last executing test programs: 2.460274891s ago: executing program 1 (id=2775): mkdir(0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20000000}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r1, 0x0, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, &(0x7f00000000c0)='\x00', 0x0}, 0x48) 2.278114519s ago: executing program 1 (id=2778): r0 = socket(0x2b, 0x80801, 0x1) setsockopt$inet6_tcp_int(r0, 0x6, 0x8, &(0x7f0000000200)=0x6, 0x4) 2.051691801s ago: executing program 1 (id=2780): r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001f40)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) r3 = socket$inet6_udp(0xa, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x29720b18d16e67af, 0xa, &(0x7f0000000740)=ANY=[@ANYBLOB="18430000fdffffff0000000000000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ff352cffffb702000008000000b703000007000000850000000600"], &(0x7f0000000440)='syzkaller\x00', 0xb3, 0x55, &(0x7f0000000540)=""/85, 0x40f00, 0x50, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x5, 0xf, 0x90}, 0x10, 0x0, 0x0, 0x4, &(0x7f00000006c0)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1], &(0x7f0000000700)=[{0x5, 0x5, 0x8, 0xb}, {0x0, 0x4, 0xf, 0x18}, {0x1, 0x2, 0xd, 0x6}, {0x2, 0x2, 0x4, 0x6}], 0x10, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='xprt_transmit\x00', 0xffffffffffffffff, 0x0, 0x7}, 0x18) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r4, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e20, @remote}], 0x10) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000e40)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x0, 0x18c, 0x203, 0x8000000, 0x19030000, 0x3f0, 0x2e0, 0x2e0, 0x3f0, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x2d8, 0x300, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xe}, {}, {0x0, 0x0, 0x3}, {0x2}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x16}, {}, {}, {0x7}, {}, {0x0, 0x0, 0x0, 0x101}, {}, {}, {}, {}, {}, {}, {0xfffe}, {}, {}, {}, {0x0, 0xfd}, {}, {0x7a04}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x800}, {}, {0xb84, 0x0, 0x0, 0xf00}, {0x0, 0x1, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}]}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0x4}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xb, 'syz1\x00', {0x6c8}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520) recvmmsg(r1, &(0x7f00000057c0)=[{{0x0, 0x0, 0x0}, 0x3}, {{0x0, 0x0, &(0x7f0000002cc0)=[{0x0}, {&(0x7f00000017c0)=""/130, 0x94}], 0x2}, 0xa1}], 0x2, 0x0, 0x0) r5 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000002380)={0x0, 0x1, 0x10}, 0xc) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000002400)=@base={0x7, 0x4, 0x6, 0xfffffffb, 0x40000, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x2}, 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000002480), 0x4) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r8}, &(0x7f00000002c0), &(0x7f0000000840)}, 0x20) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000025c0)=@bpf_tracing={0x1a, 0x14, &(0x7f0000000c00)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x200}, {}, {}, [@ringbuf_query, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}}}, &(0x7f0000000cc0)='syzkaller\x00', 0x100000, 0x95, &(0x7f0000000d00)=""/149, 0x41100, 0x2c, '\x00', 0x0, 0x17, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000002040)={0x1, 0xb, 0x7fff}, 0x10, 0x20a5a, 0xffffffffffffffff, 0x4, &(0x7f0000002540)=[r0, r5, r6, r7, r8, 0xffffffffffffffff], &(0x7f0000002580)=[{0x0, 0x1, 0xd, 0x4}, {0x4, 0x4, 0x8, 0xa}, {0x5, 0x1, 0x7, 0x34ac81125d2f6f4b}, {0x1, 0x3, 0xe, 0xb}], 0x10, 0xa}, 0x94) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) 1.95255869s ago: executing program 0 (id=2782): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r1, &(0x7f0000000140)={0x28, 0x0, 0x2710, @local}, 0x10) listen(r1, 0x0) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10) r3 = accept4(r1, 0x0, 0x0, 0x0) sendto(r3, &(0x7f0000000000)="00c881d76049ac562e4e5094890b55e5ea113389145c57e7b3479bf3f2cf8a", 0x1f, 0x0, 0x0, 0x0) recvfrom(r2, &(0x7f00000001c0)=""/62, 0x3e, 0x10120, 0x0, 0x0) 1.33562434s ago: executing program 3 (id=2784): bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x32, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x4, "d57e190d001e6e1d16c1711bbd8adbf65bd846957b378a02340c68117aa1b390", "b0b4170e157cddfb9792c8e37bafb99e319950347e93f4d34870ee24c0ea06d56270e45c8d3e7d708161ba81dd33c54b", "01acae6f69ea1443db8d53af54944d4894a87f20c65bfb8e0c8cfb67", {"38f5e54b3dc7c070b4d66f0f9565df74", "d2653a13d554fee0e7be27c873db314d"}}}}}}}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x43}, 0x94) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x42}, 0xe0) syz_extract_tcp_res$synack(&(0x7f00000001c0), 0x1, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000480)='kfree\x00', r2, 0x0, 0x2}, 0x18) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, 0xffffffffffffffff, 0x0) r3 = open$dir(&(0x7f0000000180)='./file0\x00', 0x48200, 0x84) close(r3) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f000002eff0)={0x135, &(0x7f0000000000)=[{}]}, 0x10) 1.12269723s ago: executing program 3 (id=2785): bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000001440)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x20802, 0x0) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000e40)='\b', 0x17ff}], 0x5) 1.071874896s ago: executing program 2 (id=2786): r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve0\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4400000010000100ff0700"/20, @ANYRES32=r1, @ANYBLOB="0014000000000000240012800b00010067656e6576650000140002"], 0x44}, 0x1, 0x2, 0x0, 0x4800}, 0x0) 1.036761969s ago: executing program 0 (id=2787): unshare(0x20400) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0xf, &(0x7f0000001740)=@ringbuf={{0x18, 0x8}, {{}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1ab92b}, {0x85, 0x0, 0x0, 0x8}, {0x4}}, {{0x5, 0x0, 0x4, 0x9, 0x0, 0x1, 0x2000}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x9}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 999.738633ms ago: executing program 1 (id=2788): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) socketpair(0x1, 0x1, 0x1, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) fchown(r1, 0x0, 0x0) 871.767565ms ago: executing program 1 (id=2789): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x24, r1, 0x1, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x40}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x8080) 839.232338ms ago: executing program 0 (id=2790): bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="04000000"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0) getsockname$packet(r3, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0xe0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0xfff3, 0xd064db0e491fa98f}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_MEMORY={0x8, 0xa, 0x842}]}}]}, 0x3c}}, 0x4044080) bind$packet(r1, 0x0, 0x0) r5 = socket$inet6(0xa, 0x2, 0x0) r6 = socket(0x10, 0x3, 0x4) syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r6) getsockname$packet(r6, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmmsg$inet(r5, &(0x7f00000018c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000080)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @empty, @multicast1}}}], 0x20}}], 0x1, 0x4880) bpf$MAP_CREATE(0x0, 0x0, 0x48) setsockopt(r0, 0x84, 0x81, 0x0, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) 769.713015ms ago: executing program 2 (id=2791): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xf, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', r0}, 0x18) pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0) r2 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f0000000380)=0x20000, 0x4) close_range(r1, 0xffffffffffffffff, 0x0) 691.926722ms ago: executing program 1 (id=2792): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = inotify_init1(0x80000) inotify_add_watch(r0, 0x0, 0x2000775) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) r3 = inotify_init1(0x0) inotify_add_watch(r3, &(0x7f00000000c0)='.\x00', 0xa4000061) read(r3, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x9200000000000000) openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0) 628.885989ms ago: executing program 3 (id=2793): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000540)={0x1, &(0x7f0000000300)=[{0x200000000006, 0x3, 0x2, 0x7ffc0002}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b000000000000000000000000800000000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000010000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18) process_mrelease(0xffffffffffffffff, 0x0) 555.401976ms ago: executing program 2 (id=2794): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94) recvfrom$packet(0xffffffffffffffff, 0x0, 0x0, 0x30100, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x7, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r1}, 0x18) syz_io_uring_setup(0x2d85, &(0x7f00000004c0)={0x0, 0xd96c, 0x0, 0x3, 0x387}, &(0x7f0000000180), &(0x7f0000000300)) 479.837213ms ago: executing program 0 (id=2795): r0 = creat(&(0x7f0000000080)='./file0\x00', 0x162) close(r0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c) connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c) sendmmsg$inet6(r1, &(0x7f00000000c0)=[{{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f0000002440)='A', 0x1}], 0x1}}], 0x1, 0x4000001) sendmmsg$inet6(r1, &(0x7f0000000200)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000002c0)="d7", 0x1}], 0x1, &(0x7f0000000440)=ANY=[@ANYBLOB="24000000000000002900000032000000fc0000000000002bf400000000000001", @ANYRES32, @ANYBLOB="0000000014000000000000002900000043000000020000000000000060"], 0xa0}}], 0x1, 0x8) r2 = socket$tipc(0x1e, 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) 475.972863ms ago: executing program 3 (id=2796): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="190000000400"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$caif_stream(0x25, 0x1, 0x0) writev(r2, &(0x7f0000000940)=[{&(0x7f00000003c0)="e5", 0x1}], 0x1) 342.115587ms ago: executing program 2 (id=2797): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x62202, 0x0) ioctl$TIOCSIG(r0, 0x40045436, 0x2) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f00000006c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x47}}, 0x10) setsockopt$inet_udp_int(r1, 0x11, 0x67, &(0x7f0000000000)=0x507, 0x4) sendmmsg$inet(r1, &(0x7f0000000840)=[{{&(0x7f0000000c00)={0x2, 0x4e22, @multicast2}, 0x10, 0x0}}], 0x1, 0x2000c044) sendto$inet(r1, &(0x7f00000000c0)="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", 0xffe3, 0x0, 0x0, 0x0) 235.913867ms ago: executing program 0 (id=2798): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='kfree\x00', r0}, 0x18) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x4e24, 0xfffffffe, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000200)=@gcm_256={{0x304}, "b5d4c27c5c778dd0", "5f128fd81908609c81286d4f6a539024ffb7007ed672afb4be7aec5ca3d27dbf", '\x00', "b690a3fabf2cb970"}, 0x38) write$binfmt_script(r1, &(0x7f0000000a80), 0x4) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) close_range(r2, 0xffffffffffffffff, 0x0) 230.595897ms ago: executing program 3 (id=2799): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x2409c8c1, &(0x7f0000000240)={0xa, 0x4e20, 0x3, @empty, 0x2000}, 0x1c) sendto$inet6(r0, &(0x7f0000000e80)="0d0ad7c36d6617110e434332d6ac582208222cfb7c37ce1148f448455bc37f5f70c92774dcb201629979039d7c8943b207e5bdf9ab8eed9ace110469c51f4f211dd9fad815eb5b273ac04e1edc679bcdf0a0d24482de5454be9003cb80714a95e136bb704ee58e707d1e69b3c3a1c2c37f9c0402e14abdeb32086a49aff25e5c0f0131d59b4783316b9fa2c71c51ce76942d5f", 0x93, 0x6d91fb6102d8910c, 0x0, 0x0) sendmmsg$inet6(r0, &(0x7f0000001980)=[{{0x0, 0x0, &(0x7f0000000280)}}], 0x1, 0x40000000) recvmmsg(r0, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000340)=""/204, 0xcc}], 0x1}, 0xacf}], 0x1, 0x0, 0x0) 191.086641ms ago: executing program 2 (id=2800): pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = memfd_create(&(0x7f0000000080), 0x0) splice(r0, 0x0, r2, 0x0, 0x1ea9, 0x9) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x4, 0x0, 0x13f, 0x9}}, 0x20) 64.014963ms ago: executing program 0 (id=2801): r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xf) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) ioctl$TCFLSH(r1, 0x400455c8, 0x0) 5.335259ms ago: executing program 2 (id=2802): syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000004c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@usrquota}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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") 0s ago: executing program 3 (id=2803): bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6) io_setup(0x8f0, &(0x7f0000002400)=0x0) syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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") mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000580)='kmem_cache_free\x00', r3, 0x0, 0xac5}, 0x18) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x4048010) io_submit(r1, 0x1, &(0x7f0000000940)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}]) kernel console output (not intermixed with test programs): ffc0000 [ 330.510672][ T5829] kernel write not supported for file /snd/seq (pid: 5829 comm: kworker/1:5) [ 330.568461][ T27] audit: type=1326 audit(1766717785.782:3597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11303 comm="syz.0.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 330.596192][ T27] audit: type=1326 audit(1766717785.793:3598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11303 comm="syz.0.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 330.642447][ T27] audit: type=1326 audit(1766717785.918:3599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11307 comm="syz.0.2087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 330.670798][ T27] audit: type=1326 audit(1766717785.918:3600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11307 comm="syz.0.2087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 330.699142][ T27] audit: type=1326 audit(1766717785.929:3601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11307 comm="syz.0.2087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 330.745320][T11310] loop2: detected capacity change from 0 to 1024 [ 330.766671][T11310] EXT4-fs: Ignoring removed nomblk_io_submit option [ 330.775125][T11310] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 330.800334][T11310] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 330.827982][T11310] System zones: 0-1, 3-36 [ 330.851550][T11310] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 331.036586][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 331.158924][T11330] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2097'. [ 331.169537][T11333] random: crng reseeded on system resumption [ 331.195725][T11331] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2098'. [ 331.868323][T11344] lo speed is unknown, defaulting to 1000 [ 333.382384][T11368] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 333.396764][T11368] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 333.471031][T11368] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 333.485599][T11368] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 333.511295][T11366] lo speed is unknown, defaulting to 1000 [ 333.714996][T11368] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 333.755280][T11368] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 333.811118][T11371] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2114'. [ 333.839753][T11371] bridge0: port 2(bridge_slave_1) entered disabled state [ 333.929008][T11371] bridge_slave_1 (unregistering): left allmulticast mode [ 333.946423][T11371] bridge_slave_1 (unregistering): left promiscuous mode [ 333.959208][T11371] bridge0: port 2(bridge_slave_1) entered disabled state [ 334.033041][T11368] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 334.043256][T11368] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 334.194592][T11376] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2115'. [ 334.228476][T11368] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 334.252159][T11368] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 334.305062][T11368] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 334.322081][T11368] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 334.365250][T11368] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 334.378939][T11368] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 334.416617][T11368] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 334.425902][T11368] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 334.495106][T11388] loop2: detected capacity change from 0 to 512 [ 334.503011][T11388] ext4: Unknown parameter 'seclabel' [ 335.605290][T11399] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2124'. [ 335.898514][T11409] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 335.905962][T11409] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 335.935733][T11407] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2127'. [ 335.969905][T11407] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2127'. [ 336.068462][ T27] kauditd_printk_skb: 51 callbacks suppressed [ 336.068479][ T27] audit: type=1326 audit(1766717791.903:3653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11414 comm="syz.0.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 336.129187][ T27] audit: type=1326 audit(1766717791.903:3654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11414 comm="syz.0.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 336.177571][ T27] audit: type=1326 audit(1766717791.945:3655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11414 comm="syz.0.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 336.256439][ T27] audit: type=1326 audit(1766717791.945:3656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11414 comm="syz.0.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 336.287201][ T27] audit: type=1326 audit(1766717791.945:3657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11414 comm="syz.0.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 336.331518][ T27] audit: type=1326 audit(1766717791.945:3658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11414 comm="syz.0.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 336.402758][ T27] audit: type=1326 audit(1766717791.945:3659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11414 comm="syz.0.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 336.474411][ T27] audit: type=1326 audit(1766717791.945:3660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11414 comm="syz.0.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 336.524274][ T27] audit: type=1326 audit(1766717791.945:3661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11414 comm="syz.0.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 336.575826][ T27] audit: type=1326 audit(1766717791.945:3662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11414 comm="syz.0.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9db498f749 code=0x7ffc0000 [ 337.193879][T11435] lo speed is unknown, defaulting to 1000 [ 337.438725][T11447] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2147'. [ 337.474183][T11447] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 44399 - 0 [ 337.507114][T11447] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 44399 - 0 [ 337.532770][T11447] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 44399 - 0 [ 337.556783][T11447] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 44399 - 0 [ 337.579519][T11447] geneve2: entered promiscuous mode [ 337.584974][T11447] geneve2: entered allmulticast mode [ 338.552873][T11481] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2161'. [ 338.737996][T11484] macvtap0: refused to change device tx_queue_len [ 338.886142][ T5774] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 338.900958][ T5774] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 338.911761][ T5774] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 338.923613][ T5774] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 338.934137][ T5774] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 338.949540][ T5774] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 339.074201][T11485] lo speed is unknown, defaulting to 1000 [ 339.710079][T11485] chnl_net:caif_netlink_parms(): no params data found [ 339.776345][T11511] loop2: detected capacity change from 0 to 512 [ 339.984683][T11511] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 340.022355][T11511] ext4 filesystem being mounted at /479/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 340.282906][T11521] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2172'. [ 340.294204][T11521] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2172'. [ 340.726748][T11485] bridge0: port 1(bridge_slave_0) entered blocking state [ 340.761911][T11485] bridge0: port 1(bridge_slave_0) entered disabled state [ 340.786554][T11485] bridge_slave_0: entered allmulticast mode [ 340.803518][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 340.825122][T11485] bridge_slave_0: entered promiscuous mode [ 340.851022][T11485] bridge0: port 2(bridge_slave_1) entered blocking state [ 340.868717][T11485] bridge0: port 2(bridge_slave_1) entered disabled state [ 340.887107][T11485] bridge_slave_1: entered allmulticast mode [ 340.913711][T11485] bridge_slave_1: entered promiscuous mode [ 340.970222][ T5767] Bluetooth: hci4: command tx timeout [ 341.061582][ T27] kauditd_printk_skb: 34 callbacks suppressed [ 341.061600][ T27] audit: type=1326 audit(1766717797.142:3697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11523 comm="syz.3.2174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 341.107976][T11485] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 341.122619][ T27] audit: type=1326 audit(1766717797.174:3698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11523 comm="syz.3.2174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 341.127366][T11485] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 341.198819][ T27] audit: type=1326 audit(1766717797.184:3699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11523 comm="syz.3.2174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 341.265407][ T27] audit: type=1326 audit(1766717797.184:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11523 comm="syz.3.2174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 341.310513][T11485] team0: Port device team_slave_0 added [ 341.335620][T11485] team0: Port device team_slave_1 added [ 341.348829][ T27] audit: type=1326 audit(1766717797.184:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11523 comm="syz.3.2174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 341.385284][T11529] loop2: detected capacity change from 0 to 128 [ 341.410316][ T27] audit: type=1326 audit(1766717797.195:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11523 comm="syz.3.2174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 341.439554][T11485] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 341.455195][ T27] audit: type=1326 audit(1766717797.195:3703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11523 comm="syz.3.2174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 341.456642][T11485] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 341.500196][ T27] audit: type=1326 audit(1766717797.195:3704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11523 comm="syz.3.2174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 341.511878][T11485] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 341.560457][ T27] audit: type=1326 audit(1766717797.195:3705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11523 comm="syz.3.2174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 341.577146][T11485] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 341.608184][ T27] audit: type=1326 audit(1766717797.195:3706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11523 comm="syz.3.2174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 341.646062][T11485] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 341.679526][T11485] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 341.770146][T11485] hsr_slave_0: entered promiscuous mode [ 341.783855][T11485] hsr_slave_1: entered promiscuous mode [ 342.127341][T11541] IPVS: wlc: FWM 3 0x00000003 - no destination available [ 342.587959][T11485] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 342.621918][T11485] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 342.670720][T11485] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 342.697524][T11485] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 342.931244][T11564] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2188'. [ 342.952838][ T5767] Bluetooth: hci4: command tx timeout [ 343.019529][T11485] 8021q: adding VLAN 0 to HW filter on device bond0 [ 343.044422][T11485] 8021q: adding VLAN 0 to HW filter on device team0 [ 343.061800][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.069059][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.102967][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 343.110197][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.748392][T11485] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 343.908440][T11485] veth0_vlan: entered promiscuous mode [ 343.945906][T11485] veth1_vlan: entered promiscuous mode [ 344.036750][T11485] veth0_macvtap: entered promiscuous mode [ 344.050297][T11577] program syz.1.2192 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 344.057248][T11485] veth1_macvtap: entered promiscuous mode [ 344.072617][T11577] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 344.110600][T11485] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 344.134985][T11485] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.162911][T11485] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 344.189714][T11485] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.216448][T11485] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 344.232020][T11485] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 344.245708][T11485] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.277670][T11485] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 344.293645][T11485] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.312369][T11485] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 344.385443][T11485] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.429198][T11485] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.447086][T11485] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.462670][T11485] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 346.450328][ T5767] Bluetooth: hci4: command tx timeout [ 346.473129][T11589] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2196'. [ 346.482821][T11589] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2196'. [ 346.558144][ T27] kauditd_printk_skb: 47 callbacks suppressed [ 346.558162][ T27] audit: type=1326 audit(1766717803.915:3754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.3.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 346.624109][ T27] audit: type=1326 audit(1766717803.915:3755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.3.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 346.693142][ T27] audit: type=1326 audit(1766717803.915:3756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.3.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 346.717266][ T27] audit: type=1326 audit(1766717803.947:3757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.3.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 346.765349][ T27] audit: type=1326 audit(1766717803.947:3758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.3.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 346.825694][ T27] audit: type=1326 audit(1766717803.947:3759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.3.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 346.858212][ T27] audit: type=1326 audit(1766717803.947:3760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.3.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 346.903648][ T27] audit: type=1326 audit(1766717803.947:3761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.3.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 346.927932][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 346.936388][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 346.966456][ T27] audit: type=1326 audit(1766717803.947:3762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.3.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 347.055565][ T27] audit: type=1326 audit(1766717803.957:3763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.3.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fd8f058f749 code=0x7ffc0000 [ 347.068256][T11601] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2201'. [ 347.078679][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 347.078767][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 347.168071][T11601] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2201'. [ 347.657208][T11619] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2205'. [ 347.667604][T11619] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2205'. [ 348.399707][ T5767] Bluetooth: hci4: command tx timeout [ 348.407794][T11621] tipc: Started in network mode [ 348.439915][T11621] tipc: Node identity ac14140f, cluster identity 4711 [ 348.453018][T11621] tipc: New replicast peer: 255.255.255.255 [ 348.462198][T11621] tipc: Enabled bearer , priority 10 [ 348.966804][T11648] ptrace attach of "./syz-executor exec"[11649] was attempted by "./syz-executor exec"[11648] [ 349.024708][T11651] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2222'. [ 349.550282][ T5829] tipc: Node number set to 2886997007 [ 349.767269][T11682] loop2: detected capacity change from 0 to 128 [ 350.568884][T11693] loop2: detected capacity change from 0 to 1024 [ 350.595443][T11693] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 350.639209][T11685] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 350.651672][T11685] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 350.690817][T11685] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 350.708449][T11685] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 350.728685][T11685] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 350.740272][T11685] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 350.760113][T11685] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 350.775458][T11685] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 350.789701][T11685] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 350.793290][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.826906][ T5774] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 350.863877][ T5774] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 350.873025][ T5774] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 350.892568][ T5774] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 350.925326][ T5774] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 350.934744][ T5774] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 350.983622][T11701] loop2: detected capacity change from 0 to 128 [ 351.011806][T11694] lo speed is unknown, defaulting to 1000 [ 351.037615][T11701] veth0: entered promiscuous mode [ 351.065787][T11701] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2242'. [ 351.577687][T11707] netlink: 'syz.1.2245': attribute type 1 has an invalid length. [ 351.621088][T11707] 8021q: adding VLAN 0 to HW filter on device bond1 [ 351.682478][T11711] bond1: (slave veth3): Enslaving as an active interface with a down link [ 351.707827][T11714] bond0: (slave dummy0): Releasing backup interface [ 351.732654][T11714] bond1: (slave dummy0): making interface the new active one [ 351.742660][T11714] dummy0: entered promiscuous mode [ 351.749908][T11714] bond1: (slave dummy0): Enslaving as an active interface with an up link [ 351.760671][T11715] netlink: 'syz.2.2247': attribute type 4 has an invalid length. [ 351.907924][ T3439] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 351.931759][ T3439] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 351.947000][ T3439] netdevsim netdevsim3 eth3 (unregistering): unset [1, 1] type 2 family 0 port 44399 - 0 [ 352.061389][ T3439] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 352.108761][ T3439] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 352.118969][ T3439] netdevsim netdevsim3 eth2 (unregistering): unset [1, 1] type 2 family 0 port 44399 - 0 [ 352.234383][ T3439] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 352.263362][ T3439] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 352.287735][ T3439] netdevsim netdevsim3 eth1 (unregistering): unset [1, 1] type 2 family 0 port 44399 - 0 [ 352.313497][T11694] chnl_net:caif_netlink_parms(): no params data found [ 352.381319][ T3439] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 352.415054][ T3439] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 352.435905][ T3439] netdevsim netdevsim3 eth0 (unregistering): unset [1, 1] type 2 family 0 port 44399 - 0 [ 352.633404][ T5774] Bluetooth: hci2: command 0x0406 tx timeout [ 352.708380][ T5774] Bluetooth: hci4: command 0x0c1a tx timeout [ 352.714570][ T5767] Bluetooth: hci3: command 0x0406 tx timeout [ 352.721062][T11694] bridge0: port 1(bridge_slave_0) entered blocking state [ 352.750267][T11694] bridge0: port 1(bridge_slave_0) entered disabled state [ 352.765330][T11694] bridge_slave_0: entered allmulticast mode [ 352.773116][T11694] bridge_slave_0: entered promiscuous mode [ 352.784682][T11694] bridge0: port 2(bridge_slave_1) entered blocking state [ 352.792050][T11694] bridge0: port 2(bridge_slave_1) entered disabled state [ 352.799751][T11694] bridge_slave_1: entered allmulticast mode [ 352.807948][T11694] bridge_slave_1: entered promiscuous mode [ 352.938532][ T5774] Bluetooth: hci1: command tx timeout [ 352.974849][T11694] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 353.037425][T11694] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 353.061713][T11751] lo speed is unknown, defaulting to 1000 [ 353.065611][T11753] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2261'. [ 353.257014][T11694] team0: Port device team_slave_0 added [ 353.265991][ T3439] tipc: Disabling bearer [ 353.274536][ T3439] tipc: Left network mode [ 353.293241][T11694] team0: Port device team_slave_1 added [ 353.656182][T11694] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 353.674529][T11694] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 353.725943][T11694] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 354.073514][T11694] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 354.082085][T11694] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 354.109493][T11694] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 354.610805][ T5774] Bluetooth: hci2: command 0x0406 tx timeout [ 354.711986][ T5774] Bluetooth: hci4: command 0x0c1a tx timeout [ 354.719051][ T5774] Bluetooth: hci3: command 0x0406 tx timeout [ 354.760232][T11775] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2268'. [ 354.770052][T11775] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2268'. [ 354.916710][ T5767] Bluetooth: hci1: command tx timeout [ 355.168625][T11694] hsr_slave_0: entered promiscuous mode [ 355.186315][T11694] hsr_slave_1: entered promiscuous mode [ 355.197735][T11694] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 355.210762][T11694] Cannot create hsr debugfs directory [ 355.447847][ T27] kauditd_printk_skb: 54 callbacks suppressed [ 355.447864][ T27] audit: type=1326 audit(1766717813.241:3818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11787 comm="syz.2.2276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 355.517073][ T27] audit: type=1326 audit(1766717813.304:3819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11787 comm="syz.2.2276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 355.587969][ T27] audit: type=1326 audit(1766717813.304:3820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11787 comm="syz.2.2276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 356.012788][ T27] audit: type=1326 audit(1766717813.304:3821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11787 comm="syz.2.2276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 356.844523][ T5767] Bluetooth: hci4: command 0x0c1a tx timeout [ 357.782105][T11801] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2280'. [ 357.799681][T11801] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 357.808853][T11801] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 357.818123][T11801] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 357.828105][T11801] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 357.841391][T11801] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 357.850683][T11801] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 357.859661][T11801] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 357.869101][T11801] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 358.021145][ T5774] Bluetooth: hci1: command tx timeout [ 358.177982][T11801] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2280'. [ 358.195735][T11801] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 358.207815][T11801] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 358.217664][T11801] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 358.227781][T11801] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 358.249898][T11801] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 358.259370][T11801] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 358.268389][T11801] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 358.278569][T11801] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 359.150664][ T3439] bridge_slave_1: left allmulticast mode [ 359.163909][ T3439] bridge_slave_1: left promiscuous mode [ 359.172552][ T3439] bridge0: port 2(bridge_slave_1) entered disabled state [ 359.213744][ T3439] bridge_slave_0: left allmulticast mode [ 359.219836][ T3439] bridge_slave_0: left promiscuous mode [ 359.250851][ T3439] bridge0: port 1(bridge_slave_0) entered disabled state [ 359.327252][ T3439] veth1_macvtap: left promiscuous mode [ 359.333702][ T3439] veth0_macvtap: left promiscuous mode [ 359.350978][ T3439] veth1_vlan: left promiscuous mode [ 359.365190][ T3439] veth0_vlan: left promiscuous mode [ 359.621274][ T3439] infiniband syû: set down [ 359.944933][ T5774] Bluetooth: hci1: command tx timeout [ 360.085398][T11829] program syz.2.2291 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 360.114280][T11829] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 361.170156][ T3439] team0 (unregistering): Port device team_slave_1 removed [ 361.236337][ T3439] team0 (unregistering): Port device team_slave_0 removed [ 361.293896][ T3439] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 361.361861][ T3439] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 361.399448][ T41] smc: removing ib device syû [ 361.640759][ T3439] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 361.819395][ T3439] bond0 (unregistering): (slave team0): Releasing backup interface [ 362.011025][ T3439] bond0 (unregistering): Released all slaves [ 362.101581][T11823] netlink: 87 bytes leftover after parsing attributes in process `syz.1.2289'. [ 362.155604][T11834] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2292'. [ 362.172343][T11834] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.181632][T11834] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.190721][T11834] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.199992][T11834] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.220165][T11834] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 362.229442][T11834] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 362.238891][T11834] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 362.247918][T11834] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 362.323986][ T27] audit: type=1326 audit(1766717820.464:3822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.1.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 362.381442][ T27] audit: type=1326 audit(1766717820.495:3823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.1.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 362.421532][ T27] audit: type=1326 audit(1766717820.506:3824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.1.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 362.431392][T11694] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 362.462346][ T27] audit: type=1326 audit(1766717820.506:3825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.1.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 362.490248][T11694] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 362.498882][ T27] audit: type=1326 audit(1766717820.506:3826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.1.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 362.523429][ T27] audit: type=1326 audit(1766717820.506:3827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.1.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 362.553838][T11694] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 362.567342][ T27] audit: type=1326 audit(1766717820.506:3828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.1.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 362.584367][T11834] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2292'. [ 362.611477][T11834] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.621402][T11834] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.630177][T11834] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.639362][T11834] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.650885][ T27] audit: type=1326 audit(1766717820.506:3829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.1.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 362.697356][T11834] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 362.707819][T11834] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 362.716949][T11834] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 362.731988][ T27] audit: type=1326 audit(1766717820.506:3830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.1.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 362.736179][T11834] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 362.840018][T11694] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 363.412226][T11855] syz.0.2298[11855] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 363.412367][T11855] syz.0.2298[11855] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 363.632473][T11855] syzkaller0: entered promiscuous mode [ 363.670335][T11855] syzkaller0: entered allmulticast mode [ 364.145744][ T27] audit: type=1326 audit(1766717822.375:3831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11863 comm="syz.2.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 364.927260][ T42] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 365.208643][ T42] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 365.229995][ T42] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 365.240401][ T42] usb 3-1: Product: syz [ 365.254548][ T42] usb 3-1: Manufacturer: syz [ 365.259924][ T42] usb 3-1: SerialNumber: syz [ 365.410483][ T42] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 365.575085][ T5829] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 365.807550][ T8] usb 3-1: USB disconnect, device number 10 [ 365.887943][T11878] netlink: 28 bytes leftover after parsing attributes in process `gtp'. [ 366.473879][T11892] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096 [ 366.575420][ T5829] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 366.595222][ T5829] ath9k_htc: Failed to initialize the device [ 366.614508][ T8] usb 3-1: ath9k_htc: USB layer deinitialized [ 368.755220][T11900] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2319'. [ 368.764922][T11900] hsr_slave_0: left promiscuous mode [ 368.771511][T11900] hsr_slave_1: left promiscuous mode [ 368.901411][T11694] 8021q: adding VLAN 0 to HW filter on device bond0 [ 368.925283][ T3439] IPVS: stop unused estimator thread 0... [ 368.964518][T11694] 8021q: adding VLAN 0 to HW filter on device team0 [ 369.017283][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 369.024743][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 369.083226][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 369.090637][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 369.164593][ T27] kauditd_printk_skb: 27 callbacks suppressed [ 369.164609][ T27] audit: type=1326 audit(1766717827.644:3859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 369.256755][ T27] audit: type=1326 audit(1766717827.686:3860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 369.292593][ T27] audit: type=1326 audit(1766717827.686:3861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 369.347618][ T27] audit: type=1326 audit(1766717827.697:3863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 369.388136][ T27] audit: type=1326 audit(1766717827.697:3862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 369.435197][ T3465] dummy0: left promiscuous mode [ 369.471934][ T27] audit: type=1326 audit(1766717827.697:3864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 369.496719][T11920] loop2: detected capacity change from 0 to 8192 [ 369.548959][ T27] audit: type=1326 audit(1766717827.697:3865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 369.642217][ T27] audit: type=1326 audit(1766717827.697:3866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 369.769990][ T27] audit: type=1326 audit(1766717827.697:3867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 369.912022][ T27] audit: type=1326 audit(1766717827.697:3868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 370.417997][T11694] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 370.807733][T11694] veth0_vlan: entered promiscuous mode [ 370.905560][T11694] veth1_vlan: entered promiscuous mode [ 370.945844][T11940] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 370.966324][T11940] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.101171][T11940] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 371.111564][T11940] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.145317][T11694] veth0_macvtap: entered promiscuous mode [ 371.178756][T11940] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 371.194150][T11940] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.228630][T11694] veth1_macvtap: entered promiscuous mode [ 371.264696][T11694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 371.284343][T11694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 371.297684][T11694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 371.317982][T11694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 371.335734][T11694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 371.347038][T11694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 371.365743][T11694] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 371.379971][T11940] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 371.397000][T11940] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.431768][T11694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 371.450070][T11694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 371.497032][T11694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 371.517862][T11694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 371.528463][T11694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 371.539846][T11694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 371.552771][T11694] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 371.598010][T11694] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.618345][T11694] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.631904][T11694] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.650763][T11694] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.754165][T11940] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.774305][T11940] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.815113][T11940] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.825199][T11940] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.900912][T11940] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.909193][T11940] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.953688][T11940] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.986381][T11940] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 372.076489][ T1068] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 372.092565][ T1068] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 372.149291][ T3465] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 372.179577][ T3465] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 372.410366][T11952] syz.0.2339: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1 [ 372.454357][T11952] CPU: 1 PID: 11952 Comm: syz.0.2339 Not tainted syzkaller #0 [ 372.461902][T11952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 372.472192][T11952] Call Trace: [ 372.475507][T11952] [ 372.478779][T11952] dump_stack_lvl+0x16c/0x230 [ 372.483693][T11952] ? show_regs_print_info+0x20/0x20 [ 372.488956][T11952] ? load_image+0x3b0/0x3b0 [ 372.493505][T11952] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 372.499947][T11952] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 372.506592][T11952] warn_alloc+0x210/0x300 [ 372.510961][T11952] ? zone_watermark_ok_safe+0x230/0x230 [ 372.516703][T11952] ? _raw_spin_unlock+0x28/0x40 [ 372.521666][T11952] __vmalloc_node_range+0x662/0x1320 [ 372.526992][T11952] ? free_vm_area+0x50/0x50 [ 372.531613][T11952] ? _raw_spin_unlock+0x28/0x40 [ 372.536485][T11952] ? __kasan_kmalloc+0x8f/0xa0 [ 372.541264][T11952] __vmalloc_node_range+0x568/0x1320 [ 372.546685][T11952] ? hash_netiface_create+0x361/0xff0 [ 372.552166][T11952] ? __asan_memset+0x22/0x40 [ 372.556894][T11952] ? free_vm_area+0x50/0x50 [ 372.561444][T11952] ? kvmalloc_node+0x70/0x180 [ 372.566309][T11952] ? rcu_is_watching+0x15/0xb0 [ 372.571172][T11952] ? kvmalloc_node+0x70/0x180 [ 372.575859][T11952] ? trace_kmalloc+0x1f/0xa0 [ 372.580555][T11952] kvmalloc_node+0x13f/0x180 [ 372.585386][T11952] ? hash_netiface_create+0x361/0xff0 [ 372.590966][T11952] hash_netiface_create+0x361/0xff0 [ 372.596228][T11952] ? __lock_acquire+0x7c80/0x7c80 [ 372.601314][T11952] ? __nla_parse+0x40/0x50 [ 372.605770][T11952] ? hash_netport6_gc+0x570/0x570 [ 372.611022][T11952] ip_set_create+0xa87/0x18e0 [ 372.616119][T11952] ? ip_set_create+0x4b2/0x18e0 [ 372.621007][T11952] ? ip_set_protocol+0x5d0/0x5d0 [ 372.626076][T11952] ? trace_contention_end+0x39/0xe0 [ 372.632822][T11952] nfnetlink_rcv_msg+0xb49/0x1130 [ 372.637975][T11952] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 372.644358][T11952] ? nfnetlink_rcv_msg+0x20e/0x1130 [ 372.649871][T11952] ? nfnetlink_unbind+0x160/0x160 [ 372.655030][T11952] ? __dev_queue_xmit+0x1a64/0x35a0 [ 372.660330][T11952] ? __netlink_deliver_tap+0x5ab/0x830 [ 372.665803][T11952] ? netlink_deliver_tap+0x19c/0x1b0 [ 372.671101][T11952] ? netlink_unicast+0x72c/0x8d0 [ 372.676077][T11952] ? netlink_sendmsg+0x8c1/0xbe0 [ 372.681249][T11952] ? ____sys_sendmsg+0x5bf/0x950 [ 372.686631][T11952] ? ___sys_sendmsg+0x220/0x290 [ 372.691492][T11952] ? __se_sys_sendmsg+0x1a5/0x270 [ 372.696804][T11952] ? do_syscall_64+0x55/0xb0 [ 372.701522][T11952] netlink_rcv_skb+0x216/0x480 [ 372.706739][T11952] ? nfnetlink_unbind+0x160/0x160 [ 372.711980][T11952] ? netlink_ack+0x1110/0x1110 [ 372.716856][T11952] ? apparmor_capable+0x137/0x1a0 [ 372.721901][T11952] ? bpf_lsm_capable+0x9/0x10 [ 372.726613][T11952] ? security_capable+0x89/0xb0 [ 372.731762][T11952] nfnetlink_rcv+0x274/0x2180 [ 372.736501][T11952] ? __local_bh_enable_ip+0x12e/0x1c0 [ 372.742164][T11952] ? lockdep_hardirqs_on+0x98/0x150 [ 372.747473][T11952] ? __local_bh_enable_ip+0x12e/0x1c0 [ 372.752860][T11952] ? _local_bh_enable+0xa0/0xa0 [ 372.757734][T11952] ? __dev_queue_xmit+0x245/0x35a0 [ 372.762962][T11952] ? nfnetlink_net_exit_batch+0xa0/0xa0 [ 372.768635][T11952] ? __dev_queue_xmit+0x245/0x35a0 [ 372.773869][T11952] ? ref_tracker_free+0x634/0x7d0 [ 372.778912][T11952] ? __copy_skb_header+0xa7/0x550 [ 372.784057][T11952] ? refcount_inc+0x70/0x70 [ 372.788883][T11952] ? __skb_clone+0x63/0x790 [ 372.793438][T11952] ? __skb_clone+0x480/0x790 [ 372.798066][T11952] ? __netlink_deliver_tap+0x7e8/0x830 [ 372.803662][T11952] ? netlink_deliver_tap+0x2e/0x1b0 [ 372.808918][T11952] ? __lock_acquire+0x7c80/0x7c80 [ 372.814516][T11952] ? netlink_deliver_tap+0x2e/0x1b0 [ 372.819746][T11952] netlink_unicast+0x751/0x8d0 [ 372.824555][T11952] netlink_sendmsg+0x8c1/0xbe0 [ 372.829894][T11952] ? netlink_getsockopt+0x580/0x580 [ 372.835530][T11952] ? aa_sock_msg_perm+0x94/0x150 [ 372.840677][T11952] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 372.845981][T11952] ? security_socket_sendmsg+0x80/0xa0 [ 372.851604][T11952] ? netlink_getsockopt+0x580/0x580 [ 372.856867][T11952] ____sys_sendmsg+0x5bf/0x950 [ 372.861742][T11952] ? __asan_memset+0x22/0x40 [ 372.866447][T11952] ? __sys_sendmsg_sock+0x30/0x30 [ 372.871487][T11952] ? __import_iovec+0x5f2/0x860 [ 372.876458][T11952] ? import_iovec+0x73/0xa0 [ 372.880991][T11952] ___sys_sendmsg+0x220/0x290 [ 372.885687][T11952] ? __sys_sendmsg+0x270/0x270 [ 372.890597][T11952] __se_sys_sendmsg+0x1a5/0x270 [ 372.895468][T11952] ? __x64_sys_sendmsg+0x80/0x80 [ 372.900541][T11952] ? lockdep_hardirqs_on+0x98/0x150 [ 372.905947][T11952] do_syscall_64+0x55/0xb0 [ 372.910400][T11952] ? clear_bhb_loop+0x40/0x90 [ 372.915353][T11952] ? clear_bhb_loop+0x40/0x90 [ 372.920231][T11952] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 372.926148][T11952] RIP: 0033:0x7f5d4358f749 [ 372.930845][T11952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 372.951431][T11952] RSP: 002b:00007f5d4440b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 372.960227][T11952] RAX: ffffffffffffffda RBX: 00007f5d437e5fa0 RCX: 00007f5d4358f749 [ 372.968665][T11952] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003 [ 372.977104][T11952] RBP: 00007f5d43613f91 R08: 0000000000000000 R09: 0000000000000000 [ 372.985712][T11952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 372.993789][T11952] R13: 00007f5d437e6038 R14: 00007f5d437e5fa0 R15: 00007fffec23dc28 [ 373.001974][T11952] [ 373.084184][T11952] Mem-Info: [ 373.088956][T11952] active_anon:3846 inactive_anon:0 isolated_anon:0 [ 373.088956][T11952] active_file:10756 inactive_file:40030 isolated_file:0 [ 373.088956][T11952] unevictable:768 dirty:28 writeback:0 [ 373.088956][T11952] slab_reclaimable:11163 slab_unreclaimable:105827 [ 373.088956][T11952] mapped:23924 shmem:1617 pagetables:415 [ 373.088956][T11952] sec_pagetables:0 bounce:0 [ 373.088956][T11952] kernel_misc_reclaimable:0 [ 373.088956][T11952] free:1303580 free_pcp:13625 free_cma:0 [ 373.138725][T11952] Node 0 active_anon:15384kB inactive_anon:0kB active_file:43024kB inactive_file:159916kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:95696kB dirty:104kB writeback:0kB shmem:4932kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11336kB pagetables:1660kB sec_pagetables:0kB all_unreclaimable? no [ 373.173435][T11952] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 373.214196][T11952] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 373.255017][T11952] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 373.270947][T11952] Node 0 DMA32 free:1302748kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:15132kB inactive_anon:0kB active_file:43024kB inactive_file:158592kB unevictable:1536kB writepending:100kB present:3129332kB managed:2589640kB mlocked:0kB bounce:0kB free_pcp:32340kB local_pcp:19152kB free_cma:0kB [ 373.313804][T11952] lowmem_reserve[]: 0 0 1 1 1 [ 373.324320][T11952] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1324kB unevictable:0kB writepending:4kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 373.358884][T11952] lowmem_reserve[]: 0 0 0 0 0 [ 373.363897][T11952] Node 1 Normal free:3896204kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:8kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:21600kB local_pcp:15488kB free_cma:0kB [ 373.399507][T11952] lowmem_reserve[]: 0 0 0 0 0 [ 373.406908][T11952] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 373.437141][T11952] Node 0 DMA32: 997*4kB (ME) 195*8kB (UME) 31*16kB (ME) 494*32kB (UME) 384*64kB (UME) 103*128kB (UME) 62*256kB (ME) 25*512kB (ME) 12*1024kB (UM) 5*2048kB (UM) 291*4096kB (M) = 1302748kB [ 373.468014][T11952] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 373.492659][T11952] Node 1 Normal: 229*4kB (UM) 61*8kB (UME) 29*16kB (UME) 138*32kB (UME) 36*64kB (UME) 2*128kB (UE) 1*256kB (U) 2*512kB (UM) 1*1024kB (U) 1*2048kB (U) 948*4096kB (ME) = 3896204kB [ 373.515778][T11952] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 373.528708][T11952] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 373.539230][T11952] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 373.549350][T11952] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 373.562025][T11952] 52401 total pagecache pages [ 373.593760][T11952] 0 pages in swap cache [ 373.604780][T11952] Free swap = 124432kB [ 373.615065][T11952] Total swap = 124996kB [ 373.619284][T11952] 2097051 pages RAM [ 373.644576][T11952] 0 pages HighMem/MovableOnly [ 373.649428][T11952] 416127 pages reserved [ 373.664865][T11952] 0 pages cma reserved [ 373.788255][T11985] loop3: detected capacity change from 0 to 8192 [ 374.151483][T11998] pimreg: entered allmulticast mode [ 374.187052][T11998] pimreg: left allmulticast mode [ 374.300043][T12006] netlink: 'syz.3.2359': attribute type 10 has an invalid length. [ 374.323912][T12006] bridge0: port 2(bridge_slave_1) entered disabled state [ 374.332815][T12006] bridge0: port 1(bridge_slave_0) entered disabled state [ 374.395993][T12006] bridge0: port 2(bridge_slave_1) entered blocking state [ 374.404819][T12006] bridge0: port 2(bridge_slave_1) entered forwarding state [ 374.413900][T12006] bridge0: port 1(bridge_slave_0) entered blocking state [ 374.421220][T12006] bridge0: port 1(bridge_slave_0) entered forwarding state [ 374.502219][T12006] team0: Port device bridge0 added [ 374.644903][T12012] syzkaller0: entered promiscuous mode [ 374.650555][T12012] syzkaller0: entered allmulticast mode [ 375.288832][ T27] kauditd_printk_skb: 75 callbacks suppressed [ 375.288852][ T27] audit: type=1326 audit(1766717834.069:3944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.1.2366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 375.350047][ T27] audit: type=1326 audit(1766717834.111:3945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.1.2366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 375.415064][ T27] audit: type=1326 audit(1766717834.111:3946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.1.2366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 375.610143][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 375.642154][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 375.677364][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 375.714738][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 375.745007][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.256895][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 376.599114][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.607735][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.615453][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.623156][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.630918][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.640345][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.649578][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.657868][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.665505][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.673549][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.681100][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.704554][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.729334][ T7970] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0 [ 376.739291][ T7970] hid-generic 0003:0004:0000.0004: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 376.800296][T12037] netlink: 2184 bytes leftover after parsing attributes in process `syz.1.2372'. [ 376.825760][T12037] netlink: 144 bytes leftover after parsing attributes in process `syz.1.2372'. [ 376.836527][T12036] lo speed is unknown, defaulting to 1000 [ 376.955766][T12039] bridge_slave_0: left allmulticast mode [ 376.986350][T12039] bridge_slave_0: left promiscuous mode [ 377.032512][T12039] bridge0: port 1(bridge_slave_0) entered disabled state [ 377.103463][T12039] bond0: (slave bond_slave_0): Releasing backup interface [ 377.187106][T12039] bond0: (slave bond_slave_1): Releasing backup interface [ 377.260788][T12039] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 377.282197][T12039] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 377.299825][T12039] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 377.354221][T12039] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 377.375356][T12044] loop3: detected capacity change from 0 to 512 [ 377.721304][ T27] audit: type=1326 audit(1766717836.631:3947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12048 comm="syz.2.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 377.771462][ T27] audit: type=1326 audit(1766717836.631:3948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12048 comm="syz.2.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 377.816350][ T27] audit: type=1326 audit(1766717836.631:3949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12048 comm="syz.2.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 377.881441][ T27] audit: type=1326 audit(1766717836.631:3950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12048 comm="syz.2.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 377.910946][ T27] audit: type=1326 audit(1766717836.631:3951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12048 comm="syz.2.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 377.935720][ T27] audit: type=1326 audit(1766717836.631:3952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12048 comm="syz.2.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 377.963879][ T27] audit: type=1326 audit(1766717836.631:3953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12048 comm="syz.2.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 380.776229][T12104] IPv4: Oversized IP packet from 127.202.26.0 [ 380.793166][T12112] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2402'. [ 380.806196][T12112] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2402'. [ 380.819864][T12108] lo speed is unknown, defaulting to 1000 [ 381.318235][T12127] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2408'. [ 381.510398][ T27] kauditd_printk_skb: 19 callbacks suppressed [ 381.510415][ T27] audit: type=1326 audit(1766717840.599:3973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12131 comm="syz.1.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 381.596892][ T27] audit: type=1326 audit(1766717840.599:3974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12131 comm="syz.1.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 381.660882][ T27] audit: type=1326 audit(1766717840.652:3975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12131 comm="syz.1.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 381.731261][ T27] audit: type=1326 audit(1766717840.652:3976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12131 comm="syz.1.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 381.795055][ T27] audit: type=1326 audit(1766717840.652:3977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12131 comm="syz.1.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 381.801305][T12138] loop3: detected capacity change from 0 to 512 [ 381.864664][ T27] audit: type=1326 audit(1766717840.652:3978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12131 comm="syz.1.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 381.866396][T12138] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 381.907674][ T27] audit: type=1326 audit(1766717840.652:3979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12131 comm="syz.1.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 381.933516][ T27] audit: type=1326 audit(1766717840.652:3980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12131 comm="syz.1.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 381.957437][ T27] audit: type=1326 audit(1766717840.652:3981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12131 comm="syz.1.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 381.983406][T12138] EXT4-fs (loop3): too many log groups per flexible block group [ 382.003345][T12138] EXT4-fs (loop3): failed to initialize mballoc (-12) [ 382.030873][T12138] EXT4-fs (loop3): mount failed [ 382.069284][ T27] audit: type=1326 audit(1766717840.652:3982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12131 comm="syz.1.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e4df8f749 code=0x7ffc0000 [ 382.181706][T12138] syzkaller1: entered promiscuous mode [ 382.190967][T12138] syzkaller1: entered allmulticast mode [ 382.452950][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 382.534828][T12161] smc: net device bond0 applied user defined pnetid SYZ0 [ 382.570890][T12161] smc: net device bond0 erased user defined pnetid SYZ0 [ 383.089176][T12175] loop3: detected capacity change from 0 to 1024 [ 383.144131][T12175] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 383.214664][ T5767] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 383.233121][T12175] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 383.252278][ T5767] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 383.260080][T12175] EXT4-fs (loop3): orphan cleanup on readonly fs [ 383.274081][ T5767] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 383.286188][ T5767] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 383.287388][T12175] EXT4-fs error (device loop3): ext4_free_blocks:6676: comm syz.3.2430: Freeing blocks not in datazone - block = 0, count = 4096 [ 383.320993][ T5767] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 383.328726][ T5767] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 383.336565][T12175] EXT4-fs (loop3): 1 orphan inode deleted [ 383.338452][T12175] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 383.501030][T12165] bridge0: port 2(bridge_slave_1) entered disabled state [ 383.509435][T12165] bridge0: port 1(bridge_slave_0) entered disabled state [ 383.519209][T11694] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 384.548237][T12165] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 384.615806][T12165] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 384.972814][T12165] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 384.983494][T12165] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 384.997916][T12165] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 385.008046][T12165] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 385.172070][ T5768] syz_tun (unregistering): left allmulticast mode [ 385.272668][T12179] lo speed is unknown, defaulting to 1000 [ 385.322364][ T5767] Bluetooth: hci0: command tx timeout [ 385.600425][ T3465] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 385.659618][ T3465] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 385.701371][T12208] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2439'. [ 385.729285][T12179] chnl_net:caif_netlink_parms(): no params data found [ 385.765145][ T3465] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 385.790603][ T3465] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 386.111617][ T3465] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 386.123180][ T3465] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 386.241886][T12226] hub 9-0:1.0: USB hub found [ 386.249280][T12226] hub 9-0:1.0: 1 port detected [ 387.023757][ T3465] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 387.075983][ T3465] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 387.178762][T12237] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2447'. [ 387.267509][T12179] bridge0: port 1(bridge_slave_0) entered blocking state [ 387.303208][ T5767] Bluetooth: hci0: command tx timeout [ 387.313189][T12179] bridge0: port 1(bridge_slave_0) entered disabled state [ 387.342432][T12179] bridge_slave_0: entered allmulticast mode [ 387.383064][T12179] bridge_slave_0: entered promiscuous mode [ 387.455700][T12179] bridge0: port 2(bridge_slave_1) entered blocking state [ 387.486326][T12179] bridge0: port 2(bridge_slave_1) entered disabled state [ 387.501817][T12179] bridge_slave_1: entered allmulticast mode [ 387.526390][T12179] bridge_slave_1: entered promiscuous mode [ 387.743429][T12179] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 387.745955][ T27] kauditd_printk_skb: 38 callbacks suppressed [ 387.745983][ T27] audit: type=1326 audit(1766717847.150:4021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12245 comm="syz.3.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 387.801498][T12179] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 387.851876][ T27] audit: type=1326 audit(1766717847.202:4022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12245 comm="syz.3.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 387.893117][ T27] audit: type=1326 audit(1766717847.202:4023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12245 comm="syz.3.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 387.964188][ T27] audit: type=1326 audit(1766717847.202:4024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12245 comm="syz.3.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 388.052607][ T27] audit: type=1326 audit(1766717847.202:4025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12245 comm="syz.3.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 388.121707][ T27] audit: type=1326 audit(1766717847.202:4026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12245 comm="syz.3.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 388.160379][ T3465] tipc: Disabling bearer [ 388.176414][ T3465] tipc: Left network mode [ 388.193196][ T27] audit: type=1326 audit(1766717847.213:4027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12245 comm="syz.3.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 388.220686][T12179] team0: Port device team_slave_0 added [ 388.277126][T12179] team0: Port device team_slave_1 added [ 388.284264][ T27] audit: type=1326 audit(1766717847.213:4028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12245 comm="syz.3.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 388.331254][ T27] audit: type=1326 audit(1766717847.213:4029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12245 comm="syz.3.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 388.384954][ T27] audit: type=1326 audit(1766717847.213:4030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12245 comm="syz.3.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 388.729688][T12179] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 388.746700][T12179] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 388.807424][T12179] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 389.146500][T12179] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 389.242660][T12179] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 389.304901][ T5767] Bluetooth: hci0: command tx timeout [ 389.515135][T12179] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 390.121750][T12179] hsr_slave_0: entered promiscuous mode [ 390.145100][T12179] hsr_slave_1: entered promiscuous mode [ 390.176075][T12283] loop2: detected capacity change from 0 to 1024 [ 390.183155][T12179] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 390.199886][T12179] Cannot create hsr debugfs directory [ 390.238076][T12283] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none. [ 390.393921][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 390.395991][T12290] loop3: detected capacity change from 0 to 2048 [ 390.442324][T12290] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 390.495865][T12294] loop2: detected capacity change from 0 to 512 [ 390.513021][T12294] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 390.540311][T12294] EXT4-fs (loop2): 1 truncate cleaned up [ 390.547867][T12294] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 390.571313][T12294] EXT4-fs error (device loop2): ext4_generic_delete_entry:2729: inode #2: block 13: comm syz.2.2466: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 390.632632][T12294] EXT4-fs (loop2): Remounting filesystem read-only [ 390.641754][T12294] EXT4-fs warning (device loop2): ext4_rename_delete:3778: inode #2: comm syz.2.2466: Deleting old file: nlink 5, error=-117 [ 390.758307][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 391.224755][T12296] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 391.246352][ T3465] hsr_slave_0: left promiscuous mode [ 391.255258][ T3465] hsr_slave_1: left promiscuous mode [ 391.265113][ T5767] Bluetooth: hci0: command tx timeout [ 391.268951][T12296] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 391.284874][ T3465] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 391.292962][ T3465] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 391.300627][T12296] EXT4-fs (loop3): This should not happen!! Data will be lost [ 391.300627][T12296] [ 391.314475][ T3465] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 391.319773][T12305] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5) [ 391.327975][ T3465] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 391.328847][T12305] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 391.337258][T12296] EXT4-fs (loop3): Total free blocks count 0 [ 391.352007][ T3465] bridge_slave_1: left allmulticast mode [ 391.356105][T12305] vhci_hcd vhci_hcd.0: Device attached [ 391.357705][ T3465] bridge_slave_1: left promiscuous mode [ 391.357956][ T3465] bridge0: port 2(bridge_slave_1) entered disabled state [ 391.372413][T12306] vhci_hcd: connection closed [ 391.376945][T12296] EXT4-fs (loop3): Free/Dirty block details [ 391.384323][ T1068] vhci_hcd: stop threads [ 391.388293][T12296] EXT4-fs (loop3): free_blocks=2415919104 [ 391.399250][ T1068] vhci_hcd: release socket [ 391.399274][ T1068] vhci_hcd: disconnect device [ 391.411394][T12296] EXT4-fs (loop3): dirty_blocks=3312 [ 391.416887][T12296] EXT4-fs (loop3): Block reservation details [ 391.418060][ T3465] bridge_slave_0: left allmulticast mode [ 391.424037][T12296] EXT4-fs (loop3): i_reserved_data_blocks=207 [ 391.437374][ T3465] bridge_slave_0: left promiscuous mode [ 391.443505][ T3465] bridge0: port 1(bridge_slave_0) entered disabled state [ 391.491210][ T3465] veth1_macvtap: left promiscuous mode [ 391.500996][ T3465] veth0_macvtap: left promiscuous mode [ 391.508729][ T3465] veth1_vlan: left promiscuous mode [ 391.515116][ T3465] veth0_vlan: left promiscuous mode [ 391.554559][T12227] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 1250 with error 28 [ 391.755878][ T3465] bond1 (unregistering): (slave veth3): Releasing active interface [ 391.785355][ T3465] bond1 (unregistering): (slave veth3): the permanent HWaddr of slave - de:bf:cc:e2:82:7e - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts [ 391.820855][ T3465] dummy0 (unregistering): entered promiscuous mode [ 391.838174][T12309] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2470'. [ 392.184149][ T3465] bond1 (unregistering): (slave dummy0): Releasing active interface [ 392.193222][ T3465] dummy0 (unregistering): left promiscuous mode [ 392.202691][ T3465] bond1 (unregistering): Released all slaves [ 392.883597][ T3465] team0 (unregistering): Port device team_slave_1 removed [ 393.022046][ T3465] team0 (unregistering): Port device team_slave_0 removed [ 393.072131][ T27] kauditd_printk_skb: 395 callbacks suppressed [ 393.072148][ T27] audit: type=1326 audit(1766717852.745:4426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.2.2476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 393.104925][ T3465] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 393.112504][ T27] audit: type=1326 audit(1766717852.756:4427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.2.2476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 393.138303][ T27] audit: type=1326 audit(1766717852.756:4428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.2.2476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 393.162525][ T27] audit: type=1326 audit(1766717852.756:4429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.2.2476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 393.186707][ T27] audit: type=1326 audit(1766717852.766:4430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.2.2476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 393.213502][ T3465] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 393.216174][ T27] audit: type=1326 audit(1766717852.766:4431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.2.2476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 393.249510][ T27] audit: type=1326 audit(1766717852.766:4432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.2.2476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 393.272871][ T27] audit: type=1326 audit(1766717852.766:4433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.2.2476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 393.296498][ T27] audit: type=1326 audit(1766717852.766:4434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.2.2476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 393.336104][ T27] audit: type=1326 audit(1766717852.766:4435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.2.2476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 394.193596][ T3465] bond0 (unregistering): Released all slaves [ 394.550395][T12343] loop2: detected capacity change from 0 to 512 [ 394.577186][T12343] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x05417272 (sector = 1) [ 394.590158][T12343] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 394.647708][T12179] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 394.673833][T12343] FAT-fs (loop2): FAT read failed (blocknr 128) [ 394.723517][T12179] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 394.761149][T12179] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 394.795299][T12179] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 395.028412][ T3465] IPVS: stop unused estimator thread 0... [ 395.155344][T12179] 8021q: adding VLAN 0 to HW filter on device bond0 [ 395.258190][T12179] 8021q: adding VLAN 0 to HW filter on device team0 [ 395.298691][ T3439] bridge0: port 1(bridge_slave_0) entered blocking state [ 395.306570][ T3439] bridge0: port 1(bridge_slave_0) entered forwarding state [ 395.372321][ T1068] bridge0: port 2(bridge_slave_1) entered blocking state [ 395.379807][ T1068] bridge0: port 2(bridge_slave_1) entered forwarding state [ 395.808216][T12179] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 395.895319][T12179] veth0_vlan: entered promiscuous mode [ 395.911604][T12179] veth1_vlan: entered promiscuous mode [ 395.954352][T12179] veth0_macvtap: entered promiscuous mode [ 395.967215][T12179] veth1_macvtap: entered promiscuous mode [ 395.997796][T12179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 396.008755][T12179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 396.029827][T12179] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 396.052339][T12179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 396.063671][T12179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 396.082767][T12179] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 396.098504][T12179] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 396.107612][T12179] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 396.117256][T12179] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 396.126659][T12179] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 396.215148][ T3439] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 396.231403][ T3439] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 396.273267][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 396.284668][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 396.430569][T12367] netlink: 'syz.2.2488': attribute type 10 has an invalid length. [ 396.521558][T12373] loop3: detected capacity change from 0 to 512 [ 396.541273][T12367] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 396.557899][T12373] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 396.595283][T12373] EXT4-fs (loop3): 1 truncate cleaned up [ 396.597091][T12372] loop1: detected capacity change from 0 to 1764 [ 396.611656][T12372] isofs_fill_super: bread failed, dev=loop1, iso_blknum=1133648757, block=-2027669782 [ 396.638914][T12373] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 396.864156][T11694] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 397.913114][T12397] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2500'. [ 397.936767][T12397] IPVS: Unknown mcast interface: vcan0 [ 398.777284][T12406] random: crng reseeded on system resumption [ 399.667076][T12418] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 399.850348][T12422] Invalid argument reading file caps for ./file0 [ 400.988809][ T27] kauditd_printk_skb: 304 callbacks suppressed [ 400.988826][ T27] audit: type=1326 audit(1766717861.049:4740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12429 comm="syz.2.2514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 401.063941][ T27] audit: type=1326 audit(1766717861.049:4741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12429 comm="syz.2.2514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 401.126086][ T27] audit: type=1326 audit(1766717861.049:4742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12429 comm="syz.2.2514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 401.181547][ T27] audit: type=1326 audit(1766717861.049:4743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12429 comm="syz.2.2514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 401.238897][ T27] audit: type=1326 audit(1766717861.049:4744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12429 comm="syz.2.2514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 401.291247][T12436] bridge0: port 2(bridge_slave_1) entered disabled state [ 401.299143][T12436] bridge0: port 1(bridge_slave_0) entered disabled state [ 401.314866][ T27] audit: type=1326 audit(1766717861.049:4745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12429 comm="syz.2.2514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 401.372716][ T27] audit: type=1326 audit(1766717861.049:4746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12429 comm="syz.2.2514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 401.422317][ T27] audit: type=1326 audit(1766717861.060:4747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12429 comm="syz.2.2514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 401.446979][T12436] team0: Port device bridge0 removed [ 401.457815][ T27] audit: type=1326 audit(1766717861.060:4748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12429 comm="syz.2.2514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 401.497310][T12436] bridge_slave_0: left allmulticast mode [ 401.503670][T12436] bridge_slave_0: left promiscuous mode [ 401.509936][ T27] audit: type=1326 audit(1766717861.060:4749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12429 comm="syz.2.2514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cc38f749 code=0x7ffc0000 [ 401.531307][T12436] bridge0: port 1(bridge_slave_0) entered disabled state [ 401.546497][T12436] bridge_slave_1: left allmulticast mode [ 401.553078][T12436] bridge_slave_1: left promiscuous mode [ 401.565008][T12436] bridge0: port 2(bridge_slave_1) entered disabled state [ 401.595722][T12436] bond0: (slave bond_slave_0): Releasing backup interface [ 401.632157][T12436] bond0: (slave bond_slave_1): Releasing backup interface [ 401.689022][T12436] team0: Port device team_slave_0 removed [ 401.730050][T12436] team0: Port device team_slave_1 removed [ 401.754171][T12436] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 401.774557][T12436] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 401.797414][T12436] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 401.805621][T12436] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 401.892134][T12439] netlink: 400 bytes leftover after parsing attributes in process `syz.3.2516'. [ 401.915880][T12441] netlink: 'syz.3.2516': attribute type 10 has an invalid length. [ 401.924313][T12441] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2516'. [ 401.945680][T12441] batman_adv: batadv0: Adding interface: virt_wifi0 [ 401.952883][T12441] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 401.981940][T12441] batman_adv: batadv0: Interface activated: virt_wifi0 [ 402.102052][T12445] syzkaller0: entered promiscuous mode [ 402.108377][T12445] syzkaller0: entered allmulticast mode [ 407.830215][ T27] kauditd_printk_skb: 27 callbacks suppressed [ 407.830232][ T27] audit: type=1326 audit(1766717868.230:4777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.0.2537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 407.925832][ T27] audit: type=1326 audit(1766717868.272:4778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.0.2537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 408.012648][ T27] audit: type=1326 audit(1766717868.272:4779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.0.2537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 408.088035][ T27] audit: type=1326 audit(1766717868.272:4780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.0.2537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 408.088691][ T5774] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 408.125141][ T27] audit: type=1326 audit(1766717868.272:4781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.0.2537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 408.148421][ T5774] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 408.158854][ T5774] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 408.181398][ T5774] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 408.191936][ T5774] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 408.199829][ T5774] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 408.629027][T12521] loop1: detected capacity change from 0 to 2048 [ 408.646648][T12502] chnl_net:caif_netlink_parms(): no params data found [ 408.704606][T12521] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 408.753617][T12527] netlink: 388 bytes leftover after parsing attributes in process `syz.3.2541'. [ 408.827560][T12521] atomic_op ffff88802e054198 conn xmit_atomic 0000000000000000 [ 408.840794][T12521] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2249: inode #12: comm syz.1.2546: corrupted in-inode xattr: e_value size too large [ 408.976842][T12502] bridge0: port 1(bridge_slave_0) entered blocking state [ 408.993267][T12502] bridge0: port 1(bridge_slave_0) entered disabled state [ 409.011955][T12502] bridge_slave_0: entered allmulticast mode [ 409.031901][T12502] bridge_slave_0: entered promiscuous mode [ 409.040935][T12179] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 409.064152][T12502] bridge0: port 2(bridge_slave_1) entered blocking state [ 409.080318][T12502] bridge0: port 2(bridge_slave_1) entered disabled state [ 409.095755][T12502] bridge_slave_1: entered allmulticast mode [ 409.114862][T12502] bridge_slave_1: entered promiscuous mode [ 409.209022][T12502] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 409.237218][T12502] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 409.320440][T12502] team0: Port device team_slave_0 added [ 409.341912][T12502] team0: Port device team_slave_1 added [ 409.438158][T12502] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 409.461978][T12502] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 409.525998][T12502] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 409.566928][T12502] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 409.583011][T12502] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 409.649834][T12502] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 409.774846][T12538] netlink: 'syz.1.2549': attribute type 30 has an invalid length. [ 409.823281][T12538] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 409.832680][T12538] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 409.841663][T12538] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 409.850570][T12538] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 409.876213][T12538] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 409.885985][T12538] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 409.894968][T12538] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 409.904072][T12538] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 409.960995][T12502] hsr_slave_0: entered promiscuous mode [ 409.971777][T12502] hsr_slave_1: entered promiscuous mode [ 409.981347][T12502] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 409.999165][T12502] Cannot create hsr debugfs directory [ 410.165299][ T5774] Bluetooth: hci2: command tx timeout [ 410.269306][ T27] audit: type=1326 audit(1766717870.791:4782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12542 comm="syz.3.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 410.336185][ T27] audit: type=1326 audit(1766717870.791:4783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12542 comm="syz.3.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 410.373125][ T27] audit: type=1326 audit(1766717870.833:4784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12542 comm="syz.3.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 410.412008][ T27] audit: type=1326 audit(1766717870.833:4785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12542 comm="syz.3.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 410.449207][ T27] audit: type=1326 audit(1766717870.833:4786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12542 comm="syz.3.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 410.491315][T12549] loop3: detected capacity change from 0 to 512 [ 410.553888][T12549] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 410.574530][T12549] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 410.966409][T11694] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 411.083464][T12502] netdevsim netdevsim2 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 411.111987][T12502] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 411.221274][T12561] netlink: 332 bytes leftover after parsing attributes in process `syz.1.2559'. [ 411.236024][T12502] netdevsim netdevsim2 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 411.247787][T12502] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 411.345985][T12502] netdevsim netdevsim2 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 411.358392][T12502] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 411.377908][T12562] netlink: 'syz.3.2557': attribute type 21 has an invalid length. [ 411.387701][T12562] netlink: 'syz.3.2557': attribute type 1 has an invalid length. [ 411.400472][T12562] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2557'. [ 411.434257][T12502] netdevsim netdevsim2 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 411.451984][T12502] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 411.737340][T12502] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 411.751490][T12502] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 411.784797][T12502] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 411.814352][T12502] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 412.202010][ T5774] Bluetooth: hci2: command tx timeout [ 412.303466][T12502] 8021q: adding VLAN 0 to HW filter on device bond0 [ 412.423903][T12502] 8021q: adding VLAN 0 to HW filter on device team0 [ 412.465444][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 412.472673][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 412.509479][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 412.516691][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 412.632438][T12502] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 412.984000][T12502] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 413.101668][T12502] veth0_vlan: entered promiscuous mode [ 413.129548][T12502] veth1_vlan: entered promiscuous mode [ 413.172854][T12502] veth0_macvtap: entered promiscuous mode [ 413.188187][T12502] veth1_macvtap: entered promiscuous mode [ 413.218493][T12502] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 413.232609][T12502] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 413.245034][T12502] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 413.268263][T12502] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 413.293138][T12502] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 413.313962][T12502] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 413.341464][T12502] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 413.352224][T12502] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 413.362452][T12502] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 413.371591][T12502] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 413.519738][ T27] kauditd_printk_skb: 32 callbacks suppressed [ 413.519756][ T27] audit: type=1326 audit(1766717874.214:4819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12603 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 413.573817][ T27] audit: type=1326 audit(1766717874.214:4820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12603 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 413.602595][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 413.627431][ T27] audit: type=1326 audit(1766717874.256:4821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12603 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 413.652538][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 413.663324][ T27] audit: type=1326 audit(1766717874.256:4822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12603 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 413.697301][ T27] audit: type=1326 audit(1766717874.256:4823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12603 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 413.723678][ T27] audit: type=1326 audit(1766717874.256:4824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12603 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 413.768750][ T27] audit: type=1326 audit(1766717874.256:4825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12603 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 413.793630][ T3465] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 413.802115][ T3465] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 413.811839][ T27] audit: type=1326 audit(1766717874.256:4826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12603 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 413.845675][ T27] audit: type=1326 audit(1766717874.256:4827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12603 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 413.881514][ T27] audit: type=1326 audit(1766717874.256:4828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12603 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 414.137254][ T5774] Bluetooth: hci2: command tx timeout [ 414.572631][T12633] rdma_op ffff88807d3061f0 conn xmit_rdma 0000000000000000 [ 415.118031][T12647] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2583'. [ 415.146168][T12647] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2583'. [ 416.117529][ T5774] Bluetooth: hci2: command tx timeout [ 416.194737][T12655] loop1: detected capacity change from 0 to 512 [ 416.202811][T12655] journal_path: Lookup failure for './file0' [ 416.210205][T12655] EXT4-fs: error: could not find journal device path [ 416.359648][T12664] loop3: detected capacity change from 0 to 736 [ 417.165623][T12689] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2603'. [ 417.176477][T12689] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2603'. [ 417.935847][T12695] loop3: detected capacity change from 0 to 2048 [ 418.015476][T12695] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 418.051203][T12695] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 418.129761][T11694] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 418.267250][T12710] loop2: detected capacity change from 0 to 1024 [ 418.285847][T12710] EXT4-fs: Ignoring removed bh option [ 418.315742][T12710] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 418.384241][T12502] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 418.475602][ T27] kauditd_printk_skb: 47 callbacks suppressed [ 418.475619][ T27] audit: type=1326 audit(1766717879.410:4876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12720 comm="syz.1.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 418.509121][T12721] loop1: detected capacity change from 0 to 164 [ 418.526821][T12721] Unable to read rock-ridge attributes [ 418.543230][T12721] Unable to read rock-ridge attributes [ 418.629022][ T27] audit: type=1326 audit(1766717879.421:4877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12720 comm="syz.1.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 418.688448][ T27] audit: type=1326 audit(1766717879.431:4878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12720 comm="syz.1.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 418.721572][ T27] audit: type=1326 audit(1766717879.431:4879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12720 comm="syz.1.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 418.744209][ T27] audit: type=1326 audit(1766717879.431:4880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12720 comm="syz.1.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 418.774567][ T27] audit: type=1326 audit(1766717879.431:4881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12720 comm="syz.1.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 418.799264][ T27] audit: type=1326 audit(1766717879.431:4882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12720 comm="syz.1.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 418.823749][ T27] audit: type=1326 audit(1766717879.431:4883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12720 comm="syz.1.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 418.848968][ T27] audit: type=1326 audit(1766717879.431:4884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12720 comm="syz.1.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 418.877058][ T27] audit: type=1326 audit(1766717879.431:4885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12720 comm="syz.1.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc798f749 code=0x7ffc0000 [ 418.915123][T12728] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2620'. [ 418.925505][T12728] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2620'. [ 419.856350][T12740] netlink: 'syz.3.2625': attribute type 1 has an invalid length. [ 419.918318][ T5767] Bluetooth: hci3: command 0x1003 tx timeout [ 419.926616][ T5774] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 420.859014][T12751] loop2: detected capacity change from 0 to 164 [ 420.897828][T12751] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 420.937931][T12751] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 420.965856][T12751] Symlink component flag not implemented [ 420.971745][T12751] Symlink component flag not implemented [ 421.000952][T12751] Symlink component flag not implemented (7) [ 421.016030][T12751] Symlink component flag not implemented (116) [ 421.541845][T12769] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2633'. [ 421.552344][T12769] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2633'. [ 422.862390][ T11] Bluetooth: hci3: Frame reassembly failed (-84) [ 422.881912][T12783] Bluetooth: hci3: Frame reassembly failed (-84) [ 422.964742][T12786] loop6: detected capacity change from 0 to 7 [ 423.001198][T12786] Dev loop6: unable to read RDB block 7 [ 423.011996][T12786] loop6: AHDI p1 p2 p3 [ 423.018869][T12786] loop6: partition table partially beyond EOD, truncated [ 423.032343][T12786] loop6: p1 start 1601398130 is beyond EOD, truncated [ 423.069605][T12786] loop6: p2 start 1702059890 is beyond EOD, truncated [ 423.265916][T12792] netlink: 'syz.3.2641': attribute type 3 has an invalid length. [ 423.281490][T12792] netlink: 'syz.3.2641': attribute type 1 has an invalid length. [ 423.289636][T12792] netlink: 181400 bytes leftover after parsing attributes in process `syz.3.2641'. [ 423.720161][T12805] netlink: 'syz.0.2646': attribute type 9 has an invalid length. [ 423.752489][T12805] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2646'. [ 423.993610][ T27] kauditd_printk_skb: 48 callbacks suppressed [ 423.993628][ T27] audit: type=1326 audit(1766717885.205:4934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12809 comm="syz.0.2648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 424.092978][T12811] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2647'. [ 424.103631][T12811] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2647'. [ 424.165757][ T27] audit: type=1326 audit(1766717885.237:4935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12809 comm="syz.0.2648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 424.490587][ T27] audit: type=1326 audit(1766717885.247:4936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12809 comm="syz.0.2648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 424.689528][ T27] audit: type=1326 audit(1766717885.247:4937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12809 comm="syz.0.2648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 424.773925][ T27] audit: type=1326 audit(1766717885.247:4938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12809 comm="syz.0.2648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 424.805068][ T5767] Bluetooth: hci3: command 0x1003 tx timeout [ 424.812906][ T5774] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 424.938606][ T27] audit: type=1326 audit(1766717885.247:4939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12809 comm="syz.0.2648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 425.022307][ T27] audit: type=1326 audit(1766717885.247:4940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12809 comm="syz.0.2648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 425.109972][ T27] audit: type=1326 audit(1766717885.247:4941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12809 comm="syz.0.2648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358f749 code=0x7ffc0000 [ 425.297919][T12829] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2657'. [ 425.343603][T12828] xt_TPROXY: Can be used only with -p tcp or -p udp [ 425.647883][T12837] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2658'. [ 425.658194][T12837] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2658'. [ 426.425986][T12847] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2664'. [ 426.539828][T12853] loop3: detected capacity change from 0 to 128 [ 426.568916][T12853] FAT-fs (loop3): Directory bread(block 32) failed [ 426.586335][T12853] FAT-fs (loop3): Directory bread(block 33) failed [ 426.593332][T12853] FAT-fs (loop3): Directory bread(block 34) failed [ 426.607663][T12853] FAT-fs (loop3): Directory bread(block 35) failed [ 426.614526][T12853] FAT-fs (loop3): Directory bread(block 36) failed [ 426.621563][T12853] FAT-fs (loop3): Directory bread(block 37) failed [ 426.629153][T12853] FAT-fs (loop3): Directory bread(block 38) failed [ 426.641645][T12853] FAT-fs (loop3): Directory bread(block 39) failed [ 426.659882][T12853] FAT-fs (loop3): Directory bread(block 40) failed [ 426.666930][T12853] FAT-fs (loop3): Directory bread(block 41) failed [ 426.811893][ T27] audit: type=1326 audit(1766717888.165:4942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12860 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 426.870056][T12853] syz.3.2666: attempt to access beyond end of device [ 426.870056][T12853] loop3: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 426.874425][ T27] audit: type=1326 audit(1766717888.165:4943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12860 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 426.894515][T12853] syz.3.2666: attempt to access beyond end of device [ 426.894515][T12853] loop3: rw=0, sector=4600, nr_sectors = 4 limit=128 [ 427.688101][T12883] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2681'. [ 427.707916][T12883] bridge_slave_1: left allmulticast mode [ 427.724966][T12883] bridge_slave_1: left promiscuous mode [ 427.745352][T12883] bridge0: port 2(bridge_slave_1) entered disabled state [ 427.770127][T12883] bridge_slave_0: left allmulticast mode [ 427.785094][T12883] bridge_slave_0: left promiscuous mode [ 427.797166][T12883] bridge0: port 1(bridge_slave_0) entered disabled state [ 428.950136][T12913] loop3: detected capacity change from 0 to 128 [ 428.964983][T12913] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 428.981083][T12913] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 429.128180][T12917] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2692'. [ 429.667382][T12917] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2692'. [ 430.142350][T12193] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 430.163749][T12193] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz1] on syz0 [ 430.309067][T12940] loop3: detected capacity change from 0 to 512 [ 430.348576][T12940] ext4: Unknown parameter 'seclabel' [ 431.482516][T12946] bridge_slave_0: left allmulticast mode [ 431.520468][T12946] bridge_slave_0: left promiscuous mode [ 431.538836][T12946] bridge0: port 1(bridge_slave_0) entered disabled state [ 431.557477][T12946] bridge_slave_1: left allmulticast mode [ 431.568814][T12946] bridge_slave_1: left promiscuous mode [ 431.574957][T12946] bridge0: port 2(bridge_slave_1) entered disabled state [ 431.595423][T12946] bond0: (slave bond_slave_0): Releasing backup interface [ 431.617307][T12946] bond0: (slave bond_slave_1): Releasing backup interface [ 431.652420][T12946] team0: Port device team_slave_0 removed [ 431.670386][T12946] team0: Port device team_slave_1 removed [ 431.680109][T12946] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 431.697810][T12946] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 432.123147][T12958] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2706'. [ 432.613789][T12958] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2706'. [ 432.936079][T12966] syzkaller0: entered allmulticast mode [ 433.015634][T12966] syzkaller0 (unregistering): left allmulticast mode [ 433.384049][T12975] loop1: detected capacity change from 0 to 1024 [ 433.400966][T12975] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 433.447515][T12975] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 433.492913][T12975] JBD2: no valid journal superblock found [ 433.499372][T12975] EXT4-fs (loop1): Could not load journal inode [ 434.164903][T12992] netlink: 'syz.1.2721': attribute type 3 has an invalid length. [ 434.188369][T12993] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2719'. [ 434.713608][T12993] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2719'. [ 434.854907][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 435.948523][T13026] tipc: Enabled bearer , priority 0 [ 435.969960][T13026] syzkaller0: entered promiscuous mode [ 435.975510][T13026] syzkaller0: entered allmulticast mode [ 436.055616][T13026] tipc: Resetting bearer [ 436.067419][T13023] tipc: Resetting bearer [ 436.097858][T13023] tipc: Disabling bearer [ 436.356087][T13031] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2734'. [ 436.864134][T13031] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2734'. [ 437.258256][ T27] kauditd_printk_skb: 29 callbacks suppressed [ 437.258273][ T27] audit: type=1326 audit(1766717899.136:4973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13036 comm="syz.2.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 437.329325][T13041] loop1: detected capacity change from 0 to 2048 [ 437.338586][ T27] audit: type=1326 audit(1766717899.136:4974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13036 comm="syz.2.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 437.386341][ T27] audit: type=1326 audit(1766717899.136:4975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13036 comm="syz.2.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 437.410967][T13041] loop1: p1 < > p4 [ 437.419052][ T27] audit: type=1326 audit(1766717899.136:4976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13036 comm="syz.2.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 437.435116][T13041] loop1: p4 size 8388608 extends beyond EOD, truncated [ 437.450075][ T27] audit: type=1326 audit(1766717899.136:4977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13036 comm="syz.2.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 437.483528][ T27] audit: type=1326 audit(1766717899.136:4978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13036 comm="syz.2.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 437.520511][T13041] xt_TPROXY: Can be used only with -p tcp or -p udp [ 437.557564][ T27] audit: type=1326 audit(1766717899.136:4979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13036 comm="syz.2.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 437.626965][ T27] audit: type=1326 audit(1766717899.136:4980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13036 comm="syz.2.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 437.666078][ T27] audit: type=1326 audit(1766717899.136:4981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13036 comm="syz.2.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 437.738981][ T27] audit: type=1326 audit(1766717899.136:4982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13036 comm="syz.2.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f271098f749 code=0x7ffc0000 [ 437.892817][T13055] loop3: detected capacity change from 0 to 512 [ 438.327244][T13055] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 438.540171][T13061] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2746'. [ 440.808137][T13055] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 440.837460][T13061] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2746'. [ 441.047671][T13055] EXT4-fs warning (device loop3): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop3. [ 442.405661][T13077] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2752'. [ 442.414939][T13077] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2752'. [ 442.649696][ T27] kauditd_printk_skb: 72 callbacks suppressed [ 442.649713][ T27] audit: type=1326 audit(1766717904.784:5055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13084 comm="syz.3.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 442.697915][ T27] audit: type=1326 audit(1766717904.784:5056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13084 comm="syz.3.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 442.723580][ T27] audit: type=1326 audit(1766717904.794:5057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13084 comm="syz.3.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 442.769307][ T27] audit: type=1326 audit(1766717904.826:5058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13084 comm="syz.3.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 442.837268][ T27] audit: type=1326 audit(1766717904.826:5059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13084 comm="syz.3.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 442.893234][ T27] audit: type=1326 audit(1766717904.826:5060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13084 comm="syz.3.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 443.059535][ T27] audit: type=1326 audit(1766717904.826:5061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13084 comm="syz.3.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 443.118200][T13091] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2758'. [ 443.141792][ T27] audit: type=1326 audit(1766717904.826:5062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13084 comm="syz.3.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 443.165794][ T27] audit: type=1326 audit(1766717904.826:5063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13084 comm="syz.3.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 443.189622][ T27] audit: type=1326 audit(1766717904.826:5064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13084 comm="syz.3.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 443.196536][T13091] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2758'. [ 443.299455][T13094] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2757'. [ 443.820864][T13094] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2757'. [ 444.453243][T13104] netlink: 'syz.3.2761': attribute type 13 has an invalid length. [ 445.069166][T13104] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 445.931246][T13127] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2768'. [ 446.442723][T13127] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2768'. [ 446.661182][T13133] loop3: detected capacity change from 0 to 512 [ 446.704808][T13133] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 447.431871][ T27] kauditd_printk_skb: 43 callbacks suppressed [ 447.431889][ T27] audit: type=1326 audit(1766717909.812:5108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13154 comm="syz.3.2781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 447.478494][ T27] audit: type=1326 audit(1766717909.823:5109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13159 comm="syz.3.2781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f444c5c2005 code=0x7ffc0000 [ 447.511156][ T27] audit: type=1326 audit(1766717909.844:5110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13154 comm="syz.3.2781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 447.536631][ T27] audit: type=1326 audit(1766717909.844:5111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13154 comm="syz.3.2781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 447.596458][ T27] audit: type=1326 audit(1766717909.844:5112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13154 comm="syz.3.2781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 447.630138][ T27] audit: type=1326 audit(1766717910.012:5113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13159 comm="syz.3.2781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 448.358539][T13171] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2786'. [ 448.477760][T13177] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2790'. [ 448.704710][ T27] audit: type=1326 audit(1766717911.135:5114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13183 comm="syz.3.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 448.790429][ T27] audit: type=1326 audit(1766717911.135:5115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13183 comm="syz.3.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 448.876526][ T27] audit: type=1326 audit(1766717911.146:5116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13183 comm="syz.3.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 448.937478][ T27] audit: type=1326 audit(1766717911.146:5117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13183 comm="syz.3.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444c58f749 code=0x7ffc0000 [ 449.309016][T13204] loop3: detected capacity change from 0 to 128 [ 449.343833][T13206] loop2: detected capacity change from 0 to 512 [ 449.370712][T13206] [ 449.373315][T13206] ====================================================== [ 449.380539][T13206] WARNING: possible circular locking dependency detected [ 449.387680][T13206] syzkaller #0 Not tainted [ 449.392129][T13206] ------------------------------------------------------ [ 449.399266][T13206] syz.2.2802/13206 is trying to acquire lock: [ 449.405545][T13206] ffff888067e6abd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0 [ 449.415719][T13206] [ 449.415719][T13206] but task is already holding lock: [ 449.423229][T13206] ffff888077f3a8c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 449.433330][T13206] [ 449.433330][T13206] which lock already depends on the new lock. [ 449.433330][T13206] [ 449.444194][T13206] [ 449.444194][T13206] the existing dependency chain (in reverse order) is: [ 449.453474][T13206] [ 449.453474][T13206] -> #1 (&ei->xattr_sem){++++}-{3:3}: [ 449.461045][T13206] down_write+0x97/0x1f0 [ 449.465908][T13206] ext4_destroy_inline_data+0x28/0xe0 [ 449.471997][T13206] ext4_do_writepages+0x4c2/0x38d0 [ 449.477659][T13206] ext4_writepages+0x1a8/0x2f0 [ 449.483058][T13206] do_writepages+0x3a2/0x600 [ 449.488368][T13206] filemap_fdatawrite_wbc+0x122/0x180 [ 449.494361][T13206] file_write_and_wait_range+0x171/0x240 [ 449.500703][T13206] generic_buffers_fsync_noflush+0x6f/0x160 [ 449.507479][T13206] ext4_sync_file+0x454/0xc10 [ 449.512725][T13206] ext4_buffered_write_iter+0x2c0/0x350 [ 449.518888][T13206] ext4_file_write_iter+0x1d9/0x1870 [ 449.524698][T13206] do_iter_write+0x79a/0xc70 [ 449.529832][T13206] iter_file_splice_write+0x66f/0xc50 [ 449.535740][T13206] direct_splice_actor+0xe8/0x130 [ 449.541472][T13206] splice_direct_to_actor+0x2f0/0x870 [ 449.547391][T13206] do_splice_direct+0x1b7/0x2c0 [ 449.552859][T13206] vfs_copy_file_range+0xa96/0x15e0 [ 449.558679][T13206] __se_sys_copy_file_range+0x321/0x490 [ 449.564847][T13206] do_syscall_64+0x55/0xb0 [ 449.569830][T13206] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 449.576371][T13206] [ 449.576371][T13206] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 449.584810][T13206] __lock_acquire+0x2ddb/0x7c80 [ 449.590186][T13206] lock_acquire+0x197/0x410 [ 449.595219][T13206] percpu_down_read+0x44/0x1a0 [ 449.600515][T13206] ext4_writepages+0x170/0x2f0 [ 449.605807][T13206] do_writepages+0x3a2/0x600 [ 449.611045][T13206] __writeback_single_inode+0x153/0xee0 [ 449.617143][T13206] writeback_single_inode+0x211/0x720 [ 449.623140][T13206] write_inode_now+0x161/0x1e0 [ 449.628449][T13206] iput+0x5b2/0x920 [ 449.632787][T13206] ext4_xattr_block_set+0x273a/0x32a0 [ 449.638707][T13206] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 449.645191][T13206] __ext4_expand_extra_isize+0x306/0x400 [ 449.651622][T13206] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 449.657847][T13206] ext4_evict_inode+0x7ed/0xea0 [ 449.663404][T13206] evict+0x486/0x870 [ 449.668011][T13206] ext4_orphan_cleanup+0xbd4/0x1400 [ 449.673750][T13206] ext4_fill_super+0x5de4/0x66c0 [ 449.679314][T13206] get_tree_bdev+0x3e4/0x510 [ 449.684523][T13206] vfs_get_tree+0x8c/0x280 [ 449.689553][T13206] do_new_mount+0x24b/0xa40 [ 449.694587][T13206] __se_sys_mount+0x2da/0x3c0 [ 449.699883][T13206] do_syscall_64+0x55/0xb0 [ 449.705275][T13206] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 449.711801][T13206] [ 449.711801][T13206] other info that might help us debug this: [ 449.711801][T13206] [ 449.722232][T13206] Possible unsafe locking scenario: [ 449.722232][T13206] [ 449.729775][T13206] CPU0 CPU1 [ 449.735291][T13206] ---- ---- [ 449.740661][T13206] lock(&ei->xattr_sem); [ 449.745090][T13206] lock(&sbi->s_writepages_rwsem); [ 449.752826][T13206] lock(&ei->xattr_sem); [ 449.759784][T13206] rlock(&sbi->s_writepages_rwsem); [ 449.765166][T13206] [ 449.765166][T13206] *** DEADLOCK *** [ 449.765166][T13206] [ 449.773311][T13206] 3 locks held by syz.2.2802/13206: [ 449.778510][T13206] #0: ffff888067e680e0 (&type->s_umount_key#32){++++}-{3:3}, at: get_tree_bdev+0x344/0x510 [ 449.788813][T13206] #1: ffff888067e68608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0 [ 449.798584][T13206] #2: ffff888077f3a8c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 449.809469][T13206] [ 449.809469][T13206] stack backtrace: [ 449.816189][T13206] CPU: 1 PID: 13206 Comm: syz.2.2802 Not tainted syzkaller #0 [ 449.823676][T13206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 449.834359][T13206] Call Trace: [ 449.837649][T13206] [ 449.840696][T13206] dump_stack_lvl+0x16c/0x230 [ 449.845496][T13206] ? load_image+0x3b0/0x3b0 [ 449.850692][T13206] ? show_regs_print_info+0x20/0x20 [ 449.856393][T13206] ? print_circular_bug+0x12b/0x1a0 [ 449.861896][T13206] check_noncircular+0x2bd/0x3c0 [ 449.867202][T13206] ? look_up_lock_class+0x75/0x140 [ 449.872368][T13206] ? print_deadlock_bug+0x5d0/0x5d0 [ 449.878207][T13206] ? lockdep_lock+0xe0/0x220 [ 449.882991][T13206] ? _find_first_zero_bit+0xd3/0x100 [ 449.888487][T13206] __lock_acquire+0x2ddb/0x7c80 [ 449.893465][T13206] ? mark_lock+0x94/0x320 [ 449.897813][T13206] ? verify_lock_unused+0x140/0x140 [ 449.903125][T13206] ? __lock_acquire+0x1334/0x7c80 [ 449.908421][T13206] ? verify_lock_unused+0x140/0x140 [ 449.913814][T13206] lock_acquire+0x197/0x410 [ 449.918628][T13206] ? ext4_writepages+0x170/0x2f0 [ 449.923942][T13206] ? __might_sleep+0xe0/0xe0 [ 449.928825][T13206] ? mark_lock+0x94/0x320 [ 449.933187][T13206] ? read_lock_is_recursive+0x20/0x20 [ 449.939279][T13206] ? __lock_acquire+0x1334/0x7c80 [ 449.944409][T13206] percpu_down_read+0x44/0x1a0 [ 449.949576][T13206] ? ext4_writepages+0x170/0x2f0 [ 449.954812][T13206] ext4_writepages+0x170/0x2f0 [ 449.959683][T13206] ? ext4_read_folio+0x2f0/0x2f0 [ 449.964674][T13206] ? __rwlock_init+0x150/0x150 [ 449.969849][T13206] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 449.976548][T13206] ? do_raw_spin_unlock+0x121/0x230 [ 449.982027][T13206] ? ext4_read_folio+0x2f0/0x2f0 [ 449.987378][T13206] do_writepages+0x3a2/0x600 [ 449.992421][T13206] ? folio_clear_dirty_for_io+0xc30/0xc30 [ 449.998296][T13206] ? writeback_single_inode+0x206/0x720 [ 450.004140][T13206] ? __lock_acquire+0x7c80/0x7c80 [ 450.009421][T13206] ? do_raw_spin_lock+0x121/0x2c0 [ 450.014498][T13206] ? get_tree_bdev+0x3e4/0x510 [ 450.019377][T13206] __writeback_single_inode+0x153/0xee0 [ 450.025134][T13206] writeback_single_inode+0x211/0x720 [ 450.030799][T13206] ? write_inode_now+0x1e0/0x1e0 [ 450.035758][T13206] write_inode_now+0x161/0x1e0 [ 450.040535][T13206] ? bdi_split_work_to_wbs+0x890/0x890 [ 450.046821][T13206] ? do_raw_spin_unlock+0x121/0x230 [ 450.052488][T13206] iput+0x5b2/0x920 [ 450.056506][T13206] ext4_xattr_block_set+0x273a/0x32a0 [ 450.061913][T13206] ? __might_sleep+0xe0/0xe0 [ 450.066611][T13206] ? xattr_find_entry+0x12b/0x2f0 [ 450.071824][T13206] ? ext4_xattr_block_find+0x350/0x350 [ 450.077398][T13206] ? ext4_xattr_block_find+0x2d4/0x350 [ 450.082874][T13206] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 450.088882][T13206] __ext4_expand_extra_isize+0x306/0x400 [ 450.094803][T13206] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 450.100281][T13206] ext4_evict_inode+0x7ed/0xea0 [ 450.105153][T13206] ? _raw_spin_unlock+0x28/0x40 [ 450.110018][T13206] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 450.116020][T13206] ? do_raw_spin_unlock+0x121/0x230 [ 450.121325][T13206] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 450.127240][T13206] evict+0x486/0x870 [ 450.131320][T13206] ? __lock_acquire+0x7c80/0x7c80 [ 450.136445][T13206] ? proc_nr_inodes+0x230/0x230 [ 450.141311][T13206] ? do_raw_spin_unlock+0x121/0x230 [ 450.146520][T13206] ? _raw_spin_unlock+0x28/0x40 [ 450.151612][T13206] ? iput+0x70a/0x920 [ 450.155808][T13206] ext4_orphan_cleanup+0xbd4/0x1400 [ 450.161154][T13206] ? ext4_orphan_del+0xba0/0xba0 [ 450.166246][T13206] ? ext4_register_li_request+0x183/0x940 [ 450.172391][T13206] ? errseq_check_and_advance+0x66/0x120 [ 450.178068][T13206] ext4_fill_super+0x5de4/0x66c0 [ 450.183214][T13206] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 450.189553][T13206] ? __might_sleep+0xe0/0xe0 [ 450.194198][T13206] ? read_lock_is_recursive+0x20/0x20 [ 450.199755][T13206] ? snprintf+0xdb/0x120 [ 450.204500][T13206] ? vscnprintf+0x80/0x80 [ 450.209144][T13206] ? down_write+0x162/0x1f0 [ 450.213747][T13206] ? down_read_killable+0x340/0x340 [ 450.218981][T13206] ? setup_bdev_super+0x56b/0x660 [ 450.224047][T13206] get_tree_bdev+0x3e4/0x510 [ 450.228651][T13206] ? vfs_parse_fs_string+0x160/0x160 [ 450.234128][T13206] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 450.240378][T13206] ? setup_bdev_super+0x660/0x660 [ 450.245498][T13206] ? apparmor_capable+0x137/0x1a0 [ 450.250533][T13206] ? bpf_lsm_capable+0x9/0x10 [ 450.255492][T13206] ? security_capable+0x89/0xb0 [ 450.260389][T13206] vfs_get_tree+0x8c/0x280 [ 450.264811][T13206] do_new_mount+0x24b/0xa40 [ 450.269412][T13206] __se_sys_mount+0x2da/0x3c0 [ 450.274273][T13206] ? __x64_sys_mount+0xc0/0xc0 [ 450.279512][T13206] ? lockdep_hardirqs_on+0x98/0x150 [ 450.284945][T13206] ? __x64_sys_mount+0x20/0xc0 [ 450.289825][T13206] do_syscall_64+0x55/0xb0 [ 450.294251][T13206] ? clear_bhb_loop+0x40/0x90 [ 450.298944][T13206] ? clear_bhb_loop+0x40/0x90 [ 450.303637][T13206] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 450.309728][T13206] RIP: 0033:0x7f2710990eea [ 450.314675][T13206] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 450.334376][T13206] RSP: 002b:00007f2711868e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 450.342985][T13206] RAX: ffffffffffffffda RBX: 00007f2711868ef0 RCX: 00007f2710990eea [ 450.351406][T13206] RDX: 00002000000002c0 RSI: 00002000000001c0 RDI: 00007f2711868eb0 [ 450.359387][T13206] RBP: 00002000000002c0 R08: 00007f2711868ef0 R09: 0000000000800700 [ 450.367570][T13206] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 450.375558][T13206] R13: 00007f2711868eb0 R14: 000000000000046f R15: 000000000000002c [ 450.383570][T13206] [ 450.429179][T13206] ------------[ cut here ]------------ [ 450.434819][T13206] EA inode 11 i_nlink=2 [ 450.435047][T13206] WARNING: CPU: 0 PID: 13206 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550 [ 450.450757][T13206] Modules linked in: [ 450.454773][T13206] CPU: 0 PID: 13206 Comm: syz.2.2802 Not tainted syzkaller #0 [ 450.462701][T13206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 450.473292][T13206] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 450.480169][T13206] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08 [ 450.500582][T13206] RSP: 0018:ffffc9000f9d71c0 EFLAGS: 00010246 [ 450.506960][T13206] RAX: 1a377178811e0800 RBX: 0000000000000002 RCX: 0000000000080000 [ 450.515301][T13206] RDX: ffffc90011ce9000 RSI: 000000000007ffff RDI: 0000000000080000 [ 450.523336][T13206] RBP: ffffc9000f9d72b8 R08: ffffc9000f9d6dc7 R09: 1ffff92001f3adb8 [ 450.531567][T13206] R10: dffffc0000000000 R11: fffff52001f3adb9 R12: dffffc0000000000 [ 450.539968][T13206] R13: ffff888057a78ea8 R14: ffff888057a78cb0 R15: ffff888057a78d00 [ 450.548996][T13206] FS: 00007f27118696c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 450.558517][T13206] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 450.565654][T13206] CR2: 000000110c452459 CR3: 000000005776b000 CR4: 00000000003506f0 [ 450.573814][T13206] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 450.582153][T13206] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 450.590714][T13206] Call Trace: [ 450.594046][T13206] [ 450.597013][T13206] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 450.602859][T13206] ? ext4_xattr_inode_iget+0x3df/0x600 [ 450.608450][T13206] ext4_xattr_set_entry+0xcda/0x1e90 [ 450.613899][T13206] ext4_xattr_ibody_set+0x254/0x6a0 [ 450.619320][T13206] ext4_expand_extra_isize_ea+0x113a/0x19e0 [ 450.625280][T13206] __ext4_expand_extra_isize+0x306/0x400 [ 450.631451][T13206] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 450.637356][T13206] ext4_evict_inode+0x7ed/0xea0 [ 450.643285][T13206] ? _raw_spin_unlock+0x28/0x40 [ 450.648427][T13206] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 450.654537][T13206] ? do_raw_spin_unlock+0x121/0x230 [ 450.659977][T13206] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 450.665883][T13206] evict+0x486/0x870 [ 450.669801][T13206] ? __lock_acquire+0x7c80/0x7c80 [ 450.674953][T13206] ? proc_nr_inodes+0x230/0x230 [ 450.679865][T13206] ? do_raw_spin_unlock+0x121/0x230 [ 450.685447][T13206] ? _raw_spin_unlock+0x28/0x40 [ 450.690661][T13206] ? iput+0x70a/0x920 [ 450.694670][T13206] ext4_orphan_cleanup+0xbd4/0x1400 [ 450.699925][T13206] ? ext4_orphan_del+0xba0/0xba0 [ 450.704883][T13206] ? ext4_register_li_request+0x183/0x940 [ 450.710928][T13206] ? errseq_check_and_advance+0x66/0x120 [ 450.716668][T13206] ext4_fill_super+0x5de4/0x66c0 [ 450.721618][T13206] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 450.727878][T13206] ? __might_sleep+0xe0/0xe0 [ 450.732560][T13206] ? read_lock_is_recursive+0x20/0x20 [ 450.737985][T13206] ? snprintf+0xdb/0x120 [ 450.742947][T13206] ? vscnprintf+0x80/0x80 [ 450.747326][T13206] ? down_write+0x162/0x1f0 [ 450.752075][T13206] ? down_read_killable+0x340/0x340 [ 450.757347][T13206] ? setup_bdev_super+0x56b/0x660 [ 450.762536][T13206] get_tree_bdev+0x3e4/0x510 [ 450.767253][T13206] ? vfs_parse_fs_string+0x160/0x160 [ 450.772617][T13206] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 450.779229][T13206] ? setup_bdev_super+0x660/0x660 [ 450.784581][T13206] ? apparmor_capable+0x137/0x1a0 [ 450.790066][T13206] ? bpf_lsm_capable+0x9/0x10 [ 450.794992][T13206] ? security_capable+0x89/0xb0 [ 450.800095][T13206] vfs_get_tree+0x8c/0x280 [ 450.804716][T13206] do_new_mount+0x24b/0xa40 [ 450.809613][T13206] __se_sys_mount+0x2da/0x3c0 [ 450.814476][T13206] ? __x64_sys_mount+0xc0/0xc0 [ 450.819311][T13206] ? lockdep_hardirqs_on+0x98/0x150 [ 450.824651][T13206] ? __x64_sys_mount+0x20/0xc0 [ 450.829717][T13206] do_syscall_64+0x55/0xb0 [ 450.834388][T13206] ? clear_bhb_loop+0x40/0x90 [ 450.839629][T13206] ? clear_bhb_loop+0x40/0x90 [ 450.844514][T13206] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 450.850745][T13206] RIP: 0033:0x7f2710990eea [ 450.855673][T13206] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 450.876419][T13206] RSP: 002b:00007f2711868e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 450.885158][T13206] RAX: ffffffffffffffda RBX: 00007f2711868ef0 RCX: 00007f2710990eea [ 450.893517][T13206] RDX: 00002000000002c0 RSI: 00002000000001c0 RDI: 00007f2711868eb0 [ 450.901540][T13206] RBP: 00002000000002c0 R08: 00007f2711868ef0 R09: 0000000000800700 [ 450.910552][T13206] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 450.918860][T13206] R13: 00007f2711868eb0 R14: 000000000000046f R15: 000000000000002c [ 450.927191][T13206] [ 450.930320][T13206] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 450.937701][T13206] CPU: 0 PID: 13206 Comm: syz.2.2802 Not tainted syzkaller #0 [ 450.945644][T13206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 450.956635][T13206] Call Trace: [ 450.959917][T13206] [ 450.962869][T13206] dump_stack_lvl+0x16c/0x230 [ 450.967743][T13206] ? show_regs_print_info+0x20/0x20 [ 450.973442][T13206] ? load_image+0x3b0/0x3b0 [ 450.978393][T13206] panic+0x2c0/0x710 [ 450.982403][T13206] ? bpf_jit_dump+0xd0/0xd0 [ 450.987401][T13206] __warn+0x2e0/0x470 [ 450.991507][T13206] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 450.997689][T13206] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 451.003800][T13206] report_bug+0x2be/0x4f0 [ 451.008139][T13206] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 451.014134][T13206] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 451.020826][T13206] ? ext4_xattr_inode_update_ref+0x4fd/0x550 [ 451.026819][T13206] handle_bug+0xcf/0x120 [ 451.031071][T13206] exc_invalid_op+0x1a/0x50 [ 451.035598][T13206] asm_exc_invalid_op+0x1a/0x20 [ 451.040651][T13206] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 451.047252][T13206] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08 [ 451.067319][T13206] RSP: 0018:ffffc9000f9d71c0 EFLAGS: 00010246 [ 451.073773][T13206] RAX: 1a377178811e0800 RBX: 0000000000000002 RCX: 0000000000080000 [ 451.082499][T13206] RDX: ffffc90011ce9000 RSI: 000000000007ffff RDI: 0000000000080000 [ 451.091197][T13206] RBP: ffffc9000f9d72b8 R08: ffffc9000f9d6dc7 R09: 1ffff92001f3adb8 [ 451.099355][T13206] R10: dffffc0000000000 R11: fffff52001f3adb9 R12: dffffc0000000000 [ 451.107614][T13206] R13: ffff888057a78ea8 R14: ffff888057a78cb0 R15: ffff888057a78d00 [ 451.116260][T13206] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 451.121930][T13206] ? ext4_xattr_inode_iget+0x3df/0x600 [ 451.127406][T13206] ext4_xattr_set_entry+0xcda/0x1e90 [ 451.132745][T13206] ext4_xattr_ibody_set+0x254/0x6a0 [ 451.138048][T13206] ext4_expand_extra_isize_ea+0x113a/0x19e0 [ 451.144013][T13206] __ext4_expand_extra_isize+0x306/0x400 [ 451.149692][T13206] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 451.155477][T13206] ext4_evict_inode+0x7ed/0xea0 [ 451.160514][T13206] ? _raw_spin_unlock+0x28/0x40 [ 451.165403][T13206] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 451.171432][T13206] ? do_raw_spin_unlock+0x121/0x230 [ 451.176852][T13206] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 451.183046][T13206] evict+0x486/0x870 [ 451.186956][T13206] ? __lock_acquire+0x7c80/0x7c80 [ 451.192431][T13206] ? proc_nr_inodes+0x230/0x230 [ 451.198392][T13206] ? do_raw_spin_unlock+0x121/0x230 [ 451.204623][T13206] ? _raw_spin_unlock+0x28/0x40 [ 451.209536][T13206] ? iput+0x70a/0x920 [ 451.213711][T13206] ext4_orphan_cleanup+0xbd4/0x1400 [ 451.219033][T13206] ? ext4_orphan_del+0xba0/0xba0 [ 451.224105][T13206] ? ext4_register_li_request+0x183/0x940 [ 451.230403][T13206] ? errseq_check_and_advance+0x66/0x120 [ 451.236053][T13206] ext4_fill_super+0x5de4/0x66c0 [ 451.241233][T13206] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 451.247497][T13206] ? __might_sleep+0xe0/0xe0 [ 451.252361][T13206] ? read_lock_is_recursive+0x20/0x20 [ 451.258110][T13206] ? snprintf+0xdb/0x120 [ 451.262381][T13206] ? vscnprintf+0x80/0x80 [ 451.267023][T13206] ? down_write+0x162/0x1f0 [ 451.271573][T13206] ? down_read_killable+0x340/0x340 [ 451.277741][T13206] ? setup_bdev_super+0x56b/0x660 [ 451.282781][T13206] get_tree_bdev+0x3e4/0x510 [ 451.287551][T13206] ? vfs_parse_fs_string+0x160/0x160 [ 451.292843][T13206] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 451.299195][T13206] ? setup_bdev_super+0x660/0x660 [ 451.304229][T13206] ? apparmor_capable+0x137/0x1a0 [ 451.309353][T13206] ? bpf_lsm_capable+0x9/0x10 [ 451.314051][T13206] ? security_capable+0x89/0xb0 [ 451.319105][T13206] vfs_get_tree+0x8c/0x280 [ 451.323651][T13206] do_new_mount+0x24b/0xa40 [ 451.328262][T13206] __se_sys_mount+0x2da/0x3c0 [ 451.333043][T13206] ? __x64_sys_mount+0xc0/0xc0 [ 451.337998][T13206] ? lockdep_hardirqs_on+0x98/0x150 [ 451.343627][T13206] ? __x64_sys_mount+0x20/0xc0 [ 451.348770][T13206] do_syscall_64+0x55/0xb0 [ 451.353381][T13206] ? clear_bhb_loop+0x40/0x90 [ 451.358085][T13206] ? clear_bhb_loop+0x40/0x90 [ 451.362949][T13206] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 451.368860][T13206] RIP: 0033:0x7f2710990eea [ 451.373348][T13206] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 451.393489][T13206] RSP: 002b:00007f2711868e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 451.402452][T13206] RAX: ffffffffffffffda RBX: 00007f2711868ef0 RCX: 00007f2710990eea [ 451.411065][T13206] RDX: 00002000000002c0 RSI: 00002000000001c0 RDI: 00007f2711868eb0 [ 451.419345][T13206] RBP: 00002000000002c0 R08: 00007f2711868ef0 R09: 0000000000800700 [ 451.427683][T13206] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 451.436551][T13206] R13: 00007f2711868eb0 R14: 000000000000046f R15: 000000000000002c [ 451.444990][T13206] [ 451.449316][T13206] Kernel Offset: disabled [ 451.453814][T13206] Rebooting in 86400 seconds..