] FAT-fs (loop0): Directory bread(block 69) failed [ 107.013678][ T6534] FAT-fs (loop0): Directory bread(block 70) failed [ 107.024651][ T6534] FAT-fs (loop0): Directory bread(block 71) failed [ 107.032385][ T6534] FAT-fs (loop0): Directory bread(block 72) failed [ 107.039493][ T6534] FAT-fs (loop0): Directory bread(block 73) failed [ 107.149710][ T6542] loop3: detected capacity change from 0 to 8192 [ 107.398226][ T6550] netlink: 7 bytes leftover after parsing attributes in process `syz.0.229'. [ 107.439493][ T6550] netlink: 7 bytes leftover after parsing attributes in process `syz.0.229'. [ 108.132109][ T6573] loop4: detected capacity change from 0 to 128 [ 108.186151][ T6575] loop2: detected capacity change from 0 to 7 [ 108.225964][ T6575] Dev loop2: unable to read RDB block 7 [ 108.233417][ T6575] loop2: AHDI p1 p2 p3 [ 108.253859][ T6573] bio_check_eod: 307 callbacks suppressed [ 108.253879][ T6573] syz.4.238: attempt to access beyond end of device [ 108.253879][ T6573] loop4: rw=2049, sector=138, nr_sectors = 8 limit=128 [ 108.275284][ T6575] loop2: partition table partially beyond EOD, truncated [ 108.282544][ T6575] loop2: p1 start 1601398130 is beyond EOD, truncated [ 108.319495][ T6575] loop2: p2 start 1702059890 is beyond EOD, truncated [ 108.346856][ T6573] syz.4.238: attempt to access beyond end of device [ 108.346856][ T6573] loop4: rw=2049, sector=146, nr_sectors = 8 limit=128 [ 108.435253][ T6573] syz.4.238: attempt to access beyond end of device [ 108.435253][ T6573] loop4: rw=2049, sector=152, nr_sectors = 2 limit=128 [ 108.464487][ T6584] netlink: 28 bytes leftover after parsing attributes in process `syz.3.245'. [ 108.488018][ T6584] netlink: 8 bytes leftover after parsing attributes in process `syz.3.245'. [ 108.510192][ T6573] Buffer I/O error on dev loop4, logical block 76, lost async page write [ 108.653316][ T6573] syz.4.238: attempt to access beyond end of device [ 108.653316][ T6573] loop4: rw=2049, sector=170, nr_sectors = 8 limit=128 [ 108.785508][ T6573] syz.4.238: attempt to access beyond end of device [ 108.785508][ T6573] loop4: rw=2049, sector=176, nr_sectors = 2 limit=128 [ 108.874037][ T6573] Buffer I/O error on dev loop4, logical block 88, lost async page write [ 108.919181][ T6573] syz.4.238: attempt to access beyond end of device [ 108.919181][ T6573] loop4: rw=2049, sector=178, nr_sectors = 8 limit=128 [ 109.019058][ T6573] syz.4.238: attempt to access beyond end of device [ 109.019058][ T6573] loop4: rw=2049, sector=184, nr_sectors = 2 limit=128 [ 109.176898][ T6573] Buffer I/O error on dev loop4, logical block 92, lost async page write [ 109.237961][ T6607] loop2: detected capacity change from 0 to 7 [ 109.275837][ T6607] Dev loop2: unable to read RDB block 7 [ 109.283674][ T6607] loop2: AHDI p1 p2 p3 [ 109.308406][ T6607] loop2: partition table partially beyond EOD, truncated [ 109.328835][ T6607] loop2: p1 start 1601398130 is beyond EOD, truncated [ 109.348873][ T6607] loop2: p2 start 1702059890 is beyond EOD, truncated [ 109.995481][ T6634] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.268'. [ 110.011021][ T6634] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.268'. [ 110.833007][ T6664] netlink: 28 bytes leftover after parsing attributes in process `syz.2.281'. [ 110.949645][ T6664] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 112.401166][ T30] kauditd_printk_skb: 5 callbacks suppressed [ 112.401183][ T30] audit: type=1326 audit(1757467647.748:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.3.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 112.494594][ T30] audit: type=1326 audit(1757467647.748:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.3.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 112.631798][ T30] audit: type=1326 audit(1757467647.748:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.3.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 112.663440][ T6714] netlink: 20 bytes leftover after parsing attributes in process `syz.1.298'. [ 112.694180][ T30] audit: type=1326 audit(1757467647.798:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.3.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 112.783743][ T30] audit: type=1326 audit(1757467647.798:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.3.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 114.171288][ T5944] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 114.231579][ T5944] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 114.261107][ T30] audit: type=1326 audit(1757467649.548:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6742 comm="syz.2.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 114.342045][ T5944] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 114.411630][ T5944] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 114.484161][ T5944] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 114.504680][ T30] audit: type=1326 audit(1757467649.548:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6742 comm="syz.2.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 114.612080][ T5944] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 114.685179][ T5944] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 114.736993][ T5944] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 114.744682][ T30] audit: type=1326 audit(1757467649.548:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6742 comm="syz.2.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 114.821661][ T5944] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 114.880935][ T5944] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 114.950954][ T30] audit: type=1326 audit(1757467649.598:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6742 comm="syz.2.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 115.041266][ T5944] hid-generic 0003:0004:0000.0004: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 115.144181][ T6749] loop3: detected capacity change from 0 to 8192 [ 115.160788][ T30] audit: type=1326 audit(1757467649.598:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6742 comm="syz.2.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 115.310077][ T6755] fido_id[6755]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 115.944150][ T6777] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22 [ 115.972334][ T6777] netdevsim netdevsim4: Direct firmware load for . failed with error -22 [ 116.001905][ T6777] netdevsim netdevsim4: Falling back to sysfs fallback for: . [ 116.197099][ T6781] loop1: detected capacity change from 0 to 2048 [ 116.302605][ T6781] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 116.534627][ T6793] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 116.593964][ T6793] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 304 with error 28 [ 116.646908][ T6793] EXT4-fs (loop1): This should not happen!! Data will be lost [ 116.646908][ T6793] [ 116.683168][ T6793] EXT4-fs (loop1): Total free blocks count 0 [ 116.703277][ T6805] mmap: syz.3.334 (6805) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 116.703326][ T6793] EXT4-fs (loop1): Free/Dirty block details [ 116.732552][ T6793] EXT4-fs (loop1): free_blocks=2415919104 [ 116.736026][ T6805] netlink: 'syz.3.334': attribute type 10 has an invalid length. [ 116.739523][ T6793] EXT4-fs (loop1): dirty_blocks=320 [ 116.757349][ T6793] EXT4-fs (loop1): Block reservation details [ 116.763699][ T6793] EXT4-fs (loop1): i_reserved_data_blocks=20 [ 116.790921][ T6802] loop2: detected capacity change from 0 to 2048 [ 116.798282][ T6807] netlink: 'syz.3.334': attribute type 10 has an invalid length. [ 116.837716][ T6805] team0: Port device dummy0 added [ 116.873912][ T6807] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 116.929285][ T6802] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 116.948716][ T6807] team0: Failed to send options change via netlink (err -105) [ 116.956511][ T6807] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 116.972087][ T6807] team0: Port device dummy0 removed [ 116.982336][ T6807] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 117.152111][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 117.182624][ T6821] loop0: detected capacity change from 0 to 256 [ 117.217759][ T6819] netlink: 'syz.2.333': attribute type 10 has an invalid length. [ 117.274518][ T6819] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 117.330000][ T6821] FAT-fs (loop0): Directory bread(block 64) failed [ 117.352145][ T6819] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 117.372496][ T6821] FAT-fs (loop0): Directory bread(block 65) failed [ 117.379811][ T6821] FAT-fs (loop0): Directory bread(block 66) failed [ 117.390021][ T6821] FAT-fs (loop0): Directory bread(block 67) failed [ 117.404640][ T6821] FAT-fs (loop0): Directory bread(block 68) failed [ 117.457287][ T6821] FAT-fs (loop0): Directory bread(block 69) failed [ 117.484848][ T6821] FAT-fs (loop0): Directory bread(block 70) failed [ 117.545430][ T6821] FAT-fs (loop0): Directory bread(block 71) failed [ 117.586465][ T6821] FAT-fs (loop0): Directory bread(block 72) failed [ 117.596838][ T6819] syz.2.333 (6819) used greatest stack depth: 17784 bytes left [ 117.609938][ T6821] FAT-fs (loop0): Directory bread(block 73) failed [ 117.655189][ T6833] netlink: 96 bytes leftover after parsing attributes in process `syz.1.346'. [ 117.707580][ T6835] loop3: detected capacity change from 0 to 512 [ 117.733100][ T6835] EXT4-fs: Ignoring removed mblk_io_submit option [ 117.761482][ T6835] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 117.765989][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.827747][ T6835] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0082] [ 117.856748][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 117.856766][ T30] audit: type=1326 audit(1757467653.198:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6840 comm="syz.1.350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 117.872360][ T6835] System zones: 1-12 [ 117.896397][ T6835] EXT4-fs (loop3): 1 truncate cleaned up [ 117.900312][ T30] audit: type=1326 audit(1757467653.208:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6840 comm="syz.1.350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 117.929060][ T30] audit: type=1326 audit(1757467653.248:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6840 comm="syz.1.350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 117.953844][ T30] audit: type=1326 audit(1757467653.248:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6840 comm="syz.1.350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 117.961446][ T6835] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 118.139985][ T6845] loop0: detected capacity change from 0 to 2048 [ 118.210700][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 118.253624][ T6845] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 118.285513][ T6853] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.355'. [ 118.296066][ T6853] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.355'. [ 118.411690][ T6854] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 118.509460][ T6854] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 434 with error 28 [ 118.530525][ T6854] EXT4-fs (loop0): This should not happen!! Data will be lost [ 118.530525][ T6854] [ 118.581174][ T6854] EXT4-fs (loop0): Total free blocks count 0 [ 118.587384][ T6854] EXT4-fs (loop0): Free/Dirty block details [ 118.593307][ T6854] EXT4-fs (loop0): free_blocks=2415919104 [ 118.600035][ T6861] loop1: detected capacity change from 0 to 512 [ 118.616356][ T6866] netlink: 24 bytes leftover after parsing attributes in process `syz.3.359'. [ 118.635169][ T6854] EXT4-fs (loop0): dirty_blocks=448 [ 118.642154][ T6854] EXT4-fs (loop0): Block reservation details [ 118.644228][ T6861] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.357: iget: bad i_size value: 38620345925642 [ 118.650316][ T6854] EXT4-fs (loop0): i_reserved_data_blocks=28 [ 118.753214][ T6861] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.357: couldn't read orphan inode 15 (err -117) [ 118.765469][ T6871] netlink: 'syz.4.360': attribute type 1 has an invalid length. [ 118.794328][ T6861] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 118.802876][ T6869] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.857627][ T6864] tipc: Started in network mode [ 118.862656][ T6864] tipc: Node identity f6d08ea9df97, cluster identity 4711 [ 118.880961][ T6864] tipc: Enabled bearer , priority 0 [ 118.891100][ T6870] syzkaller0: entered promiscuous mode [ 118.902049][ T6870] syzkaller0: entered allmulticast mode [ 118.943986][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 118.946376][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 119.058554][ T6871] 8021q: adding VLAN 0 to HW filter on device bond1 [ 119.142359][ T6880] loop3: detected capacity change from 0 to 512 [ 119.193907][ T6869] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.232263][ T6880] EXT4-fs: Ignoring removed mblk_io_submit option [ 119.273420][ T6880] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 119.313058][ T6864] tipc: Resetting bearer [ 119.336544][ T6880] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0082] [ 119.365774][ T6880] System zones: 1-12 [ 119.403407][ T6880] EXT4-fs (loop3): 1 truncate cleaned up [ 119.416004][ T6880] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 119.442757][ T30] audit: type=1804 audit(1757467654.798:65): pid=6880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.364" name="/newroot/87/bus/bus" dev="loop3" ino=18 res=1 errno=0 [ 119.493883][ T30] audit: type=1326 audit(1757467654.848:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.1.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 119.517836][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.582319][ T6869] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.592931][ T30] audit: type=1326 audit(1757467654.848:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.1.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 119.651113][ T30] audit: type=1326 audit(1757467654.848:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.1.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 119.680448][ T30] audit: type=1326 audit(1757467654.938:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.1.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 119.683023][ T6894] loop0: detected capacity change from 0 to 164 [ 119.709355][ T30] audit: type=1326 audit(1757467654.938:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.1.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 119.744807][ T6863] tipc: Resetting bearer [ 119.745773][ T6893] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.367'. [ 119.823790][ T6893] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.367'. [ 119.834884][ T6863] tipc: Disabling bearer [ 119.988548][ T6869] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.249645][ T6909] loop2: detected capacity change from 0 to 512 [ 120.322143][ T6909] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.373: iget: bad i_size value: 38620345925642 [ 120.350863][ T6912] netlink: 28 bytes leftover after parsing attributes in process `syz.0.375'. [ 120.359973][ T6912] netlink: 8 bytes leftover after parsing attributes in process `syz.0.375'. [ 120.405571][ T6909] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.373: couldn't read orphan inode 15 (err -117) [ 120.488125][ T6909] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 120.523910][ T65] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.599901][ T6920] loop1: detected capacity change from 0 to 512 [ 120.622330][ T6920] EXT4-fs: Ignoring removed mblk_io_submit option [ 120.659005][ T6920] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 120.748531][ T12] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.764929][ T6920] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0082] [ 120.774380][ T6920] System zones: 1-12 [ 120.787381][ T12] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.862912][ T6920] EXT4-fs (loop1): 1 truncate cleaned up [ 120.881102][ T6920] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 120.950835][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.977883][ T1019] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.106948][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.596705][ T6943] loop4: detected capacity change from 0 to 1024 [ 121.603383][ T6944] netlink: 96 bytes leftover after parsing attributes in process `syz.2.387'. [ 121.625872][ T6943] EXT4-fs: Ignoring removed nobh option [ 121.654168][ T6943] EXT4-fs: inline encryption not supported [ 121.750749][ T6943] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 121.806434][ T6951] loop2: detected capacity change from 0 to 512 [ 121.828180][ T6951] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.390: iget: bad i_size value: 38620345925642 [ 121.852425][ T6953] loop3: detected capacity change from 0 to 512 [ 121.907541][ T6953] EXT4-fs: Ignoring removed mblk_io_submit option [ 121.947602][ T6951] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.390: couldn't read orphan inode 15 (err -117) [ 121.966281][ T6953] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 122.020443][ T6953] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0082] [ 122.048746][ T6951] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 122.114898][ T6953] System zones: 1-12 [ 122.122563][ T6953] EXT4-fs (loop3): 1 truncate cleaned up [ 122.140428][ T6953] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 122.202014][ T5864] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.400906][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.484296][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.795907][ T6978] netlink: 96 bytes leftover after parsing attributes in process `syz.0.400'. [ 122.876439][ T30] kauditd_printk_skb: 7 callbacks suppressed [ 122.876456][ T30] audit: type=1326 audit(1757467658.228:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.3.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 123.008416][ T30] audit: type=1326 audit(1757467658.268:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.3.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 123.098374][ T30] audit: type=1326 audit(1757467658.268:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.3.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 123.202655][ T30] audit: type=1326 audit(1757467658.268:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.3.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 123.343471][ T30] audit: type=1326 audit(1757467658.268:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.3.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 123.410323][ T6996] lo speed is unknown, defaulting to 1000 [ 123.423399][ T30] audit: type=1326 audit(1757467658.268:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.3.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 123.491996][ T30] audit: type=1326 audit(1757467658.278:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.3.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 123.515399][ T30] audit: type=1326 audit(1757467658.278:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.3.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 123.538591][ T30] audit: type=1326 audit(1757467658.278:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.3.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 123.579538][ T30] audit: type=1326 audit(1757467658.278:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.3.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 124.029165][ T7011] syzkaller0: entered promiscuous mode [ 124.034680][ T7011] syzkaller0: entered allmulticast mode [ 124.159110][ T7018] netlink: 96 bytes leftover after parsing attributes in process `syz.4.416'. [ 124.786817][ T7043] netlink: 28 bytes leftover after parsing attributes in process `syz.3.425'. [ 124.833466][ T7043] netlink: 8 bytes leftover after parsing attributes in process `syz.3.425'. [ 125.683596][ T7084] loop3: detected capacity change from 0 to 512 [ 126.368016][ T7084] EXT4-fs: Ignoring removed mblk_io_submit option [ 126.520123][ T7084] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 126.664617][ T7084] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0082] [ 126.722629][ T7084] System zones: 1-12 [ 126.793348][ T7084] EXT4-fs (loop3): 1 truncate cleaned up [ 126.832460][ T7084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 127.037738][ T7101] loop4: detected capacity change from 0 to 1024 [ 127.289641][ T7101] EXT4-fs: Ignoring removed oldalloc option [ 127.394146][ T7101] EXT4-fs: Ignoring removed nobh option [ 127.416028][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 127.574393][ T7101] ext4: Invalid uid '0x00000000ffffffff' [ 128.017950][ T7119] netlink: 204 bytes leftover after parsing attributes in process `syz.1.458'. [ 128.084277][ T7122] netlink: 156 bytes leftover after parsing attributes in process `syz.2.457'. [ 128.162699][ T7122] netlink: 'syz.2.457': attribute type 21 has an invalid length. [ 128.245269][ T7122] netlink: 132 bytes leftover after parsing attributes in process `syz.2.457'. [ 128.307772][ T7127] loop2: detected capacity change from 0 to 1024 [ 128.375701][ T7127] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 128.404940][ T7127] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 128.515180][ T7127] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #2: comm syz.2.457: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 2, max 1(4), depth 0(0) [ 128.574670][ T7127] EXT4-fs (loop2): no journal found [ 128.583758][ T7136] loop0: detected capacity change from 0 to 512 [ 128.604518][ T7136] EXT4-fs: Ignoring removed mblk_io_submit option [ 128.672994][ T7136] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 128.796932][ T7136] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0082] [ 128.837391][ T7136] System zones: 1-12 [ 128.867220][ T7136] EXT4-fs (loop0): 1 truncate cleaned up [ 128.888467][ T7136] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 128.892231][ T7123] sd 0:0:1:0: device reset [ 128.963496][ T30] kauditd_printk_skb: 10 callbacks suppressed [ 128.963512][ T30] audit: type=1804 audit(1757467664.318:98): pid=7136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.463" name="/newroot/103/bus/bus" dev="loop0" ino=18 res=1 errno=0 [ 129.104399][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 129.337833][ T30] audit: type=1326 audit(1757467664.688:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7154 comm="syz.0.473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 129.401531][ T7159] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 129.435247][ T30] audit: type=1326 audit(1757467664.688:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7154 comm="syz.0.473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 129.480201][ T7159] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 129.566312][ T30] audit: type=1326 audit(1757467664.688:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7154 comm="syz.0.473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 129.595421][ T30] audit: type=1326 audit(1757467664.688:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7154 comm="syz.0.473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 129.675470][ T30] audit: type=1326 audit(1757467664.688:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7154 comm="syz.0.473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 129.776831][ T7175] netlink: 8 bytes leftover after parsing attributes in process `syz.1.480'. [ 129.825221][ T7175] netlink: 8 bytes leftover after parsing attributes in process `syz.1.480'. [ 129.869714][ T7175] netlink: 20 bytes leftover after parsing attributes in process `syz.1.480'. [ 130.629012][ T7213] netlink: 96 bytes leftover after parsing attributes in process `syz.0.496'. [ 130.644431][ T7212] netlink: 8 bytes leftover after parsing attributes in process `syz.1.497'. [ 130.686230][ T7212] netlink: 324 bytes leftover after parsing attributes in process `syz.1.497'. [ 130.993572][ T7230] netlink: 48 bytes leftover after parsing attributes in process `syz.0.506'. [ 131.070530][ T7232] netlink: 60 bytes leftover after parsing attributes in process `syz.4.505'. [ 131.288994][ T7242] loop2: detected capacity change from 0 to 256 [ 131.353204][ T7246] netlink: 8 bytes leftover after parsing attributes in process `syz.3.513'. [ 131.382503][ T7246] netlink: 324 bytes leftover after parsing attributes in process `syz.3.513'. [ 131.403427][ T7242] FAT-fs (loop2): Directory bread(block 64) failed [ 131.438233][ T7242] FAT-fs (loop2): Directory bread(block 65) failed [ 131.466808][ T7242] FAT-fs (loop2): Directory bread(block 66) failed [ 131.501285][ T7242] FAT-fs (loop2): Directory bread(block 67) failed [ 131.535307][ T7242] FAT-fs (loop2): Directory bread(block 68) failed [ 131.541882][ T7242] FAT-fs (loop2): Directory bread(block 69) failed [ 131.574064][ T7242] FAT-fs (loop2): Directory bread(block 70) failed [ 131.593275][ T30] audit: type=1326 audit(1757467666.948:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7251 comm="syz.0.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 131.624499][ T7242] FAT-fs (loop2): Directory bread(block 71) failed [ 131.645242][ T7242] FAT-fs (loop2): Directory bread(block 72) failed [ 131.661325][ T30] audit: type=1326 audit(1757467666.948:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7251 comm="syz.0.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 131.675460][ T7242] FAT-fs (loop2): Directory bread(block 73) failed [ 131.692885][ T30] audit: type=1326 audit(1757467666.948:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7251 comm="syz.0.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 131.692936][ T30] audit: type=1326 audit(1757467667.008:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7251 comm="syz.0.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 132.900233][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.096901][ T7288] capability: warning: `syz.2.527' uses deprecated v2 capabilities in a way that may be insecure [ 133.578848][ T7295] loop0: detected capacity change from 0 to 256 [ 133.729009][ T7301] siw: device registration error -23 [ 133.768965][ T7295] FAT-fs (loop0): Directory bread(block 64) failed [ 133.810199][ T7295] FAT-fs (loop0): Directory bread(block 65) failed [ 133.856075][ T7295] FAT-fs (loop0): Directory bread(block 66) failed [ 133.914863][ T7295] FAT-fs (loop0): Directory bread(block 67) failed [ 133.976321][ T7295] FAT-fs (loop0): Directory bread(block 68) failed [ 134.065467][ T7295] FAT-fs (loop0): Directory bread(block 69) failed [ 134.106042][ T7295] FAT-fs (loop0): Directory bread(block 70) failed [ 134.154264][ T7295] FAT-fs (loop0): Directory bread(block 71) failed [ 134.192050][ T7295] FAT-fs (loop0): Directory bread(block 72) failed [ 134.250690][ T7295] FAT-fs (loop0): Directory bread(block 73) failed [ 134.428606][ T7313] loop3: detected capacity change from 0 to 1024 [ 134.436891][ T7313] EXT4-fs: Ignoring removed oldalloc option [ 134.444798][ T7313] EXT4-fs: Ignoring removed nobh option [ 134.450503][ T7313] ext4: Invalid uid '0x00000000ffffffff' [ 134.901722][ T7329] __nla_validate_parse: 1 callbacks suppressed [ 134.901741][ T7329] netlink: 8 bytes leftover after parsing attributes in process `syz.0.544'. [ 134.965112][ T7329] netlink: 8 bytes leftover after parsing attributes in process `syz.0.544'. [ 135.072853][ T7334] loop2: detected capacity change from 0 to 512 [ 135.220106][ T7334] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.547: iget: bad i_size value: 38620345925642 [ 135.301117][ T7350] loop4: detected capacity change from 0 to 256 [ 135.317994][ T7334] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.547: couldn't read orphan inode 15 (err -117) [ 135.387374][ T7334] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 135.443827][ T7350] FAT-fs (loop4): Directory bread(block 64) failed [ 135.492832][ T7350] FAT-fs (loop4): Directory bread(block 65) failed [ 135.528568][ T7350] FAT-fs (loop4): Directory bread(block 66) failed [ 135.541735][ T7350] FAT-fs (loop4): Directory bread(block 67) failed [ 135.553049][ T7353] loop0: detected capacity change from 0 to 1024 [ 135.561755][ T7350] FAT-fs (loop4): Directory bread(block 68) failed [ 135.589075][ T7350] FAT-fs (loop4): Directory bread(block 69) failed [ 135.614149][ T7353] EXT4-fs: Ignoring removed oldalloc option [ 135.625685][ T7350] FAT-fs (loop4): Directory bread(block 70) failed [ 135.645153][ T7350] FAT-fs (loop4): Directory bread(block 71) failed [ 135.647451][ T7353] EXT4-fs: Ignoring removed nobh option [ 135.651789][ T7350] FAT-fs (loop4): Directory bread(block 72) failed [ 135.651821][ T7350] FAT-fs (loop4): Directory bread(block 73) failed [ 135.764390][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.784468][ T7353] ext4: Invalid uid '0x00000000ffffffff' [ 136.060330][ T7368] netlink: 8 bytes leftover after parsing attributes in process `syz.4.562'. [ 136.095606][ T7368] netlink: 324 bytes leftover after parsing attributes in process `syz.4.562'. [ 136.425842][ T7382] netlink: 16162 bytes leftover after parsing attributes in process `syz.1.567'. [ 136.492552][ T7385] netlink: 16162 bytes leftover after parsing attributes in process `syz.1.567'. [ 136.617299][ T7387] loop0: detected capacity change from 0 to 2048 [ 136.703408][ T7387] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.903373][ T7407] loop1: detected capacity change from 0 to 512 [ 136.932414][ T7407] EXT4-fs: Ignoring removed mblk_io_submit option [ 136.964717][ T7407] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 137.043949][ T7407] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0082] [ 137.083885][ T7407] System zones: 1-12 [ 137.115942][ T7407] EXT4-fs (loop1): 1 truncate cleaned up [ 137.123741][ T7407] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.200140][ T30] kauditd_printk_skb: 5 callbacks suppressed [ 137.200157][ T30] audit: type=1804 audit(1757467672.558:113): pid=7407 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.576" name="/newroot/111/bus/bus" dev="loop1" ino=18 res=1 errno=0 [ 137.522712][ T7420] netlink: 8 bytes leftover after parsing attributes in process `syz.4.579'. [ 137.543192][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.556960][ T7420] netlink: 324 bytes leftover after parsing attributes in process `syz.4.579'. [ 137.751785][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.072078][ T7439] netlink: 96 bytes leftover after parsing attributes in process `syz.4.586'. [ 138.871367][ T30] audit: type=1326 audit(1757467674.208:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7443 comm="syz.0.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 138.902026][ T7447] netlink: 8 bytes leftover after parsing attributes in process `syz.1.588'. [ 139.316805][ T30] audit: type=1326 audit(1757467674.208:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7443 comm="syz.0.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 139.339148][ T30] audit: type=1326 audit(1757467674.208:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7443 comm="syz.0.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 139.363296][ T30] audit: type=1326 audit(1757467674.278:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7443 comm="syz.0.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 139.385729][ T30] audit: type=1326 audit(1757467674.278:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7443 comm="syz.0.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 139.703755][ T7458] loop0: detected capacity change from 0 to 2048 [ 139.815451][ T7458] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 139.880599][ T7472] loop3: detected capacity change from 0 to 512 [ 139.957973][ T7472] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.595: iget: bad i_size value: 38620345925642 [ 140.025815][ T7472] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.595: couldn't read orphan inode 15 (err -117) [ 140.272332][ T7472] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 140.965087][ T7470] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 141.022762][ T7488] netlink: 8 bytes leftover after parsing attributes in process `syz.4.602'. [ 141.155083][ T30] audit: type=1326 audit(1757467676.488:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7489 comm="syz.4.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 141.201613][ T7492] netlink: 204 bytes leftover after parsing attributes in process `syz.2.605'. [ 141.224644][ T30] audit: type=1326 audit(1757467676.488:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7489 comm="syz.4.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 141.355546][ T30] audit: type=1326 audit(1757467676.498:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7489 comm="syz.4.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 141.382392][ T30] audit: type=1326 audit(1757467676.548:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7489 comm="syz.4.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 141.847703][ T7505] loop1: detected capacity change from 0 to 512 [ 141.887606][ T7505] EXT4-fs: Ignoring removed mblk_io_submit option [ 141.941905][ T7509] loop4: detected capacity change from 0 to 512 [ 141.960659][ T7508] loop2: detected capacity change from 0 to 2048 [ 142.170152][ T7505] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 142.189698][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.208685][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.294665][ T7508] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 142.306951][ T7505] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0082] [ 142.365848][ T7509] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 142.400484][ T7505] System zones: 1-12 [ 142.448343][ T7505] EXT4-fs (loop1): 1 truncate cleaned up [ 142.466069][ T7509] ext4 filesystem being mounted at /115/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 142.546964][ T7505] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 142.672132][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 142.672149][ T30] audit: type=1804 audit(1757467678.018:124): pid=7505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.612" name="/newroot/119/bus/bus" dev="loop1" ino=18 res=1 errno=0 [ 142.691204][ T5864] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.898638][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.038794][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.104854][ T7529] netlink: 204 bytes leftover after parsing attributes in process `syz.1.617'. [ 143.482454][ T7534] loop4: detected capacity change from 0 to 512 [ 143.612507][ T7534] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.620: iget: bad i_size value: 38620345925642 [ 143.655178][ T7534] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.620: couldn't read orphan inode 15 (err -117) [ 143.715936][ T7551] loop2: detected capacity change from 0 to 512 [ 143.746724][ T7534] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 143.841785][ T7551] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 143.952086][ T7551] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 144.153594][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.856139][ T7568] netlink: 204 bytes leftover after parsing attributes in process `syz.3.632'. [ 145.043192][ T5864] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.566895][ T7608] netlink: 96 bytes leftover after parsing attributes in process `syz.3.649'. [ 147.829588][ T7634] netlink: 96 bytes leftover after parsing attributes in process `syz.1.660'. [ 147.919811][ T7638] loop2: detected capacity change from 0 to 7 [ 147.972349][ T7638] Dev loop2: unable to read RDB block 7 [ 147.992527][ T7638] loop2: unable to read partition table [ 148.010499][ T7638] loop2: partition table beyond EOD, truncated [ 148.045140][ T7638] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 148.372042][ T7646] syzkaller0: entered promiscuous mode [ 148.395041][ T7646] syzkaller0: entered allmulticast mode [ 150.422103][ T7689] netlink: 60 bytes leftover after parsing attributes in process `syz.3.677'. [ 150.869361][ T7706] loop3: detected capacity change from 0 to 1024 [ 150.926785][ T7706] EXT4-fs: Ignoring removed oldalloc option [ 150.969676][ T7706] EXT4-fs: Ignoring removed nobh option [ 150.996900][ T7706] ext4: Invalid uid '0x00000000ffffffff' [ 151.198981][ T7695] team0 (unregistering): Port device team_slave_0 removed [ 151.279752][ T7695] team0 (unregistering): Port device team_slave_1 removed [ 151.374787][ T7701] netlink: 96 bytes leftover after parsing attributes in process `syz.2.683'. [ 152.392810][ T30] audit: type=1326 audit(1757467687.518:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7756 comm="syz.0.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 152.483983][ T30] audit: type=1326 audit(1757467687.518:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7756 comm="syz.0.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 152.510739][ T30] audit: type=1326 audit(1757467687.518:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7756 comm="syz.0.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 152.630629][ T30] audit: type=1326 audit(1757467687.578:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7756 comm="syz.0.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 152.721276][ T30] audit: type=1326 audit(1757467687.578:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7756 comm="syz.0.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 152.945746][ T7772] netlink: 'syz.4.705': attribute type 2 has an invalid length. [ 153.007708][ T7772] netlink: 5356 bytes leftover after parsing attributes in process `syz.4.705'. [ 153.731841][ T7776] syzkaller0: entered promiscuous mode [ 153.829418][ T7776] syzkaller0: entered allmulticast mode [ 153.864844][ T7786] netlink: 96 bytes leftover after parsing attributes in process `syz.4.712'. [ 155.315257][ T30] audit: type=1326 audit(1757467690.668:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 155.348715][ T30] audit: type=1326 audit(1757467690.668:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 155.392201][ T30] audit: type=1326 audit(1757467690.668:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 155.452625][ T30] audit: type=1326 audit(1757467690.668:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 157.393675][ T7829] netlink: 96 bytes leftover after parsing attributes in process `syz.2.727'. [ 158.275024][ T30] audit: type=1326 audit(1757467693.628:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.1.740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 158.385033][ T30] audit: type=1326 audit(1757467693.628:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.1.740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 158.477371][ T30] audit: type=1326 audit(1757467693.628:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.1.740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a738eba9 code=0x7ffc0000 [ 158.521175][ T7859] syzkaller0: entered promiscuous mode [ 158.555080][ T7859] syzkaller0: entered allmulticast mode [ 161.202753][ T7897] netlink: 12 bytes leftover after parsing attributes in process `syz.2.758'. [ 161.245615][ T7896] loop1: detected capacity change from 0 to 2048 [ 161.368793][ T7896] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 161.428525][ T7905] loop2: detected capacity change from 0 to 512 [ 161.492439][ T7905] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.758: iget: bad i_size value: 38620345925642 [ 161.624719][ T7905] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.758: couldn't read orphan inode 15 (err -117) [ 161.643764][ T7905] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.974058][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.217294][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.357248][ T7925] netlink: 96 bytes leftover after parsing attributes in process `syz.0.767'. [ 162.692541][ T7938] siw: device registration error -23 [ 162.817037][ T7942] netlink: 'syz.0.774': attribute type 1 has an invalid length. [ 162.845174][ T7942] netlink: 'syz.0.774': attribute type 4 has an invalid length. [ 162.877978][ T7942] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.774'. [ 162.918433][ T7942] netlink: 'syz.0.774': attribute type 1 has an invalid length. [ 162.961857][ T7942] netlink: 'syz.0.774': attribute type 4 has an invalid length. [ 162.977279][ T7942] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.774'. [ 163.518218][ T7963] netlink: 'syz.2.784': attribute type 10 has an invalid length. [ 163.560261][ T7963] netlink: 40 bytes leftover after parsing attributes in process `syz.2.784'. [ 163.649680][ T7963] team0: Port device geneve0 added [ 164.229353][ T7961] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 164.229353][ T7961] program syz.0.783 not setting count and/or reply_len properly [ 164.581970][ T7988] loop2: detected capacity change from 0 to 512 [ 164.648156][ T7988] EXT4-fs: Ignoring removed mblk_io_submit option [ 164.664418][ T7988] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 164.706454][ T7988] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0082] [ 164.745144][ T7988] System zones: 1-12 [ 164.778402][ T7988] EXT4-fs (loop2): 1 truncate cleaned up [ 164.823802][ T7988] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.842369][ T30] audit: type=1804 audit(1757467700.198:137): pid=7988 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.795" name="/newroot/170/bus/bus" dev="loop2" ino=18 res=1 errno=0 [ 165.478267][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.843862][ T8030] netlink: 204 bytes leftover after parsing attributes in process `syz.3.811'. [ 166.529732][ T8055] loop4: detected capacity change from 0 to 512 [ 166.563055][ T8055] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.819: iget: bad i_size value: 38620345925642 [ 166.578118][ T8057] loop0: detected capacity change from 0 to 2048 [ 166.607121][ T8055] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.819: couldn't read orphan inode 15 (err -117) [ 166.630713][ T8057] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 166.654101][ T8055] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 166.820151][ T5864] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.162098][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.320740][ T8078] netlink: 204 bytes leftover after parsing attributes in process `syz.1.826'. [ 167.556773][ T8080] netlink: 12 bytes leftover after parsing attributes in process `syz.3.829'. [ 167.950696][ T8088] tipc: Enabled bearer , priority 0 [ 167.996758][ T8088] syzkaller0: entered promiscuous mode [ 168.062377][ T8088] syzkaller0: entered allmulticast mode [ 168.209374][ T8099] loop2: detected capacity change from 0 to 7 [ 168.261392][ T8099] Dev loop2: unable to read RDB block 7 [ 168.305499][ T8099] loop2: unable to read partition table [ 168.311999][ T8102] loop4: detected capacity change from 0 to 2048 [ 168.346294][ T8099] loop2: partition table beyond EOD, truncated [ 168.389206][ T8099] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 168.433149][ T8102] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 168.977010][ T5958] tipc: Node number set to 692555433 [ 169.251011][ T5864] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.365598][ T8087] tipc: Resetting bearer [ 169.421931][ T8087] tipc: Disabling bearer [ 169.432858][ T8121] loop1: detected capacity change from 0 to 1024 [ 169.449709][ T8121] EXT4-fs: Ignoring removed bh option [ 169.494752][ T8121] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 169.560514][ T8121] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 170.296196][ T30] audit: type=1800 audit(1757467705.648:138): pid=8121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.843" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 170.506423][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.582658][ T8147] netlink: 'syz.4.852': attribute type 10 has an invalid length. [ 170.605774][ T8147] netlink: 40 bytes leftover after parsing attributes in process `syz.4.852'. [ 170.663191][ T8147] team0: Port device geneve0 added [ 170.889210][ T8155] loop1: detected capacity change from 0 to 1024 [ 170.900532][ T8155] EXT4-fs: Ignoring removed oldalloc option [ 170.925818][ T8155] EXT4-fs: Ignoring removed nobh option [ 170.945302][ T8155] ext4: Invalid uid '0x00000000ffffffff' [ 171.065598][ T8157] netlink: 96 bytes leftover after parsing attributes in process `syz.2.855'. [ 171.898729][ T8175] netlink: 'syz.2.863': attribute type 1 has an invalid length. [ 171.961468][ T8175] netlink: 'syz.2.863': attribute type 4 has an invalid length. [ 172.001644][ T8175] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.863'. [ 172.048955][ T8180] netlink: 'syz.2.863': attribute type 1 has an invalid length. [ 172.083528][ T8180] netlink: 'syz.2.863': attribute type 4 has an invalid length. [ 172.118297][ T8180] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.863'. [ 172.184851][ T8184] loop0: detected capacity change from 0 to 512 [ 172.255628][ T8184] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.867: iget: bad i_size value: 38620345925642 [ 172.279183][ T8184] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.867: couldn't read orphan inode 15 (err -117) [ 172.293770][ T8184] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 172.321649][ T8193] netlink: 12 bytes leftover after parsing attributes in process `syz.4.868'. [ 172.699041][ T8204] loop2: detected capacity change from 0 to 1024 [ 172.713626][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.736942][ T8204] EXT4-fs: Ignoring removed oldalloc option [ 172.749568][ T8206] tipc: Started in network mode [ 172.759984][ T8206] tipc: Node identity ca1c135bd92, cluster identity 4711 [ 172.769953][ T8204] EXT4-fs: Ignoring removed nobh option [ 172.777541][ T8204] ext4: Invalid uid '0x00000000ffffffff' [ 172.792625][ T8206] tipc: Enabled bearer , priority 0 [ 172.961455][ T8206] tipc: Resetting bearer [ 173.280046][ T30] audit: type=1326 audit(1757467708.638:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.3.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 173.316798][ T30] audit: type=1326 audit(1757467708.638:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.3.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 173.390885][ T30] audit: type=1326 audit(1757467708.638:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.3.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 173.839707][ T1213] tipc: Node number set to 322704219 [ 173.871562][ T30] audit: type=1326 audit(1757467709.228:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8233 comm="syz.0.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 173.899439][ T30] audit: type=1326 audit(1757467709.228:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8233 comm="syz.0.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 173.960910][ T30] audit: type=1326 audit(1757467709.228:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8233 comm="syz.0.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 174.776741][ T8249] netlink: 'syz.3.895': attribute type 1 has an invalid length. [ 174.839039][ T8249] netlink: 'syz.3.895': attribute type 4 has an invalid length. [ 174.870918][ T8249] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.895'. [ 174.939174][ T8253] netlink: 'syz.3.895': attribute type 1 has an invalid length. [ 174.987636][ T30] audit: type=1326 audit(1757467709.288:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8233 comm="syz.0.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 175.011738][ T30] audit: type=1326 audit(1757467709.288:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8233 comm="syz.0.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 175.018949][ T8253] netlink: 'syz.3.895': attribute type 4 has an invalid length. [ 175.151679][ T8256] loop2: detected capacity change from 0 to 1024 [ 175.185674][ T8253] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.895'. [ 175.231373][ T8256] EXT4-fs: Ignoring removed oldalloc option [ 175.311189][ T8256] EXT4-fs: Ignoring removed nobh option [ 175.387994][ T8256] EXT4-fs (loop2): can't mount with both data=journal and delalloc [ 176.701618][ T8305] netlink: 96 bytes leftover after parsing attributes in process `syz.3.918'. [ 176.793945][ T8306] loop2: detected capacity change from 0 to 7 [ 176.843902][ T8306] Dev loop2: unable to read RDB block 7 [ 176.849735][ T8306] loop2: unable to read partition table [ 176.855889][ T8306] loop2: partition table beyond EOD, truncated [ 176.878166][ T8306] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 177.171123][ T8315] netlink: 'syz.3.921': attribute type 1 has an invalid length. [ 177.178977][ T8315] netlink: 'syz.3.921': attribute type 4 has an invalid length. [ 177.187152][ T8315] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.921'. [ 177.200802][ T8315] netlink: 'syz.3.921': attribute type 1 has an invalid length. [ 177.209019][ T8315] netlink: 'syz.3.921': attribute type 4 has an invalid length. [ 177.225312][ T8315] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.921'. [ 177.755740][ T8323] netlink: 'syz.2.925': attribute type 11 has an invalid length. [ 178.141934][ T8337] netlink: 'syz.1.930': attribute type 10 has an invalid length. [ 178.164570][ T8337] netlink: 40 bytes leftover after parsing attributes in process `syz.1.930'. [ 178.203705][ T8337] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 179.251410][ T30] audit: type=1326 audit(1757467714.608:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8359 comm="syz.0.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 179.323155][ T30] audit: type=1326 audit(1757467714.608:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8359 comm="syz.0.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 179.328013][ T8366] netlink: 'syz.3.941': attribute type 1 has an invalid length. [ 179.361550][ T8356] syzkaller0: entered promiscuous mode [ 179.364891][ T30] audit: type=1326 audit(1757467714.638:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8359 comm="syz.0.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 179.389561][ T8356] syzkaller0: entered allmulticast mode [ 179.393007][ T30] audit: type=1326 audit(1757467714.638:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8359 comm="syz.0.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 179.398248][ T8360] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode balance-xor(2) [ 179.435187][ T8366] netlink: 'syz.3.941': attribute type 4 has an invalid length. [ 179.442858][ T8366] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.941'. [ 179.457384][ T30] audit: type=1326 audit(1757467714.638:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8359 comm="syz.0.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 179.494384][ T8368] netlink: 'syz.3.941': attribute type 1 has an invalid length. [ 179.519021][ T8368] netlink: 'syz.3.941': attribute type 4 has an invalid length. [ 179.537221][ T8368] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.941'. [ 179.549509][ T30] audit: type=1326 audit(1757467714.638:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8359 comm="syz.0.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 179.575834][ T30] audit: type=1326 audit(1757467714.648:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8359 comm="syz.0.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 179.609576][ T30] audit: type=1326 audit(1757467714.648:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8359 comm="syz.0.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 179.638022][ T30] audit: type=1326 audit(1757467714.648:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8359 comm="syz.0.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 179.695870][ T30] audit: type=1326 audit(1757467714.648:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8359 comm="syz.0.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa15558eba9 code=0x7ffc0000 [ 181.695077][ T8417] netlink: 96 bytes leftover after parsing attributes in process `syz.4.957'. [ 181.870999][ T8421] siw: device registration error -23 [ 182.242425][ T8439] loop1: detected capacity change from 0 to 512 [ 182.253492][ T8440] netlink: 'syz.3.968': attribute type 1 has an invalid length. [ 182.280501][ T8439] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 182.321361][ T8444] netlink: 4 bytes leftover after parsing attributes in process `syz.3.968'. [ 182.336540][ T8439] EXT4-fs (loop1): 1 truncate cleaned up [ 182.357020][ T8439] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 182.401833][ T8440] 8021q: adding VLAN 0 to HW filter on device bond1 [ 182.589677][ T8444] bond1 (unregistering): Released all slaves [ 183.025583][ T8456] syzkaller0: entered promiscuous mode [ 183.045096][ T8456] syzkaller0: entered allmulticast mode [ 183.102730][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.684780][ T8484] netlink: 'syz.2.982': attribute type 1 has an invalid length. [ 183.710011][ T8484] netlink: 'syz.2.982': attribute type 4 has an invalid length. [ 183.724057][ T8484] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.982'. [ 183.775475][ T8489] netlink: 'syz.2.982': attribute type 1 has an invalid length. [ 183.802009][ T8489] netlink: 'syz.2.982': attribute type 4 has an invalid length. [ 183.853496][ T8489] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.982'. [ 185.863038][ T8486] netlink: 96 bytes leftover after parsing attributes in process `syz.3.984'. [ 186.134072][ T8522] loop3: detected capacity change from 0 to 1024 [ 186.273235][ T8522] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 186.825350][ T8516] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 385-513 which overlap fs metadata [ 186.992988][ T8537] loop4: detected capacity change from 0 to 564 [ 187.006658][ T8537] EXT4-fs error (device loop4): __ext4_iget:5464: inode #2: block 8224: comm syz.4.1000: invalid block [ 187.020805][ T8537] EXT4-fs (loop4): get root inode failed [ 187.069241][ T8537] EXT4-fs (loop4): mount failed [ 187.100107][ T8522] EXT4-fs (loop3): pa ffff888069220d98: logic 16, phys. 129, len 24 [ 187.108503][ T8522] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8 [ 187.270349][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.648794][ T8553] syzkaller0: entered promiscuous mode [ 187.677470][ T8553] syzkaller0: entered allmulticast mode [ 188.246417][ T8583] netlink: 212 bytes leftover after parsing attributes in process `syz.4.1017'. [ 188.265230][ T8583] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1017'. [ 188.305850][ T8583] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1017'. [ 188.320776][ T8587] loop0: detected capacity change from 0 to 512 [ 188.388066][ T8587] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.1016: iget: bad i_size value: 38620345925642 [ 188.404715][ T8587] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1016: couldn't read orphan inode 15 (err -117) [ 188.430252][ T8587] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 190.279032][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 190.799389][ T8645] loop1: detected capacity change from 0 to 1024 [ 190.873578][ T8645] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 190.944724][ T8649] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1041'. [ 191.031207][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.041224][ T8651] loop0: detected capacity change from 0 to 512 [ 191.068878][ T8651] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.1040: iget: bad i_size value: 38620345925642 [ 191.208071][ T8651] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1040: couldn't read orphan inode 15 (err -117) [ 191.311631][ T8651] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 191.339393][ T8660] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode balance-xor(2) [ 191.366901][ T30] kauditd_printk_skb: 34 callbacks suppressed [ 191.366916][ T30] audit: type=1326 audit(1757467726.728:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.2.1045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 191.406872][ T30] audit: type=1326 audit(1757467726.758:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.2.1045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 191.460982][ T30] audit: type=1326 audit(1757467726.758:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.2.1045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 191.513794][ T30] audit: type=1326 audit(1757467726.758:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.2.1045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 191.541823][ T30] audit: type=1326 audit(1757467726.758:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.2.1045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 191.579877][ T30] audit: type=1326 audit(1757467726.758:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.2.1045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 191.604523][ T30] audit: type=1326 audit(1757467726.758:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.2.1045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 191.670845][ T30] audit: type=1326 audit(1757467726.758:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.2.1045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 191.710295][ T30] audit: type=1326 audit(1757467726.758:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.2.1045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 191.754012][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.793786][ T30] audit: type=1326 audit(1757467726.758:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8659 comm="syz.2.1045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f15a318eba9 code=0x7ffc0000 [ 192.316842][ T8677] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1050'. [ 192.396034][ T8680] netlink: 212 bytes leftover after parsing attributes in process `syz.0.1052'. [ 192.427725][ T8680] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1052'. [ 192.761471][ T8694] loop2: detected capacity change from 0 to 512 [ 192.808290][ T8694] EXT4-fs: Ignoring removed i_version option [ 192.843539][ T8694] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 192.872405][ T8694] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2842e12c, mo2=0002] [ 192.892236][ T8694] System zones: 1-12 [ 192.905236][ T8694] EXT4-fs (loop2): orphan cleanup on readonly fs [ 192.912285][ T8694] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.1058: invalid indirect mapped block 12 (level 1) [ 192.951681][ T8694] EXT4-fs (loop2): Remounting filesystem read-only [ 193.000258][ T8694] EXT4-fs (loop2): 1 truncate cleaned up [ 193.021067][ T8694] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 193.073187][ T8694] EXT4-fs warning (device loop2): dx_probe:791: inode #2: lblock 0: comm syz.2.1058: error -117 reading directory block [ 193.107017][ T8694] EXT4-fs warning (device loop2): dx_probe:791: inode #2: lblock 0: comm syz.2.1058: error -117 reading directory block [ 193.191103][ T8704] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode balance-xor(2) [ 193.229711][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 193.824178][ T8723] loop2: detected capacity change from 0 to 1024 [ 193.863797][ T8723] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 194.123213][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.139278][ T8734] loop1: detected capacity change from 0 to 128 [ 194.231348][ T8734] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 194.305743][ T8734] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 194.331890][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.402834][ T5234] udevd[5234]: worker [5866] terminated by signal 33 (Unknown signal 33) [ 194.445718][ T5234] udevd[5234]: worker [5866] failed while handling '/devices/virtual/block/loop1' [ 194.748589][ T5871] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 194.927972][ T8758] siw: device registration error -23 [ 195.469069][ T8762] syzkaller0: entered promiscuous mode [ 195.537494][ T8762] syzkaller0: entered allmulticast mode [ 196.064112][ T8778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1089'. [ 196.957313][ T8795] siw: device registration error -23 [ 199.404140][ T8824] siw: device registration error -23 [ 200.482325][ T8828] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1110'. [ 200.540277][ T8780] lo speed is unknown, defaulting to 1000 [ 201.433407][ T8859] siw: device registration error -23 [ 201.525601][ T8865] tipc: Enabling of bearer rejected, already enabled [ 201.533993][ T5883] Bluetooth: hci3: command 0x0406 tx timeout [ 201.540837][ T5883] Bluetooth: hci2: command 0x0406 tx timeout [ 201.548715][ T5884] Bluetooth: hci4: command 0x0406 tx timeout [ 201.554781][ T5884] Bluetooth: hci0: command 0x0406 tx timeout [ 201.560000][ T5882] Bluetooth: hci1: command 0x0406 tx timeout [ 201.791448][ T8873] Illegal XDP return value 4294967274 on prog (id 368) dev N/A, expect packet loss! [ 202.912621][ T8889] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1129'. [ 203.196537][ T8897] siw: device registration error -23 [ 203.268217][ T8899] loop0: detected capacity change from 0 to 1024 [ 203.336664][ T8899] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 203.415147][ T8899] ext4 filesystem being mounted at /219/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 204.065567][ T8915] lo speed is unknown, defaulting to 1000 [ 205.074805][ T8919] netlink: 204 bytes leftover after parsing attributes in process `syz.2.1140'. [ 205.169058][ T24] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 205.318700][ T24] usb 4-1: device descriptor read/64, error -71 [ 205.595801][ T24] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 205.765245][ T24] usb 4-1: device descriptor read/64, error -71 [ 205.778104][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 205.895076][ T24] usb usb4-port1: attempt power cycle [ 206.001444][ T30] kauditd_printk_skb: 73 callbacks suppressed [ 206.001460][ T30] audit: type=1326 audit(1757467741.358:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.4.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 206.067174][ T30] audit: type=1326 audit(1757467741.398:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.4.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 206.120204][ T30] audit: type=1326 audit(1757467741.398:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.4.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 206.257174][ T24] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 206.306045][ T24] usb 4-1: device descriptor read/8, error -71 [ 206.667253][ T30] audit: type=1326 audit(1757467742.008:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8953 comm="syz.3.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 206.713114][ T5944] IPVS: starting estimator thread 0... [ 206.723157][ T30] audit: type=1326 audit(1757467742.008:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8953 comm="syz.3.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 206.774730][ T30] audit: type=1326 audit(1757467742.008:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8953 comm="syz.3.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 206.829135][ T30] audit: type=1326 audit(1757467742.008:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8953 comm="syz.3.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 206.870887][ T8957] IPVS: using max 26 ests per chain, 62400 per kthread [ 206.938800][ T30] audit: type=1326 audit(1757467742.008:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8953 comm="syz.3.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 207.014824][ T8965] siw: device registration error -23 [ 207.065327][ T30] audit: type=1326 audit(1757467742.008:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8953 comm="syz.3.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 207.103721][ T30] audit: type=1326 audit(1757467742.008:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8953 comm="syz.3.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf658eba9 code=0x7ffc0000 [ 207.350042][ T8977] loop0: detected capacity change from 0 to 2048 [ 207.487539][ T8977] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 208.374658][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.784856][ T9036] loop0: detected capacity change from 0 to 1024 [ 209.832787][ T9041] netlink: 204 bytes leftover after parsing attributes in process `syz.3.1186'. [ 209.936630][ T9036] EXT4-fs: Ignoring removed oldalloc option [ 209.942727][ T9036] EXT4-fs: Ignoring removed nobh option [ 209.969833][ T9036] ext4: Invalid uid '0x00000000ffffffff' [ 210.461366][ T9054] loop2: detected capacity change from 0 to 512 [ 210.501404][ T9054] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.1193: iget: bad i_size value: 38620345925642 [ 210.543134][ T9054] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1193: couldn't read orphan inode 15 (err -117) [ 210.574362][ T9054] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 210.595997][ T9059] loop1: detected capacity change from 0 to 512 [ 210.611100][ T9059] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 210.868887][ T9059] EXT4-fs (loop1): 1 truncate cleaned up [ 211.197229][ T9059] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 211.418663][ T9072] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode balance-xor(2) [ 211.546405][ T30] kauditd_printk_skb: 48 callbacks suppressed [ 211.546423][ T30] audit: type=1326 audit(1757467746.888:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 211.598589][ T5871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 211.679348][ T30] audit: type=1326 audit(1757467746.898:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 211.736985][ T30] audit: type=1326 audit(1757467746.898:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 211.801485][ T30] audit: type=1326 audit(1757467746.948:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 211.824038][ T30] audit: type=1326 audit(1757467746.948:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 211.848264][ T30] audit: type=1326 audit(1757467746.948:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 211.877801][ T30] audit: type=1326 audit(1757467746.948:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 211.905307][ T30] audit: type=1326 audit(1757467746.948:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 211.932561][ T30] audit: type=1326 audit(1757467746.948:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 211.978702][ T30] audit: type=1326 audit(1757467746.948:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9071 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b1f8eba9 code=0x7ffc0000 [ 212.023817][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 212.862914][ T9108] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1217'. [ 212.987466][ T9113] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode balance-xor(2) [ 213.284440][ T9118] lo speed is unknown, defaulting to 1000 [ 213.521361][ T9122] loop2: detected capacity change from 0 to 1024 [ 213.584060][ T9122] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 213.882776][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 214.464992][ T9146] lo speed is unknown, defaulting to 1000 [ 214.899616][ T9145] loop2: detected capacity change from 0 to 2048 [ 215.093287][ T9145] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 215.212675][ T9159] netlink: 'syz.3.1236': attribute type 1 has an invalid length. [ 215.256609][ T9159] netlink: 'syz.3.1236': attribute type 4 has an invalid length. [ 215.330195][ T9159] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.1236'. [ 215.640842][ T9171] loop3: detected capacity change from 0 to 1024 [ 215.874272][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 215.909188][ T9171] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 216.124081][ T9181] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1243'. [ 216.163455][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 216.174012][ T9181] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1243'. [ 216.521897][ T9187] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1246'. [ 216.914121][ T9194] netlink: 'syz.3.1249': attribute type 1 has an invalid length. [ 216.953666][ T9194] netlink: 'syz.3.1249': attribute type 4 has an invalid length. [ 216.983630][ T9194] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.1249'. [ 217.122577][ T9199] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1251'. [ 217.227579][ T9201] loop3: detected capacity change from 0 to 2048 [ 217.314253][ T9201] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 218.487181][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.835431][ T9228] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1262'. [ 218.941942][ T9233] syzkaller0: left promiscuous mode [ 218.965069][ T9233] syzkaller0: left allmulticast mode [ 219.000929][ T9233] tipc: Enabling of bearer rejected, already enabled [ 219.189587][ T9239] loop2: detected capacity change from 0 to 1024 [ 219.243926][ T9243] loop0: detected capacity change from 0 to 2048 [ 219.249427][ T9239] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 219.391794][ T9239] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 219.423703][ T9243] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 219.452500][ T9239] EXT4-fs (loop2): orphan cleanup on readonly fs [ 219.499421][ T9239] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.1267: Freeing blocks not in datazone - block = 0, count = 4096 [ 219.579576][ T9239] EXT4-fs (loop2): 1 orphan inode deleted [ 219.587382][ T9239] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 219.664500][ T9261] netlink: 'syz.1.1275': attribute type 1 has an invalid length. [ 219.667337][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.695048][ T9261] netlink: 'syz.1.1275': attribute type 4 has an invalid length. [ 219.713410][ T9261] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.1275'. [ 219.768709][ T9262] netlink: 'syz.1.1275': attribute type 1 has an invalid length. [ 219.797526][ T9262] netlink: 'syz.1.1275': attribute type 4 has an invalid length. [ 219.811688][ T9262] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.1275'. [ 220.159666][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.162817][ T9272] loop2: detected capacity change from 0 to 1024 [ 220.250340][ T9272] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 220.266188][ T9272] ext4 filesystem being mounted at /254/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 220.658995][ T9286] lo speed is unknown, defaulting to 1000 [ 221.279812][ T9296] siw: device registration error -23 [ 221.337490][ T9292] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1286'. [ 221.520672][ T9302] loop3: detected capacity change from 0 to 2048 [ 221.618285][ T9302] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 222.277207][ T9253] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 222.401284][ T5865] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 222.830333][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.959389][ T9329] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1303'. [ 222.976054][ T9331] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1304'. [ 223.197973][ T9340] loop1: detected capacity change from 0 to 512 [ 223.251619][ T9340] EXT4-fs (loop1): orphan cleanup on readonly fs [ 223.321023][ T9340] EXT4-fs warning (device loop1): ext4_xattr_inode_get:556: inode #11: comm syz.1.1306: EA inode hash validation failed [ 223.356082][ T9345] loop0: detected capacity change from 0 to 1024 [ 223.409993][ T9345] EXT4-fs: Ignoring removed oldalloc option [ 223.445810][ T9345] EXT4-fs: Ignoring removed nobh option [ 223.448652][ T9340] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 223.486393][ T9345] ext4: Invalid uid '0x00000000ffffffff' [ 223.508986][ T9340] ------------[ cut here ]------------ [ 223.514757][ T9340] EA inode 11 ref_count=-1 [ 223.549980][ T9340] WARNING: fs/ext4/xattr.c:1048 at ext4_xattr_inode_update_ref+0x44b/0x5d0, CPU#0: syz.1.1306/9340 [ 223.565271][ T9340] Modules linked in: [ 223.569458][ T9340] CPU: 0 UID: 0 PID: 9340 Comm: syz.1.1306 Not tainted syzkaller #0 PREEMPT(full) [ 223.578912][ T9340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 223.589068][ T9340] RIP: 0010:ext4_xattr_inode_update_ref+0x44b/0x5d0 [ 223.595761][ T9340] Code: 78 40 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 08 d6 9c ff 49 8b 37 48 c7 c7 e0 dc bf 8b 4c 89 ea e8 86 64 fc fe 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4c 8b 74 24 20 4c 8b 6c [ 223.616459][ T9340] RSP: 0018:ffffc9000b6472a0 EFLAGS: 00010246 [ 223.622568][ T9340] RAX: 03937e0193e71d00 RBX: dffffc0000000000 RCX: 0000000000080000 [ 223.631593][ T9340] RDX: ffffc9000c019000 RSI: 000000000002b71d RDI: 000000000002b71e [ 223.641037][ T9340] RBP: ffffc9000b647390 R08: ffff8880b8624253 R09: 1ffff110170c484a [ 223.651119][ T9340] R10: dffffc0000000000 R11: ffffed10170c484b R12: ffffc9000b647300 [ 223.661075][ T9340] R13: ffffffffffffffff R14: 00000000ffffffff R15: ffff8880691995f8 [ 223.670311][ T9340] FS: 00007f38a82ed6c0(0000) GS:ffff8881259f1000(0000) knlGS:0000000000000000 [ 223.680050][ T9340] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 223.687467][ T9340] CR2: 00007f63e0e9f4e8 CR3: 0000000078248000 CR4: 00000000003526f0 [ 223.696337][ T9340] Call Trace: [ 223.699639][ T9340] [ 223.702590][ T9340] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10 [ 223.709827][ T9340] ? __kmalloc_cache_noprof+0x3d5/0x6f0 [ 223.716348][ T9340] ? __ext4_journal_ensure_credits+0x30/0x450 [ 223.722938][ T9340] ext4_xattr_inode_dec_ref_all+0x867/0xda0 [ 223.729244][ T9340] ? __pfx___ext4_get_inode_loc+0x10/0x10 [ 223.735957][ T9340] ? __pfx_ext4_xattr_inode_dec_ref_all+0x10/0x10 [ 223.743507][ T9340] ? __ext4_journal_get_write_access+0x272/0x570 [ 223.750112][ T9340] ? __pfx___ext4_journal_get_write_access+0x10/0x10 [ 223.756920][ T9340] ext4_xattr_delete_inode+0xa4c/0xc10 [ 223.762421][ T9340] ? ext4_truncate+0xdd8/0x12e0 [ 223.767430][ T9340] ? __pfx_ext4_xattr_delete_inode+0x10/0x10 [ 223.773455][ T9340] ext4_evict_inode+0xac9/0xee0 [ 223.778537][ T9340] ? __pfx_ext4_evict_inode+0x10/0x10 [ 223.783940][ T9340] ? do_raw_spin_unlock+0x122/0x240 [ 223.789248][ T9340] ? __pfx_ext4_evict_inode+0x10/0x10 [ 223.794658][ T9340] evict+0x501/0x9c0 [ 223.798689][ T9340] ? __pfx_evict+0x10/0x10 [ 223.803128][ T9340] ? do_raw_spin_unlock+0x122/0x240 [ 223.808427][ T9340] ? _raw_spin_unlock+0x28/0x50 [ 223.813307][ T9340] ? iput+0x6d8/0x9d0 [ 223.817416][ T9340] ext4_orphan_cleanup+0xc20/0x1460 [ 223.822656][ T9340] ? __pfx_ext4_orphan_cleanup+0x10/0x10 [ 223.828375][ T9340] ? ext4_register_li_request+0x259/0x720 [ 223.834108][ T9340] ? errseq_check_and_advance+0x66/0x120 [ 223.840991][ T9340] ext4_fill_super+0x57df/0x6090 [ 223.847035][ T9340] ? __pfx_ext4_fill_super+0x10/0x10 [ 223.852368][ T9340] ? set_blocksize+0x21e/0x500 [ 223.857435][ T9340] ? sb_set_blocksize+0x104/0x180 [ 223.862488][ T9340] ? setup_bdev_super+0x4c1/0x5b0 [ 223.867611][ T9340] get_tree_bdev_flags+0x40b/0x4d0 [ 223.872854][ T9340] ? __pfx_ext4_fill_super+0x10/0x10 [ 223.878349][ T9340] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 223.884016][ T9340] vfs_get_tree+0x8f/0x2b0 [ 223.888547][ T9340] do_new_mount+0x302/0xa10 [ 223.893164][ T9340] ? apparmor_capable+0x137/0x1b0 [ 223.898372][ T9340] ? __pfx_do_new_mount+0x10/0x10 [ 223.903416][ T9340] ? ns_capable+0x8a/0xf0 [ 223.907849][ T9340] ? kmem_cache_free+0x19a/0x690 [ 223.912846][ T9340] __se_sys_mount+0x313/0x410 [ 223.917744][ T9340] ? __pfx___se_sys_mount+0x10/0x10 [ 223.922981][ T9340] ? do_syscall_64+0xbe/0xfa0 [ 223.927883][ T9340] ? __x64_sys_mount+0x20/0xc0 [ 223.932677][ T9340] do_syscall_64+0xfa/0xfa0 [ 223.937367][ T9340] ? lockdep_hardirqs_on+0x9c/0x150 [ 223.943772][ T9340] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.950921][ T9340] ? clear_bhb_loop+0x60/0xb0 [ 223.955700][ T9340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.961613][ T9340] RIP: 0033:0x7f38a739034a [ 223.966170][ T9340] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.985894][ T9340] RSP: 002b:00007f38a82ece68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 223.994334][ T9340] RAX: ffffffffffffffda RBX: 00007f38a82ecef0 RCX: 00007f38a739034a [ 224.002380][ T9340] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f38a82eceb0 [ 224.010619][ T9340] RBP: 0000200000000180 R08: 00007f38a82ecef0 R09: 000000000080078b [ 224.018692][ T9340] R10: 000000000080078b R11: 0000000000000246 R12: 00002000000001c0 [ 224.026741][ T9340] R13: 00007f38a82eceb0 R14: 0000000000000473 R15: 0000200000000680 [ 224.034756][ T9340] [ 224.037879][ T9340] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 224.045202][ T9340] CPU: 0 UID: 0 PID: 9340 Comm: syz.1.1306 Not tainted syzkaller #0 PREEMPT(full) [ 224.054496][ T9340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 224.064561][ T9340] Call Trace: [ 224.067836][ T9340] [ 224.070756][ T9340] dump_stack_lvl+0x99/0x250 [ 224.075338][ T9340] ? __asan_memcpy+0x40/0x70 [ 224.079912][ T9340] ? __pfx_dump_stack_lvl+0x10/0x10 [ 224.085094][ T9340] ? __pfx__printk+0x10/0x10 [ 224.089682][ T9340] vpanic+0x237/0x6d0 [ 224.093650][ T9340] ? __pfx_vpanic+0x10/0x10 [ 224.098135][ T9340] ? is_bpf_text_address+0x292/0x2b0 [ 224.103421][ T9340] ? is_bpf_text_address+0x26/0x2b0 [ 224.108611][ T9340] panic+0xb9/0xc0 [ 224.112317][ T9340] ? __pfx_panic+0x10/0x10 [ 224.116735][ T9340] __warn+0x334/0x4c0 [ 224.120700][ T9340] ? ext4_xattr_inode_update_ref+0x44b/0x5d0 [ 224.126675][ T9340] ? ext4_xattr_inode_update_ref+0x44b/0x5d0 [ 224.132815][ T9340] report_bug+0x2be/0x4f0 [ 224.137132][ T9340] ? ext4_xattr_inode_update_ref+0x44b/0x5d0 [ 224.143105][ T9340] ? ext4_xattr_inode_update_ref+0x44b/0x5d0 [ 224.149074][ T9340] ? ext4_xattr_inode_update_ref+0x44d/0x5d0 [ 224.155049][ T9340] handle_bug+0x84/0x160 [ 224.159293][ T9340] exc_invalid_op+0x1a/0x50 [ 224.163785][ T9340] asm_exc_invalid_op+0x1a/0x20 [ 224.168619][ T9340] RIP: 0010:ext4_xattr_inode_update_ref+0x44b/0x5d0 [ 224.175198][ T9340] Code: 78 40 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 08 d6 9c ff 49 8b 37 48 c7 c7 e0 dc bf 8b 4c 89 ea e8 86 64 fc fe 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4c 8b 74 24 20 4c 8b 6c [ 224.194791][ T9340] RSP: 0018:ffffc9000b6472a0 EFLAGS: 00010246 [ 224.200850][ T9340] RAX: 03937e0193e71d00 RBX: dffffc0000000000 RCX: 0000000000080000 [ 224.208808][ T9340] RDX: ffffc9000c019000 RSI: 000000000002b71d RDI: 000000000002b71e [ 224.216763][ T9340] RBP: ffffc9000b647390 R08: ffff8880b8624253 R09: 1ffff110170c484a [ 224.224718][ T9340] R10: dffffc0000000000 R11: ffffed10170c484b R12: ffffc9000b647300 [ 224.232671][ T9340] R13: ffffffffffffffff R14: 00000000ffffffff R15: ffff8880691995f8 [ 224.240647][ T9340] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10 [ 224.246974][ T9340] ? __kmalloc_cache_noprof+0x3d5/0x6f0 [ 224.252521][ T9340] ? __ext4_journal_ensure_credits+0x30/0x450 [ 224.258592][ T9340] ext4_xattr_inode_dec_ref_all+0x867/0xda0 [ 224.264488][ T9340] ? __pfx___ext4_get_inode_loc+0x10/0x10 [ 224.270197][ T9340] ? __pfx_ext4_xattr_inode_dec_ref_all+0x10/0x10 [ 224.276600][ T9340] ? __ext4_journal_get_write_access+0x272/0x570 [ 224.282919][ T9340] ? __pfx___ext4_journal_get_write_access+0x10/0x10 [ 224.289587][ T9340] ext4_xattr_delete_inode+0xa4c/0xc10 [ 224.295039][ T9340] ? ext4_truncate+0xdd8/0x12e0 [ 224.299881][ T9340] ? __pfx_ext4_xattr_delete_inode+0x10/0x10 [ 224.305863][ T9340] ext4_evict_inode+0xac9/0xee0 [ 224.310706][ T9340] ? __pfx_ext4_evict_inode+0x10/0x10 [ 224.316066][ T9340] ? do_raw_spin_unlock+0x122/0x240 [ 224.321256][ T9340] ? __pfx_ext4_evict_inode+0x10/0x10 [ 224.326611][ T9340] evict+0x501/0x9c0 [ 224.330496][ T9340] ? __pfx_evict+0x10/0x10 [ 224.334891][ T9340] ? do_raw_spin_unlock+0x122/0x240 [ 224.340081][ T9340] ? _raw_spin_unlock+0x28/0x50 [ 224.344942][ T9340] ? iput+0x6d8/0x9d0 [ 224.348923][ T9340] ext4_orphan_cleanup+0xc20/0x1460 [ 224.354118][ T9340] ? __pfx_ext4_orphan_cleanup+0x10/0x10 [ 224.359744][ T9340] ? ext4_register_li_request+0x259/0x720 [ 224.365448][ T9340] ? errseq_check_and_advance+0x66/0x120 [ 224.371069][ T9340] ext4_fill_super+0x57df/0x6090 [ 224.376017][ T9340] ? __pfx_ext4_fill_super+0x10/0x10 [ 224.381291][ T9340] ? set_blocksize+0x21e/0x500 [ 224.386050][ T9340] ? sb_set_blocksize+0x104/0x180 [ 224.391066][ T9340] ? setup_bdev_super+0x4c1/0x5b0 [ 224.396079][ T9340] get_tree_bdev_flags+0x40b/0x4d0 [ 224.401266][ T9340] ? __pfx_ext4_fill_super+0x10/0x10 [ 224.406541][ T9340] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 224.412177][ T9340] vfs_get_tree+0x8f/0x2b0 [ 224.416603][ T9340] do_new_mount+0x302/0xa10 [ 224.421095][ T9340] ? apparmor_capable+0x137/0x1b0 [ 224.426124][ T9340] ? __pfx_do_new_mount+0x10/0x10 [ 224.431156][ T9340] ? ns_capable+0x8a/0xf0 [ 224.435476][ T9340] ? kmem_cache_free+0x19a/0x690 [ 224.440412][ T9340] __se_sys_mount+0x313/0x410 [ 224.445126][ T9340] ? __pfx___se_sys_mount+0x10/0x10 [ 224.450374][ T9340] ? do_syscall_64+0xbe/0xfa0 [ 224.455228][ T9340] ? __x64_sys_mount+0x20/0xc0 [ 224.460105][ T9340] do_syscall_64+0xfa/0xfa0 [ 224.464708][ T9340] ? lockdep_hardirqs_on+0x9c/0x150 [ 224.469922][ T9340] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.475980][ T9340] ? clear_bhb_loop+0x60/0xb0 [ 224.480737][ T9340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.486619][ T9340] RIP: 0033:0x7f38a739034a [ 224.491025][ T9340] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.510629][ T9340] RSP: 002b:00007f38a82ece68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 224.519132][ T9340] RAX: ffffffffffffffda RBX: 00007f38a82ecef0 RCX: 00007f38a739034a [ 224.527088][ T9340] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f38a82eceb0 [ 224.535056][ T9340] RBP: 0000200000000180 R08: 00007f38a82ecef0 R09: 000000000080078b [ 224.543012][ T9340] R10: 000000000080078b R11: 0000000000000246 R12: 00002000000001c0 [ 224.550971][ T9340] R13: 00007f38a82eceb0 R14: 0000000000000473 R15: 0000200000000680 [ 224.558955][ T9340] [ 224.562243][ T9340] Kernel Offset: disabled [ 224.566559][ T9340] Rebooting in 86400 seconds..