last executing test programs: 2m14.313708373s ago: executing program 1 (id=651): unshare(0x24020400) syz_read_part_table(0x1051, &(0x7f0000001280)="$eJzsz7EJwlAUBdAbTIIiSBp7LR3jD+Em9gouo87jJLY2kpg4gqQ4Bz58Hvc+eGEuXqmS/r3HwTLJ4vttk6yn4PNXuez2uZbzEK36eOmG1mab1Wms3kubqmtSp0lyO0zrUtc5Pv55IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADM1ScAAP//gqkI3g==") 2m13.762077234s ago: executing program 1 (id=655): r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r0) r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) getdents64(r1, &(0x7f0000000140)=""/47, 0x24) getdents(r1, 0x0, 0x58) 2m13.633471056s ago: executing program 1 (id=658): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000700)={0x1f, 0xffff, 0x1}, 0x6) 2m13.489057829s ago: executing program 1 (id=660): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x1008a, &(0x7f0000000400)={[{@nomblk_io_submit}, {@usrjquota, 0x22}, {@errors_continue}, {@noload}, {@nomblk_io_submit}, {@grpjquota, 0x22}, {@errors_continue}, {@grpid}, {@jqfmt_vfsv1}]}, 0xfe, 0x455, &(0x7f0000000fc0)="$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") r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94) msgrcv(0x0, 0x0, 0x0, 0x1, 0x3000) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r3, 0x0, 0x10000001}, 0x18) ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0}) 2m12.90137148s ago: executing program 1 (id=662): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) syz_open_dev$sndctrl(0x0, 0x43, 0x101800) r1 = socket(0x2, 0x5, 0x0) ioctl$sock_SIOCETHTOOL(r1, 0x8946, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r4 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local}) write$tun(r3, 0x0, 0x32) r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x200000000000005c, &(0x7f0000000100)=[{0x6, 0x0, 0x41, 0x7fff0004}]}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c030000160001000000000000000000fc010000000000000000000000000000fe8800000000000000000000000000010000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000000006c000000ac141400"/75], 0x34c}}, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0) close_range(r5, r0, 0x0) write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="14610000000096"], 0x9) close(r0) 2m12.344365981s ago: executing program 1 (id=664): unshare(0x22020600) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000200)={r0, 0x0, 0x0}, 0x10) 2m11.703112653s ago: executing program 32 (id=664): unshare(0x22020600) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000200)={r0, 0x0, 0x0}, 0x10) 2.345932895s ago: executing program 2 (id=1392): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x141a82, 0x0) sendfile(r4, r4, &(0x7f0000000000)=0x7, 0x4) 2.178092258s ago: executing program 0 (id=1395): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, 0x0, &(0x7f0000000140)='GPL\x00'}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000080)=ANY=[@ANYBLOB="180200000000000000000000000000008500000011000000180100002020692500000000002020207b1af8ff00000000bfa110000000be8214b00000f8ffffffb702000008000000b703000000000000850000007b00000095"], &(0x7f0000000040)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00}, 0x94) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_GET_BYNAME(r4, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="280000000e0601010000000000000000020000000900020073797a32020000000500010007000000"], 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x40880) sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f00000023c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000640)={0x24, 0x1, 0x1, 0x301, 0x0, 0x0, {0x0, 0x0, 0x8}, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x1}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x10}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000004}, 0x40c4) bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000004000000410000000000000001000000", @ANYRES32=0x1, @ANYBLOB="0000000000007acc000000000000000017000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0340000001"], 0x48) 2.0337912s ago: executing program 3 (id=1396): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0xf, &(0x7f00000002c0)={0x1, 0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000ec0)=""/4096, 0x1000}], &(0x7f0000000280)=[0x6, 0x0, 0x1]}, 0x20) setregid(0x0, 0x0) 1.850473064s ago: executing program 3 (id=1397): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket(0x10, 0x3, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=0x0) sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) write$nci(r0, &(0x7f0000001800)=ANY=[@ANYBLOB="7240082b0102020681055a03997713fa06070202267a"], 0x16) write$nci(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="4002040102cd425f235a0052e5fdf9d6"], 0x7) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) read$nci(0xffffffffffffffff, 0x0, 0x0) open$dir(0x0, 0x0, 0x0) 1.654604558s ago: executing program 3 (id=1398): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f00000006c0)={0x4, 0x56, 0x0, 0x0, 0x104, 0x3}) 1.421925532s ago: executing program 2 (id=1399): bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0) umount2(&(0x7f0000000280)='./file0\x00', 0x0) 1.417163152s ago: executing program 3 (id=1401): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000380)='kfree\x00', r1}, 0x10) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r2, 0x9) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000001000000280001801400040000000000000002000000ffffac1414aa060001000a00"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r6, 0x1, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800) 1.322221485s ago: executing program 2 (id=1402): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', 0x0}) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010328bd7000fedbdf251c0000000c00018008000100", @ANYRES32=r2], 0x20}}, 0x10) 1.175215197s ago: executing program 2 (id=1404): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000240)={0x2, 0x4e20, @multicast1}, 0x10) connect$inet(r0, &(0x7f00000003c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x23}}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='GPL\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffc95}, 0x48) r2 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000180)={r0, r1}) ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000001380)={0xffffffffffffffff}) sendmsg$AUDIT_DEL_RULE(r3, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000500)=ANY=[], 0x424}, 0x1, 0x0, 0x0, 0xc090}, 0xc000) syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r3) sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)={0x28, 0x0, 0x8, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @void, @val={0xc, 0x99, {0x40, 0x2d}}}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x20008004}, 0x4004) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) 949.408952ms ago: executing program 2 (id=1407): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19}, 0x42) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000200)=r1, 0x4) getsockopt$sock_buf(r0, 0x1, 0x37, 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r0) 781.915155ms ago: executing program 4 (id=1409): r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1}, 0x18) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) 751.045685ms ago: executing program 4 (id=1410): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000140)={[{@min_batch_time={'min_batch_time', 0x3d, 0xd}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noblock_validity}]}, 0x1, 0x7ad, &(0x7f00000007c0)="$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") r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x101, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000600)=ANY=[]) 591.922269ms ago: executing program 4 (id=1411): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000a40)='GPL\x00') semop(0x0, 0x0, 0x0) 589.091048ms ago: executing program 0 (id=1412): r0 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x0, 0x0) preadv(r0, 0x0, 0x0, 0x9, 0x5) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000000100)={[{@quota}]}, 0x1, 0x441, &(0x7f00000009c0)="$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") r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000600)=ANY=[@ANYBLOB="09000000000000000dcf000000000000050000"]) 442.010961ms ago: executing program 0 (id=1413): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r0) sendmsg$NFC_CMD_START_POLL(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x2c, r1, 0x1, 0x123, 0x238, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x14}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x40}]}, 0x2c}, 0x1, 0x0, 0x0, 0x50}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r2 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) futex(0x0, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000)=0x1, 0x0) timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0xf00) 441.839842ms ago: executing program 4 (id=1414): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x4c, 0x2, 0x6, 0x301, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000) 421.336722ms ago: executing program 3 (id=1415): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000a40), 0x1, 0x55e, &(0x7f0000000a80)="$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") r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201) ioctl$sock_inet_SIOCGIFNETMASK(r0, 0x891b, &(0x7f0000000040)={'pim6reg1\x00', {0x2, 0x0, @local}}) socket$kcm(0x10, 0x2, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet6_int(r1, 0x29, 0x4a, 0x0, &(0x7f00000000c0)) ioctl$sock_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000180)) accept4$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, &(0x7f00000000c0)=0x1c, 0x800) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=@newtaction={0x14, 0x30, 0x1, 0x0, 0x25dfdbfc}, 0x14}}, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000002c0)=[{0x200000000006, 0x4, 0x0, 0x7ffc1ffb}]}) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x6a000}], 0x1, 0x7000, 0x0, 0x3) 394.632002ms ago: executing program 0 (id=1416): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0) umount2(&(0x7f00000000c0)='./file0\x00', 0x0) 289.916424ms ago: executing program 4 (id=1417): bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x19, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0xb}, 0x18) r1 = socket$inet_sctp(0x2, 0x5, 0x84) close(r1) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000140)={0x1, [0x0]}, &(0x7f0000000240)=0x8) sendmsg$inet_sctp(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@sndinfo={0x20, 0x84, 0x2, {0xa, 0x4, 0x28, 0x200000b, r3}}], 0x20, 0x2400e044}, 0x0) 255.315615ms ago: executing program 0 (id=1418): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/image_size', 0x1a1081, 0x18) pwritev(r2, &(0x7f0000000180)=[{&(0x7f0000000080)='2', 0x1}], 0x1, 0x0, 0x0) 166.994097ms ago: executing program 0 (id=1419): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000580)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local}) writev(r0, &(0x7f00000008c0)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f8864f0", 0x13}, {&(0x7f0000000080)='\x00\x00\x00\x00', 0x4}, {0x0}], 0x3) 113.908908ms ago: executing program 4 (id=1420): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, 0x0, &(0x7f0000000140)='GPL\x00'}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000080)=ANY=[@ANYBLOB="180200000000000000000000000000008500000011000000180100002020692500000000002020207b1af8ff00000000bfa110000000be8214b00000f8ffffffb702000008000000b703000000000000850000007b00000095"], &(0x7f0000000040)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00}, 0x94) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_GET_BYNAME(r4, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="280000000e0601010000000000000000020000000900020073797a32020000000500010007000000"], 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x40880) sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f00000023c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000640)={0x24, 0x1, 0x1, 0x301, 0x0, 0x0, {0x0, 0x0, 0x8}, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x1}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x10}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000004}, 0x40c4) bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000004000000410000000000000001000000", @ANYRES32=0x1, @ANYBLOB="0000000000007acc000000000000000017000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0340000001"], 0x48) 16.190619ms ago: executing program 3 (id=1421): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x18) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r1) sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000d0000000000010000000000000001410000001c0017"], 0x38}}, 0x0) 0s ago: executing program 2 (id=1422): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10) kernel console output (not intermixed with test programs): 003e syscall=64 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 174.122701][ T28] audit: type=1326 audit(1757195372.297:1735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7573 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 174.190053][ T28] audit: type=1326 audit(1757195372.297:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7573 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 174.255536][ T28] audit: type=1326 audit(1757195372.297:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7573 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 174.329154][ T28] audit: type=1326 audit(1757195372.297:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7573 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 174.824895][ T7585] loop0: detected capacity change from 0 to 2048 [ 174.932065][ T7585] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 175.336170][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.378255][ T5798] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 175.392533][ T5798] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 175.401286][ T5798] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 175.414796][ T5798] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 175.424498][ T5798] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 175.432998][ T5798] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 175.566856][ T7593] lo speed is unknown, defaulting to 1000 [ 176.142235][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 176.151166][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 176.290793][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 176.529667][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 176.609319][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 176.653791][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 176.662676][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 176.756088][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 176.858538][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 176.867880][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 177.305732][ T7604] loop0: detected capacity change from 0 to 512 [ 177.409435][ T7604] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 177.424077][ T7604] ext4 filesystem being mounted at /187/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 177.440894][ T7604] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #4: comm syz.0.673: corrupted inode contents [ 177.460905][ T7604] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #4: comm syz.0.673: mark_inode_dirty error [ 177.490075][ T5798] Bluetooth: hci2: command tx timeout [ 177.499308][ T7604] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #4: comm syz.0.673: corrupted inode contents [ 177.565924][ T7604] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #4: comm syz.0.673: mark_inode_dirty error [ 177.621824][ T7604] Quota error (device loop0): write_blk: dquota write failed [ 177.657007][ T7604] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.673: Failed to acquire dquot type 1 [ 177.683402][ T7611] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #4: comm syz.0.673: corrupted inode contents [ 177.714885][ T7611] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #4: comm syz.0.673: mark_inode_dirty error [ 177.738732][ T7593] chnl_net:caif_netlink_parms(): no params data found [ 177.746303][ T7611] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #4: comm syz.0.673: corrupted inode contents [ 177.780710][ T7611] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #4: comm syz.0.673: mark_inode_dirty error [ 177.797262][ T7611] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.673: Failed to acquire dquot type 1 [ 177.878296][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 177.924280][ T7593] bridge0: port 1(bridge_slave_0) entered blocking state [ 177.931690][ T7593] bridge0: port 1(bridge_slave_0) entered disabled state [ 177.949214][ T7593] bridge_slave_0: entered allmulticast mode [ 177.956934][ T7593] bridge_slave_0: entered promiscuous mode [ 177.967123][ T7593] bridge0: port 2(bridge_slave_1) entered blocking state [ 177.974652][ T7593] bridge0: port 2(bridge_slave_1) entered disabled state [ 177.981977][ T7593] bridge_slave_1: entered allmulticast mode [ 177.997928][ T7593] bridge_slave_1: entered promiscuous mode [ 178.049020][ T7593] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 178.064736][ T7593] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 178.117294][ T7593] team0: Port device team_slave_0 added [ 178.136378][ T7593] team0: Port device team_slave_1 added [ 178.217991][ T7593] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 178.230019][ T7593] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 178.256407][ C1] vkms_vblank_simulate: vblank timer overrun [ 178.310500][ T7593] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 178.344000][ T7593] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 178.362410][ T7593] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 178.388746][ C1] vkms_vblank_simulate: vblank timer overrun [ 178.436264][ T7593] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 178.578640][ T7593] hsr_slave_0: entered promiscuous mode [ 178.591515][ T7593] hsr_slave_1: entered promiscuous mode [ 178.599552][ T7593] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 178.608620][ T7593] Cannot create hsr debugfs directory [ 178.620033][ T7627] netlink: 8 bytes leftover after parsing attributes in process `syz.2.677'. [ 178.628905][ T7627] netlink: 4 bytes leftover after parsing attributes in process `syz.2.677'. [ 178.794047][ T7577] warn_alloc: 3 callbacks suppressed [ 178.794065][ T7577] syz.3.663: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1 [ 178.836944][ T7577] CPU: 0 PID: 7577 Comm: syz.3.663 Not tainted syzkaller #0 [ 178.844310][ T7577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 178.854587][ T7577] Call Trace: [ 178.857934][ T7577] [ 178.860940][ T7577] dump_stack_lvl+0x16c/0x230 [ 178.865672][ T7577] ? show_regs_print_info+0x20/0x20 [ 178.870926][ T7577] ? load_image+0x3b0/0x3b0 [ 178.875499][ T7577] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 178.882001][ T7577] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 178.888585][ T7577] warn_alloc+0x210/0x300 [ 178.892957][ T7577] ? zone_watermark_ok_safe+0x230/0x230 [ 178.898544][ T7577] ? _raw_spin_unlock+0x28/0x40 [ 178.903444][ T7577] __vmalloc_node_range+0x662/0x1320 [ 178.908779][ T7577] ? free_vm_area+0x50/0x50 [ 178.913311][ T7577] ? _raw_spin_unlock+0x28/0x40 [ 178.918194][ T7577] ? __kasan_kmalloc+0x8f/0xa0 [ 178.922984][ T7577] __vmalloc_node_range+0x568/0x1320 [ 178.928293][ T7577] ? hash_netiface_create+0x361/0xff0 [ 178.933728][ T7577] ? __asan_memset+0x22/0x40 [ 178.938363][ T7577] ? free_vm_area+0x50/0x50 [ 178.942891][ T7577] ? kvmalloc_node+0x70/0x180 [ 178.947609][ T7577] ? rcu_is_watching+0x15/0xb0 [ 178.952424][ T7577] ? kvmalloc_node+0x70/0x180 [ 178.957137][ T7577] ? trace_kmalloc+0x1f/0xa0 [ 178.961796][ T7577] kvmalloc_node+0x13f/0x180 [ 178.966417][ T7577] ? hash_netiface_create+0x361/0xff0 [ 178.971809][ T7577] hash_netiface_create+0x361/0xff0 [ 178.977028][ T7577] ? __lock_acquire+0x7c80/0x7c80 [ 178.982076][ T7577] ? __nla_parse+0x40/0x50 [ 178.986609][ T7577] ? hash_netport6_gc+0x570/0x570 [ 178.991652][ T7577] ip_set_create+0xa87/0x18e0 [ 178.996377][ T7577] ? ip_set_create+0x4b2/0x18e0 [ 179.001264][ T7577] ? ip_set_protocol+0x5d0/0x5d0 [ 179.006345][ T7577] ? trace_contention_end+0x39/0xe0 [ 179.011622][ T7577] nfnetlink_rcv_msg+0xb49/0x1130 [ 179.016674][ T7577] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 179.022770][ T7577] ? nfnetlink_rcv_msg+0x20e/0x1130 [ 179.028038][ T7577] ? nfnetlink_unbind+0x160/0x160 [ 179.033120][ T7577] ? __dev_queue_xmit+0x1a64/0x35a0 [ 179.038385][ T7577] ? __netlink_deliver_tap+0x5ab/0x830 [ 179.043867][ T7577] ? netlink_deliver_tap+0x19c/0x1b0 [ 179.049169][ T7577] ? netlink_unicast+0x72c/0x8d0 [ 179.054217][ T7577] ? netlink_sendmsg+0x8c1/0xbe0 [ 179.059173][ T7577] ? ____sys_sendmsg+0x5bf/0x950 [ 179.064133][ T7577] ? ___sys_sendmsg+0x220/0x290 [ 179.069008][ T7577] ? __se_sys_sendmsg+0x1a5/0x270 [ 179.074064][ T7577] ? do_syscall_64+0x55/0xb0 [ 179.078689][ T7577] netlink_rcv_skb+0x216/0x480 [ 179.083479][ T7577] ? nfnetlink_unbind+0x160/0x160 [ 179.088528][ T7577] ? netlink_ack+0x1110/0x1110 [ 179.093322][ T7577] ? apparmor_capable+0x137/0x1a0 [ 179.098374][ T7577] ? bpf_lsm_capable+0x9/0x10 [ 179.103104][ T7577] ? security_capable+0x89/0xb0 [ 179.107996][ T7577] nfnetlink_rcv+0x274/0x2180 [ 179.112720][ T7577] ? __local_bh_enable_ip+0x12e/0x1c0 [ 179.118116][ T7577] ? lockdep_hardirqs_on+0x98/0x150 [ 179.123363][ T7577] ? __local_bh_enable_ip+0x12e/0x1c0 [ 179.128764][ T7577] ? _local_bh_enable+0xa0/0xa0 [ 179.133642][ T7577] ? __dev_queue_xmit+0x245/0x35a0 [ 179.138796][ T7577] ? nfnetlink_net_exit_batch+0xa0/0xa0 [ 179.144381][ T7577] ? __dev_queue_xmit+0x245/0x35a0 [ 179.149512][ T7577] ? ref_tracker_free+0x634/0x7d0 [ 179.154560][ T7577] ? __copy_skb_header+0xa7/0x550 [ 179.159618][ T7577] ? refcount_inc+0x70/0x70 [ 179.164136][ T7577] ? __skb_clone+0x63/0x790 [ 179.168662][ T7577] ? __skb_clone+0x480/0x790 [ 179.173294][ T7577] ? __netlink_deliver_tap+0x7e8/0x830 [ 179.178775][ T7577] ? netlink_deliver_tap+0x2e/0x1b0 [ 179.184018][ T7577] ? __lock_acquire+0x7c80/0x7c80 [ 179.189088][ T7577] ? netlink_deliver_tap+0x2e/0x1b0 [ 179.194332][ T7577] netlink_unicast+0x751/0x8d0 [ 179.199141][ T7577] netlink_sendmsg+0x8c1/0xbe0 [ 179.203942][ T7577] ? netlink_getsockopt+0x580/0x580 [ 179.209169][ T7577] ? aa_sock_msg_perm+0x94/0x150 [ 179.214139][ T7577] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 179.219446][ T7577] ? security_socket_sendmsg+0x80/0xa0 [ 179.224933][ T7577] ? netlink_getsockopt+0x580/0x580 [ 179.230154][ T7577] ____sys_sendmsg+0x5bf/0x950 [ 179.234955][ T7577] ? __asan_memset+0x22/0x40 [ 179.239570][ T7577] ? __sys_sendmsg_sock+0x30/0x30 [ 179.244627][ T7577] ? __import_iovec+0x5f2/0x860 [ 179.249509][ T7577] ? import_iovec+0x73/0xa0 [ 179.254040][ T7577] ___sys_sendmsg+0x220/0x290 [ 179.258741][ T7577] ? __sys_sendmsg+0x270/0x270 [ 179.263587][ T7577] __se_sys_sendmsg+0x1a5/0x270 [ 179.268481][ T7577] ? __x64_sys_sendmsg+0x80/0x80 [ 179.273467][ T7577] ? lockdep_hardirqs_on+0x98/0x150 [ 179.278716][ T7577] do_syscall_64+0x55/0xb0 [ 179.283158][ T7577] ? clear_bhb_loop+0x40/0x90 [ 179.287848][ T7577] ? clear_bhb_loop+0x40/0x90 [ 179.292553][ T7577] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 179.298474][ T7577] RIP: 0033:0x7f580dd8ebe9 [ 179.302920][ T7577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.322551][ T7577] RSP: 002b:00007f580ebb1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 179.330990][ T7577] RAX: ffffffffffffffda RBX: 00007f580dfc6180 RCX: 00007f580dd8ebe9 [ 179.338982][ T7577] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000005 [ 179.346971][ T7577] RBP: 00007f580de11e19 R08: 0000000000000000 R09: 0000000000000000 [ 179.354961][ T7577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.362949][ T7577] R13: 00007f580dfc6218 R14: 00007f580dfc6180 R15: 00007ffef58ddd18 [ 179.370966][ T7577] [ 179.441799][ T7577] Mem-Info: [ 179.444977][ T7577] active_anon:12203 inactive_anon:0 isolated_anon:0 [ 179.444977][ T7577] active_file:12757 inactive_file:39910 isolated_file:0 [ 179.444977][ T7577] unevictable:768 dirty:68 writeback:0 [ 179.444977][ T7577] slab_reclaimable:10205 slab_unreclaimable:92452 [ 179.444977][ T7577] mapped:24476 shmem:8238 pagetables:548 [ 179.444977][ T7577] sec_pagetables:0 bounce:0 [ 179.444977][ T7577] kernel_misc_reclaimable:0 [ 179.444977][ T7577] free:1319752 free_pcp:4897 free_cma:0 [ 179.559909][ T7577] Node 0 active_anon:48712kB inactive_anon:0kB active_file:51028kB inactive_file:159440kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:97804kB dirty:272kB writeback:0kB shmem:31416kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11576kB pagetables:2092kB sec_pagetables:0kB all_unreclaimable? no [ 179.601404][ T5798] Bluetooth: hci2: command tx timeout [ 179.635150][ T7577] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 179.672175][ T7577] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 179.700639][ T7577] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 179.706932][ T7577] Node 0 DMA32 free:1355640kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:48764kB inactive_anon:0kB active_file:51028kB inactive_file:158108kB unevictable:1536kB writepending:268kB present:3129332kB managed:2589592kB mlocked:0kB bounce:0kB free_pcp:8236kB local_pcp:7196kB free_cma:0kB [ 179.825689][ T7577] lowmem_reserve[]: 0 0 1 1 1 [ 179.903703][ T7577] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1332kB unevictable:0kB writepending:4kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 180.250545][ T7577] lowmem_reserve[]: 0 0 0 0 0 [ 180.297380][ T7593] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 180.304931][ T7577] Node 1 Normal free:3903444kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:15876kB local_pcp:6976kB free_cma:0kB [ 180.561247][ T7593] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 180.685546][ T7577] lowmem_reserve[]: 0 0 0 0 0 [ 180.763633][ T7577] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 180.939592][ T7577] Node 0 DMA32: 4*4kB (UME) 105*8kB (UME) 169*16kB (UM) 20*32kB (ME) 43*64kB (ME) 19*128kB (UM) 13*256kB (M) 12*512kB (ME) 7*1024kB (M) 5*2048kB (UME) 322*4096kB (UM) = 1355176kB [ 180.981083][ T7593] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 180.992276][ T7593] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 180.999648][ T7577] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 181.016861][ T7577] Node 1 Normal: 245*4kB (UME) 56*8kB (UME) 40*16kB (UME) 82*32kB (UME) 20*64kB (UME) 7*128kB (UME) 3*256kB (UME) 1*512kB (E) 2*1024kB (UE) 1*2048kB (E) 950*4096kB (M) = 3903444kB [ 181.040666][ T7577] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 181.052435][ T7577] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 181.062990][ T7577] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 181.072657][ T7577] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 181.090076][ T7577] 60903 total pagecache pages [ 181.094923][ T7577] 0 pages in swap cache [ 181.099116][ T7577] Free swap = 124984kB [ 181.105550][ T7577] Total swap = 124996kB [ 181.109902][ T7577] 2097051 pages RAM [ 181.115030][ T7577] 0 pages HighMem/MovableOnly [ 181.119919][ T7577] 416139 pages reserved [ 181.124115][ T7577] 0 pages cma reserved [ 181.415991][ T7593] 8021q: adding VLAN 0 to HW filter on device bond0 [ 181.499721][ T7593] 8021q: adding VLAN 0 to HW filter on device team0 [ 181.543241][ T3540] bridge0: port 1(bridge_slave_0) entered blocking state [ 181.550480][ T3540] bridge0: port 1(bridge_slave_0) entered forwarding state [ 181.598046][ T3540] bridge0: port 2(bridge_slave_1) entered blocking state [ 181.606297][ T3540] bridge0: port 2(bridge_slave_1) entered forwarding state [ 181.642701][ T7655] loop2: detected capacity change from 0 to 512 [ 181.661048][ T5798] Bluetooth: hci2: command tx timeout [ 181.700354][ T7655] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 181.772010][ T7658] netlink: 28 bytes leftover after parsing attributes in process `syz.0.688'. [ 181.789639][ T7655] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.687: iget: bad extended attribute block 1 [ 181.828156][ T7593] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 181.882110][ T7655] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.687: couldn't read orphan inode 15 (err -117) [ 181.892337][ T7593] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 181.922463][ T7655] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 182.085663][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.097059][ T7664] syz.0.690[7664] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 182.097201][ T7664] syz.0.690[7664] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 183.759651][ T5798] Bluetooth: hci2: command tx timeout [ 184.273477][ T7593] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 184.420847][ T7680] loop2: detected capacity change from 0 to 1024 [ 184.428215][ T7680] EXT4-fs: Ignoring removed bh option [ 184.434054][ T7680] EXT4-fs: inline encryption not supported [ 184.463502][ T7680] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 184.476382][ T7680] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000] [ 184.625021][ T7680] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm syz.2.695: lblock 2 mapped to illegal pblock 2 (length 1) [ 184.688544][ T7680] __quota_error: 4 callbacks suppressed [ 184.688563][ T7680] Quota error (device loop2): qtree_write_dquot: dquota write failed [ 184.722881][ T7680] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 48: comm syz.2.695: lblock 0 mapped to illegal pblock 48 (length 1) [ 184.751751][ T7680] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 184.767540][ T7680] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.695: Failed to acquire dquot type 0 [ 184.781776][ T7680] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 184.835700][ T7680] EXT4-fs error (device loop2): ext4_evict_inode:252: inode #11: comm syz.2.695: mark_inode_dirty error [ 184.854779][ T7680] EXT4-fs warning (device loop2): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 184.871218][ T7680] EXT4-fs (loop2): 1 orphan inode deleted [ 184.878411][ T7680] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 184.902003][ T48] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:3: lblock 1 mapped to illegal pblock 1 (length 1) [ 184.926913][ T48] Quota error (device loop2): remove_tree: Can't read quota data block 1 [ 184.942601][ T48] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:3: Failed to release dquot type 0 [ 184.971309][ T7680] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.988932][ T7680] EXT4-fs error (device loop2): __ext4_get_inode_loc:4483: comm syz.2.695: Invalid inode table block 1 in block_group 0 [ 185.007645][ T7680] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 185.020407][ T7680] EXT4-fs error (device loop2): ext4_quota_off:7224: inode #3: comm syz.2.695: mark_inode_dirty error [ 185.185317][ T7680] loop2: detected capacity change from 0 to 512 [ 185.228527][ T7680] ext4: Unknown parameter 'nouser_xattr' [ 185.239856][ T7593] veth0_vlan: entered promiscuous mode [ 185.302953][ T7593] veth1_vlan: entered promiscuous mode [ 185.426684][ T7593] veth0_macvtap: entered promiscuous mode [ 185.464260][ T7593] veth1_macvtap: entered promiscuous mode [ 185.545794][ T7593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.564533][ T7593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.576903][ T7593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.587595][ T7593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.597805][ T7593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.650651][ T7593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.665560][ T7593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.699907][ T7593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.711909][ T7593] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 185.734369][ T7593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.759950][ T7593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.780225][ T7593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.806034][ T7593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.826114][ T7593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.847078][ T7593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.867332][ T7593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.894226][ T7593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.916311][ T7593] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 185.962832][ T7593] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.979884][ T7593] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.999029][ T7593] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.023926][ T7593] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.240748][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 186.268530][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 186.361706][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 186.378572][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 188.618962][ T7715] loop4: detected capacity change from 0 to 1024 [ 188.761611][ T7715] EXT4-fs: Ignoring removed bh option [ 188.856082][ T7715] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 188.917752][ T7720] loop2: detected capacity change from 0 to 1024 [ 188.932430][ T7715] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 189.004499][ T7720] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 189.062574][ T7720] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 189.159698][ T28] audit: type=1800 audit(1757195387.487:1739): pid=7720 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.703" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 189.207152][ T7733] loop0: detected capacity change from 0 to 512 [ 189.316150][ T7733] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 189.360680][ T7733] System zones: 0-2, 18-18, 34-35 [ 189.391521][ T7733] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 189.441972][ T7733] ext4 filesystem being mounted at /205/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 189.469930][ T28] audit: type=1326 audit(1757195387.777:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 189.547941][ T28] audit: type=1326 audit(1757195387.787:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 189.672333][ T28] audit: type=1326 audit(1757195387.787:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 189.724532][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 189.743694][ T28] audit: type=1326 audit(1757195387.787:1743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 189.815273][ T28] audit: type=1326 audit(1757195387.787:1744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 189.939192][ T28] audit: type=1326 audit(1757195387.787:1745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 190.304109][ T28] audit: type=1326 audit(1757195387.787:1746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 190.646257][ T28] audit: type=1326 audit(1757195387.787:1747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 190.978257][ T28] audit: type=1326 audit(1757195387.787:1748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 191.258445][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.267968][ T28] audit: type=1326 audit(1757195387.787:1749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 191.301882][ T28] audit: type=1326 audit(1757195387.787:1750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 191.324856][ T28] audit: type=1326 audit(1757195387.797:1751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 191.349658][ T28] audit: type=1326 audit(1757195387.797:1752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7738 comm="syz.3.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 191.373905][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.585299][ T7753] process 'syz.3.715' launched './file0' with NULL argv: empty string added [ 191.618736][ T7749] loop2: detected capacity change from 0 to 8192 [ 191.618736][ T7751] loop0: detected capacity change from 0 to 1024 [ 191.675757][ T7751] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 191.731615][ T7749] loop2: p1 p2[DM] p4 [ 191.737645][ T7749] loop2: p1 size 196608 extends beyond EOD, truncated [ 191.781932][ T7749] loop2: p2 start 4292936063 is beyond EOD, truncated [ 191.799050][ T7749] loop2: p4 size 50331648 extends beyond EOD, truncated [ 191.903002][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.136359][ T7767] loop4: detected capacity change from 0 to 512 [ 192.168488][ T5802] udevd[5802]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 192.171679][ T5792] udevd[5792]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 192.223566][ T7767] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 192.252081][ T7767] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 192.455874][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.537801][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.544936][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.785054][ T7789] lo speed is unknown, defaulting to 1000 [ 196.154870][ T7808] loop3: detected capacity change from 0 to 1024 [ 196.161596][ T7803] lo speed is unknown, defaulting to 1000 [ 196.163674][ T7808] EXT4-fs: Ignoring removed bh option [ 196.190171][ T7808] EXT4-fs: inline encryption not supported [ 196.224170][ T7808] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 196.250826][ T7808] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000] [ 196.322379][ T7808] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.732: lblock 2 mapped to illegal pblock 2 (length 1) [ 196.376535][ T7808] __quota_error: 33 callbacks suppressed [ 196.376556][ T7808] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 196.423218][ T7808] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.732: lblock 0 mapped to illegal pblock 48 (length 1) [ 196.457720][ T7808] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 196.476195][ T7808] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.732: Failed to acquire dquot type 0 [ 196.505475][ T7808] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 196.528421][ T7808] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.732: mark_inode_dirty error [ 196.553396][ T7808] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 196.594261][ T7814] loop4: detected capacity change from 0 to 512 [ 196.613199][ T7808] EXT4-fs (loop3): 1 orphan inode deleted [ 196.630065][ T1087] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1) [ 196.649766][ T7808] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.681503][ T1087] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 196.684445][ T7814] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 196.717415][ T1087] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:6: Failed to release dquot type 0 [ 196.786876][ T7808] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 196.827059][ T7814] EXT4-fs (loop4): 1 orphan inode deleted [ 196.875853][ T7814] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.895617][ T12] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 196.958558][ T12] EXT4-fs error (device loop4): ext4_release_dquot:6976: comm kworker/u4:1: Failed to release dquot type 1 [ 196.980792][ T7814] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 197.026040][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.107210][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.261535][ T28] audit: type=1326 audit(1757195395.607:1786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 197.326858][ T28] audit: type=1326 audit(1757195395.637:1787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 197.385925][ T28] audit: type=1326 audit(1757195395.637:1788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 197.460133][ T28] audit: type=1326 audit(1757195395.637:1789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 197.520322][ T28] audit: type=1326 audit(1757195395.637:1790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 197.586646][ T28] audit: type=1326 audit(1757195395.637:1791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 197.888296][ T7819] 9pnet_fd: p9_fd_create_tcp (7819): problem connecting socket to 127.0.0.1 [ 198.148530][ T7832] loop0: detected capacity change from 0 to 1024 [ 198.186082][ T7832] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 199.032649][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.547941][ T7839] loop4: detected capacity change from 0 to 512 [ 199.783705][ T7839] EXT4-fs (loop4): too many log groups per flexible block group [ 199.805802][ T7839] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 199.841849][ T7839] EXT4-fs (loop4): mount failed [ 200.761142][ T7766] Set syz1 is full, maxelem 65536 reached [ 201.953141][ T28] kauditd_printk_skb: 56 callbacks suppressed [ 201.953157][ T28] audit: type=1326 audit(1757195400.297:1848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7879 comm="-,^!!" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 201.991845][ T28] audit: type=1326 audit(1757195400.327:1849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7879 comm="-,^!!" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 202.015477][ T28] audit: type=1326 audit(1757195400.327:1850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7879 comm="-,^!!" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 202.375745][ T7892] program syz.2.765 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 202.558504][ T7896] loop4: detected capacity change from 0 to 512 [ 202.616965][ T7896] EXT4-fs (loop4): too many log groups per flexible block group [ 202.648191][ T7896] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 202.670164][ T7896] EXT4-fs (loop4): mount failed [ 202.851902][ T7902] loop2: detected capacity change from 0 to 1024 [ 202.905883][ T7902] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 202.918300][ T7902] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 202.939352][ T28] audit: type=1326 audit(1757195401.267:1851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7903 comm="syz.4.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 202.983747][ T7902] EXT4-fs error (device loop2): ext4_map_blocks:718: inode #15: comm syz.2.769: lblock 0 mapped to illegal pblock 0 (length 1) [ 202.999308][ T28] audit: type=1326 audit(1757195401.267:1852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7903 comm="syz.4.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 203.012003][ T7902] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 203.035839][ T7902] EXT4-fs (loop2): This should not happen!! Data will be lost [ 203.035839][ T7902] [ 203.047528][ T7902] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #15: comm syz.2.769: lblock 0 mapped to illegal pblock 0 (length 1) [ 203.070442][ T7902] EXT4-fs error (device loop2): ext4_map_blocks:718: inode #15: block 3: comm syz.2.769: lblock 3 mapped to illegal pblock 3 (length 3) [ 203.075406][ T28] audit: type=1326 audit(1757195401.307:1853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7903 comm="syz.4.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 203.109371][ T7902] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 203.122092][ T7902] EXT4-fs (loop2): This should not happen!! Data will be lost [ 203.122092][ T7902] [ 203.135209][ T7910] loop3: detected capacity change from 0 to 1024 [ 203.163583][ T28] audit: type=1326 audit(1757195401.307:1854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7903 comm="syz.4.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 203.199553][ T28] audit: type=1326 audit(1757195401.307:1855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7903 comm="syz.4.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 203.314317][ T12] EXT4-fs error (device loop2): ext4_map_blocks:718: inode #15: block 7: comm kworker/u4:1: lblock 7 mapped to illegal pblock 7 (length 9) [ 203.335856][ T12] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 7 with max blocks 9 with error 117 [ 203.360305][ T7910] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 203.380278][ T12] EXT4-fs (loop2): This should not happen!! Data will be lost [ 203.380278][ T12] [ 203.474531][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 203.486130][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.814143][ T7919] netlink: 12 bytes leftover after parsing attributes in process `syz.2.773'. [ 204.036373][ T7923] loop4: detected capacity change from 0 to 2048 [ 204.339678][ T7923] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 204.684694][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.420507][ T7942] netlink: 8 bytes leftover after parsing attributes in process `syz.3.779'. [ 206.607412][ T7948] loop4: detected capacity change from 0 to 2048 [ 206.707585][ T7948] loop4: p1 < > p4 [ 206.723979][ T7948] loop4: p4 size 8388608 extends beyond EOD, truncated [ 206.819822][ C0] sched: RT throttling activated [ 207.123311][ T7952] loop2: detected capacity change from 0 to 1024 [ 207.167584][ T7952] EXT4-fs: Ignoring removed nobh option [ 207.204562][ T7952] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 207.324584][ T7954] loop4: detected capacity change from 0 to 1024 [ 207.467816][ T7954] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 207.490786][ T7952] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 207.580608][ T28] audit: type=1800 audit(1757195405.897:1856): pid=7954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.788" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 207.659209][ T5792] udevd[5792]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 207.676966][ T5802] udevd[5802]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 207.841634][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.166714][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.997225][ T7978] loop2: detected capacity change from 0 to 8192 [ 209.311116][ T28] audit: type=1326 audit(1757195407.657:1857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2caed8ebe9 code=0x7ffc0000 [ 209.370263][ T28] audit: type=1326 audit(1757195407.657:1858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2caed8ebe9 code=0x7ffc0000 [ 209.453425][ T28] audit: type=1326 audit(1757195407.657:1859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f2caed8ebe9 code=0x7ffc0000 [ 209.537695][ T28] audit: type=1326 audit(1757195407.657:1860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2caed8ebe9 code=0x7ffc0000 [ 209.883752][ T7993] loop4: detected capacity change from 0 to 1024 [ 210.042933][ T7993] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 210.191436][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 211.098141][ T8010] lo speed is unknown, defaulting to 1000 [ 211.646657][ T28] audit: type=1326 audit(1757195409.987:1861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8014 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 211.734636][ T28] audit: type=1326 audit(1757195410.017:1862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8014 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 211.776909][ T28] audit: type=1326 audit(1757195410.017:1863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8014 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 211.845590][ T28] audit: type=1326 audit(1757195410.017:1864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8014 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 211.970265][ T5108] Bluetooth: hci0: command 0x0406 tx timeout [ 211.973508][ T50] Bluetooth: hci1: command 0x0406 tx timeout [ 212.679350][ T7888] Set syz1 is full, maxelem 65536 reached [ 212.855883][ T8039] program syz.0.818 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 212.985936][ T28] audit: type=1326 audit(1757195411.327:1865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8040 comm="syz.3.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 213.064223][ T28] audit: type=1326 audit(1757195411.327:1866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8040 comm="syz.3.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 213.135907][ T28] audit: type=1326 audit(1757195411.367:1867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8040 comm="syz.3.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 213.206061][ T28] audit: type=1326 audit(1757195411.367:1868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8040 comm="syz.3.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 213.249686][ T8049] syz.3.823[8049] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 213.251270][ T28] audit: type=1326 audit(1757195411.367:1869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8040 comm="syz.3.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 213.274446][ T8049] syz.3.823[8049] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 213.285369][ T28] audit: type=1326 audit(1757195411.377:1870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8040 comm="syz.3.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 213.322905][ T28] audit: type=1326 audit(1757195411.377:1871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8040 comm="syz.3.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 213.346768][ T28] audit: type=1326 audit(1757195411.377:1872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8040 comm="syz.3.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 213.374429][ T28] audit: type=1326 audit(1757195411.377:1873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8040 comm="syz.3.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 213.409741][ T28] audit: type=1326 audit(1757195411.377:1874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8040 comm="syz.3.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 213.430199][ T8049] netlink: 32 bytes leftover after parsing attributes in process `syz.3.823'. [ 213.618606][ T8052] loop0: detected capacity change from 0 to 512 [ 213.659963][ T8052] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 213.743390][ T8052] EXT4-fs (loop0): 1 truncate cleaned up [ 213.752525][ T8052] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 214.072388][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 214.080642][ T8068] 9pnet_fd: Insufficient options for proto=fd [ 214.098225][ T8070] netlink: 20 bytes leftover after parsing attributes in process `syz.4.832'. [ 214.544901][ T8086] loop4: detected capacity change from 0 to 128 [ 214.587022][ T8086] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 214.602617][ T8086] ext4 filesystem being mounted at /43/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 214.771693][ T7593] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 214.889567][ T8093] loop3: detected capacity change from 0 to 512 [ 214.920912][ T8093] journal_path: Lookup failure for './file0/../file0' [ 214.927822][ T8093] EXT4-fs: error: could not find journal device path [ 215.511083][ T8111] netlink: 'syz.4.846': attribute type 27 has an invalid length. [ 216.287666][ T8114] syz.3.851[8114] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 216.287815][ T8114] syz.3.851[8114] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 216.318377][ T8115] hub 2-0:1.0: USB hub found [ 216.360456][ T8115] hub 2-0:1.0: 1 port detected [ 216.825755][ T8131] loop0: detected capacity change from 0 to 512 [ 216.865792][ T8132] loop3: detected capacity change from 0 to 1024 [ 216.890727][ T8111] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.891466][ T8111] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.943363][ T8131] EXT4-fs warning (device loop0): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 217.020523][ T8131] EXT4-fs (loop0): mount failed [ 217.030723][ T8132] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 217.450451][ T8132] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4031: comm syz.3.856: Allocating blocks 497-513 which overlap fs metadata [ 217.484379][ T8130] EXT4-fs (loop3): pa ffff88805c803bc8: logic 32, phys. 161, len 22 [ 217.493447][ T8130] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 1 [ 217.559672][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 217.965780][ T8149] netlink: 20 bytes leftover after parsing attributes in process `syz.0.860'. [ 217.993185][ T8149] netlink: 40 bytes leftover after parsing attributes in process `syz.0.860'. [ 218.035975][ T8111] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 218.052196][ T28] kauditd_printk_skb: 22 callbacks suppressed [ 218.052212][ T28] audit: type=1326 audit(1757195416.397:1896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 218.143192][ T28] audit: type=1326 audit(1757195416.437:1897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 218.192603][ T28] audit: type=1326 audit(1757195416.437:1898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 218.225832][ T8111] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 218.259974][ T28] audit: type=1326 audit(1757195416.437:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 218.315751][ T28] audit: type=1326 audit(1757195416.437:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 218.367865][ T28] audit: type=1326 audit(1757195416.437:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 218.399611][ T28] audit: type=1326 audit(1757195416.437:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 218.470721][ T28] audit: type=1326 audit(1757195416.437:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 218.528226][ T28] audit: type=1326 audit(1757195416.437:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 218.572517][ T28] audit: type=1326 audit(1757195416.437:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 218.646172][ T8159] loop3: detected capacity change from 0 to 8192 [ 219.175104][ T8167] siw: device registration error -23 [ 220.190864][ T8111] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.200429][ T8111] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.209438][ T8111] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.218628][ T8111] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.626913][ T8179] loop4: detected capacity change from 0 to 1764 [ 220.687674][ T5792] blk_print_req_error: 9 callbacks suppressed [ 220.687694][ T5792] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 221.063033][ T8187] syz.0.875[8187] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 221.063176][ T8187] syz.0.875[8187] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 221.419344][ T8195] loop2: detected capacity change from 0 to 512 [ 221.489982][ T8195] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 221.590358][ T8198] lo speed is unknown, defaulting to 1000 [ 221.644973][ T8195] EXT4-fs (loop2): 1 truncate cleaned up [ 221.693218][ T8195] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 221.950140][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.186544][ T8252] loop0: detected capacity change from 0 to 512 [ 223.240193][ T8252] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 223.273808][ T8252] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 223.349190][ T8252] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.901: invalid indirect mapped block 4294967295 (level 1) [ 223.420790][ T8252] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.901: invalid indirect mapped block 4294967295 (level 1) [ 223.508474][ T8252] EXT4-fs (loop0): 2 truncates cleaned up [ 223.529486][ T8252] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 223.692971][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.707000][ T8249] netlink: 'syz.3.900': attribute type 21 has an invalid length. [ 223.719667][ T8249] netlink: 'syz.3.900': attribute type 1 has an invalid length. [ 223.728702][ T8249] netlink: 100 bytes leftover after parsing attributes in process `syz.3.900'. [ 224.366634][ T8271] loop4: detected capacity change from 0 to 128 [ 224.490521][ T28] kauditd_printk_skb: 36 callbacks suppressed [ 224.490535][ T28] audit: type=1800 audit(1757195422.837:1942): pid=8271 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.904" name="file2" dev="loop4" ino=1048612 res=0 errno=0 [ 224.519433][ T8271] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 224.559550][ T8271] FAT-fs (loop4): Filesystem has been set read-only [ 224.620727][ T8271] bio_check_eod: 5132 callbacks suppressed [ 224.622582][ T8271] syz.4.904: attempt to access beyond end of device [ 224.622582][ T8271] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 224.676791][ T8271] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 224.703821][ T8271] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 224.712763][ T8276] netlink: 28 bytes leftover after parsing attributes in process `syz.2.910'. [ 224.727317][ T8276] netem: change failed [ 224.732362][ T8271] syz.4.904: attempt to access beyond end of device [ 224.732362][ T8271] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 224.795181][ T28] audit: type=1326 audit(1757195423.137:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8272 comm="syz.0.909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 224.870852][ T28] audit: type=1326 audit(1757195423.137:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8272 comm="syz.0.909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 224.960804][ T28] audit: type=1326 audit(1757195423.137:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8272 comm="syz.0.909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 225.026378][ T28] audit: type=1326 audit(1757195423.197:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8272 comm="syz.0.909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 225.075392][ T28] audit: type=1326 audit(1757195423.197:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8272 comm="syz.0.909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 225.152605][ T8285] syz.3.914[8285] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 225.152747][ T8285] syz.3.914[8285] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 225.772707][ T28] audit: type=1326 audit(1757195424.117:1948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8302 comm="syz.2.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2caed8ebe9 code=0x7ffc0000 [ 225.823759][ T28] audit: type=1326 audit(1757195424.117:1949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8302 comm="syz.2.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f2caed8ebe9 code=0x7ffc0000 [ 225.960197][ T28] audit: type=1326 audit(1757195424.277:1950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8302 comm="syz.2.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2caed8ebe9 code=0x7ffc0000 [ 226.012005][ T28] audit: type=1326 audit(1757195424.277:1951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8302 comm="syz.2.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2caed8ebe9 code=0x7ffc0000 [ 227.480157][ T8332] syzkaller0: entered allmulticast mode [ 227.487471][ T8332] syzkaller0: entered promiscuous mode [ 227.499383][ T8332] syzkaller0 (unregistering): left promiscuous mode [ 227.506859][ T8332] syzkaller0 (unregistering): left allmulticast mode [ 228.234127][ T8351] netlink: 'syz.2.944': attribute type 298 has an invalid length. [ 228.337083][ T8354] netlink: 120 bytes leftover after parsing attributes in process `syz.3.945'. [ 229.578968][ T8378] loop3: detected capacity change from 0 to 1024 [ 229.597478][ T8378] EXT4-fs: Ignoring removed bh option [ 229.626997][ T8378] EXT4-fs: inline encryption not supported [ 229.647259][ T8378] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 229.721177][ T8378] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000] [ 229.748973][ T8378] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.956: lblock 2 mapped to illegal pblock 2 (length 1) [ 229.779368][ T8378] __quota_error: 12 callbacks suppressed [ 229.779387][ T8378] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 229.837195][ T8378] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.956: lblock 0 mapped to illegal pblock 48 (length 1) [ 229.861135][ T8378] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 229.880096][ T8378] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.956: Failed to acquire dquot type 0 [ 229.903280][ T8378] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 229.930372][ T8378] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.956: mark_inode_dirty error [ 229.981905][ T8378] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 230.000046][ T8378] EXT4-fs (loop3): 1 orphan inode deleted [ 230.030076][ T3512] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:14: lblock 1 mapped to illegal pblock 1 (length 1) [ 230.031531][ T8378] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 230.071163][ T3512] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 230.092063][ T3512] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:14: Failed to release dquot type 0 [ 230.320455][ T8378] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.956: lblock 0 mapped to illegal pblock 48 (length 1) [ 230.361328][ T8378] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=-117 [ 230.523870][ T28] audit: type=1326 audit(1757195428.867:1964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8393 comm="syz.0.963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 230.566627][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.600010][ T28] audit: type=1326 audit(1757195428.897:1965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8393 comm="syz.0.963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 230.688609][ T28] audit: type=1326 audit(1757195428.897:1966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8393 comm="syz.0.963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 230.956377][ T28] audit: type=1326 audit(1757195429.297:1967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8403 comm="syz.0.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 230.994632][ T28] audit: type=1326 audit(1757195429.297:1968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8403 comm="syz.0.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 231.019571][ T28] audit: type=1326 audit(1757195429.347:1969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8403 comm="syz.0.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 231.264372][ T8410] loop3: detected capacity change from 0 to 512 [ 231.345831][ T8410] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 231.415893][ T8410] EXT4-fs (loop3): 1 truncate cleaned up [ 231.431324][ T8410] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 231.781517][ T8424] loop4: detected capacity change from 0 to 1024 [ 231.789176][ T8424] ext4: Unknown parameter 'appraise' [ 231.866378][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.580628][ T8449] 9pnet_fd: Insufficient options for proto=fd [ 233.598858][ T8451] loop2: detected capacity change from 0 to 1024 [ 233.670707][ T8451] EXT4-fs: Ignoring removed orlov option [ 233.732381][ T8451] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 233.904582][ T8457] netlink: 360 bytes leftover after parsing attributes in process `syz.4.990'. [ 233.965201][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.059676][ T8463] loop3: detected capacity change from 0 to 512 [ 234.168648][ T8463] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.246022][ T8463] ext4 filesystem being mounted at /253/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 234.343752][ T8463] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.992: corrupted inode contents [ 234.376917][ T8475] loop4: detected capacity change from 0 to 512 [ 234.393406][ T8475] EXT4-fs: Ignoring removed nobh option [ 234.402573][ T8463] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #2: comm syz.3.992: mark_inode_dirty error [ 234.442093][ T8463] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.992: corrupted inode contents [ 234.449736][ T8475] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #3: comm syz.4.997: corrupted inode contents [ 234.490049][ T8475] EXT4-fs error (device loop4): ext4_dirty_inode:6106: inode #3: comm syz.4.997: mark_inode_dirty error [ 234.555761][ T8479] loop2: detected capacity change from 0 to 512 [ 234.555789][ T8475] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #3: comm syz.4.997: corrupted inode contents [ 234.577938][ T8475] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #3: comm syz.4.997: mark_inode_dirty error [ 234.584579][ T8479] EXT4-fs: Ignoring removed mblk_io_submit option [ 234.617351][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.628142][ T8475] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.997: Failed to acquire dquot type 0 [ 234.643015][ T8479] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 234.645409][ T8475] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #16: comm syz.4.997: corrupted inode contents [ 234.710770][ T8475] EXT4-fs error (device loop4): ext4_dirty_inode:6106: inode #16: comm syz.4.997: mark_inode_dirty error [ 234.723008][ T8479] EXT4-fs (loop2): 1 truncate cleaned up [ 234.724461][ T8479] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.810935][ T8475] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #16: comm syz.4.997: corrupted inode contents [ 234.829519][ T8475] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #16: comm syz.4.997: mark_inode_dirty error [ 234.952175][ T8475] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #16: comm syz.4.997: corrupted inode contents [ 235.116393][ T8475] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 235.288637][ T8475] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #16: comm syz.4.997: corrupted inode contents [ 235.476183][ T8475] EXT4-fs error (device loop4): ext4_truncate:4288: inode #16: comm syz.4.997: mark_inode_dirty error [ 235.518763][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.737343][ T8475] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 236.014035][ T28] kauditd_printk_skb: 78 callbacks suppressed [ 236.014089][ T28] audit: type=1326 audit(1757195434.247:2046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8488 comm="syz.3.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 236.277348][ T28] audit: type=1326 audit(1757195434.247:2047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8488 comm="syz.3.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 236.408596][ T8475] EXT4-fs (loop4): 1 truncate cleaned up [ 236.478664][ T28] audit: type=1326 audit(1757195434.257:2048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8488 comm="syz.3.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 236.535300][ T8475] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 236.648490][ T8475] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 236.698565][ T28] audit: type=1326 audit(1757195434.257:2049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8488 comm="syz.3.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 236.834469][ T28] audit: type=1326 audit(1757195434.257:2050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8488 comm="syz.3.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 237.584858][ T5844] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 237.922509][ T5844] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 239.385821][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.727894][ T28] audit: type=1326 audit(1757195438.067:2051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8501 comm="syz.4.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 239.757883][ T28] audit: type=1326 audit(1757195438.067:2052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8501 comm="syz.4.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 239.793220][ T8502] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1006'. [ 239.816584][ T27] IPVS: starting estimator thread 0... [ 239.822229][ T28] audit: type=1326 audit(1757195438.077:2053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8501 comm="syz.4.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 239.845486][ T8502] loop4: detected capacity change from 0 to 512 [ 239.866918][ T28] audit: type=1326 audit(1757195438.107:2054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8501 comm="syz.4.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 239.920044][ T8505] IPVS: using max 19 ests per chain, 45600 per kthread [ 239.924043][ T28] audit: type=1326 audit(1757195438.117:2055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8501 comm="syz.4.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 239.984859][ T8502] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 240.039560][ T8502] ext4 filesystem being mounted at /72/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 240.055250][ T8502] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #4: comm syz.4.1006: corrupted inode contents [ 240.095595][ T8502] EXT4-fs error (device loop4): ext4_dirty_inode:6106: inode #4: comm syz.4.1006: mark_inode_dirty error [ 240.144291][ T8502] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #4: comm syz.4.1006: corrupted inode contents [ 240.257940][ T8502] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #4: comm syz.4.1006: mark_inode_dirty error [ 240.325576][ T8511] loop2: detected capacity change from 0 to 2048 [ 240.334528][ T8502] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1006: Failed to acquire dquot type 1 [ 240.386341][ T8509] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #4: comm syz.4.1006: corrupted inode contents [ 240.417657][ T8511] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 240.436270][ T8511] ext4 filesystem being mounted at /221/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 240.454884][ T8509] EXT4-fs error (device loop4): ext4_dirty_inode:6106: inode #4: comm syz.4.1006: mark_inode_dirty error [ 240.477569][ T8511] EXT4-fs error (device loop2): ext4_free_inode:356: comm syz.2.1008: bit already cleared for inode 15 [ 240.500520][ T8509] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #4: comm syz.4.1006: corrupted inode contents [ 240.520011][ T8509] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #4: comm syz.4.1006: mark_inode_dirty error [ 240.571848][ T8509] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1006: Failed to acquire dquot type 1 [ 240.667935][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 240.768487][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.227201][ T28] kauditd_printk_skb: 58 callbacks suppressed [ 241.227218][ T28] audit: type=1326 audit(1757195439.567:2109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8519 comm="syz.4.1010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 242.183027][ T8525] loop2: detected capacity change from 0 to 512 [ 242.244050][ T28] audit: type=1326 audit(1757195439.887:2110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8519 comm="syz.4.1010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 242.280036][ T8525] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 242.389992][ T8525] EXT4-fs (loop2): 1 truncate cleaned up [ 242.398281][ T8525] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 242.399282][ T28] audit: type=1326 audit(1757195439.887:2111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8519 comm="syz.4.1010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 242.434679][ T28] audit: type=1326 audit(1757195439.887:2112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8519 comm="syz.4.1010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 242.457422][ T28] audit: type=1326 audit(1757195440.697:2113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 242.487761][ T28] audit: type=1326 audit(1757195440.697:2114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 242.513394][ T28] audit: type=1326 audit(1757195440.757:2115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 242.584916][ T28] audit: type=1326 audit(1757195440.757:2116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 242.689445][ T28] audit: type=1326 audit(1757195440.757:2117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 242.751944][ T28] audit: type=1326 audit(1757195440.777:2118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 242.790163][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.197094][ T8550] loop4: detected capacity change from 0 to 512 [ 243.215598][ T8550] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1021: casefold flag without casefold feature [ 243.238312][ T8550] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1021: couldn't read orphan inode 15 (err -117) [ 243.266988][ T8550] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 243.839520][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.907154][ T8569] netlink: 'syz.3.1026': attribute type 4 has an invalid length. [ 244.020981][ T8570] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1027'. [ 244.098194][ T8566] netlink: 'syz.3.1026': attribute type 4 has an invalid length. [ 244.478620][ T8584] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 244.478620][ T8584] program syz.4.1032 not setting count and/or reply_len properly [ 244.883066][ T8601] loop2: detected capacity change from 0 to 1024 [ 244.907493][ T8601] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 245.342160][ T8601] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4031: comm syz.2.1040: Allocating blocks 497-513 which overlap fs metadata [ 245.377412][ T8600] EXT4-fs (loop2): pa ffff88805c8d63a0: logic 32, phys. 161, len 22 [ 245.385736][ T8600] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 1 [ 245.497708][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 246.187185][ T8622] lo speed is unknown, defaulting to 1000 [ 247.977533][ T28] kauditd_printk_skb: 47 callbacks suppressed [ 247.977549][ T28] audit: type=1326 audit(1757195702.317:2166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8634 comm="syz.0.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 248.060619][ T28] audit: type=1326 audit(1757195702.367:2167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8634 comm="syz.0.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=8 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 248.081338][ T8637] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1052'. [ 248.102746][ T8637] bridge_slave_1: left allmulticast mode [ 248.116485][ T8637] bridge_slave_1: left promiscuous mode [ 248.139473][ T8637] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.160237][ T28] audit: type=1326 audit(1757195702.367:2168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8634 comm="syz.0.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 248.204109][ T8637] bridge_slave_0: left allmulticast mode [ 248.229972][ T8637] bridge_slave_0: left promiscuous mode [ 248.260695][ T8637] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.363280][ T8642] loop2: detected capacity change from 0 to 512 [ 248.420371][ T5792] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 248.508440][ T8646] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1055'. [ 252.286605][ T8681] loop4: detected capacity change from 0 to 4096 [ 252.320540][ T8686] netlink: 'syz.3.1064': attribute type 13 has an invalid length. [ 252.356126][ T8681] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 252.391819][ T8686] gretap0: refused to change device tx_queue_len [ 252.413238][ T8686] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 252.452375][ T8681] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 252.546910][ T8697] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1068'. [ 252.654243][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 253.346539][ T8716] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1072'. [ 253.392779][ T8716] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1072'. [ 253.535512][ T8720] program syz.0.1073 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 253.557250][ T8720] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 253.880828][ T8728] syz.0.1076[8728] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 253.880981][ T8728] syz.0.1076[8728] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 254.188625][ T8731] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1077'. [ 254.508940][ T8744] loop3: detected capacity change from 0 to 512 [ 254.558887][ T8744] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1082: iget: bad i_size value: 38620345925642 [ 254.585382][ T8747] can0: slcan on ttyS3. [ 254.645807][ T8744] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1082: couldn't read orphan inode 15 (err -117) [ 254.725256][ T8744] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 254.773026][ T8747] can0 (unregistered): slcan off ttyS3. [ 254.807055][ T28] audit: type=1326 audit(1757195709.137:2169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8757 comm="syz.4.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 254.881670][ T28] audit: type=1326 audit(1757195709.137:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8757 comm="syz.4.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 254.933303][ T8762] EXT4-fs error (device loop3): ext4_validate_block_bitmap:430: comm syz.3.1082: bg 0: block 5: invalid block bitmap [ 254.997317][ T28] audit: type=1326 audit(1757195709.137:2171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8757 comm="syz.4.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 255.036064][ T8762] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 152 with error 28 [ 255.037523][ T8767] loop4: detected capacity change from 0 to 1024 [ 255.058975][ T8767] ext4: Unknown parameter 'appraise' [ 255.070831][ T28] audit: type=1326 audit(1757195709.137:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8757 comm="syz.4.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 255.095692][ T8762] EXT4-fs (loop3): This should not happen!! Data will be lost [ 255.095692][ T8762] [ 255.321403][ T8762] EXT4-fs (loop3): Total free blocks count 0 [ 255.441353][ T8762] EXT4-fs (loop3): Free/Dirty block details [ 255.577357][ T8762] EXT4-fs (loop3): free_blocks=0 [ 255.618573][ T8762] EXT4-fs (loop3): dirty_blocks=152 [ 255.728484][ T8767] loop4: detected capacity change from 0 to 512 [ 255.781168][ T8762] EXT4-fs (loop3): Block reservation details [ 255.882599][ T8762] EXT4-fs (loop3): i_reserved_data_blocks=152 [ 256.200330][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.213149][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 258.314529][ T8780] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1090'. [ 259.030150][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.055571][ T8767] EXT4-fs (loop4): 1 orphan inode deleted [ 259.063113][ T8767] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 259.101967][ T8767] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 259.142079][ T3512] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 259.152099][ T3512] EXT4-fs error (device loop4): ext4_release_dquot:6976: comm kworker/u4:14: Failed to release dquot type 1 [ 259.246947][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.602149][ T8795] loop2: detected capacity change from 0 to 512 [ 259.699020][ T8795] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 259.784268][ T8795] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 259.825340][ T8795] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 259.840079][ T8795] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.1094: Failed to acquire dquot type 1 [ 259.905439][ T8795] EXT4-fs (loop2): 1 truncate cleaned up [ 259.914125][ T8795] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 259.929257][ T8795] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.353206][ T8812] lo speed is unknown, defaulting to 1000 [ 260.359493][ T8812] lo speed is unknown, defaulting to 1000 [ 260.422857][ T8812] lo speed is unknown, defaulting to 1000 [ 260.489700][ T8812] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 260.508445][ T8820] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1099'. [ 260.508742][ T8820] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1099'. [ 260.692329][ T8812] lo speed is unknown, defaulting to 1000 [ 260.693879][ T8812] lo speed is unknown, defaulting to 1000 [ 260.695425][ T8812] lo speed is unknown, defaulting to 1000 [ 260.696939][ T8812] lo speed is unknown, defaulting to 1000 [ 260.738926][ T8821] loop3: detected capacity change from 0 to 2048 [ 260.796159][ T8812] lo speed is unknown, defaulting to 1000 [ 260.814355][ T8821] loop3: p1 p3 p4 [ 260.901568][ T8829] netlink: 'syz.2.1100': attribute type 1 has an invalid length. [ 260.901634][ T8829] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1100'. [ 261.156714][ T8821] loop3: p4 size 589824 extends beyond EOD, truncated [ 263.143058][ T8857] loop2: detected capacity change from 0 to 4096 [ 263.146840][ T8855] loop3: detected capacity change from 0 to 8192 [ 263.196842][ T8857] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 263.232031][ T28] audit: type=1326 audit(1757195717.577:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 263.275229][ T28] audit: type=1326 audit(1757195717.577:2174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 263.297870][ T28] audit: type=1326 audit(1757195717.577:2175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 263.300995][ T8857] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 263.374076][ T28] audit: type=1326 audit(1757195717.577:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 263.475733][ T28] audit: type=1326 audit(1757195717.577:2177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 263.549422][ T28] audit: type=1326 audit(1757195717.577:2178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 263.572934][ T28] audit: type=1326 audit(1757195717.577:2179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 263.604661][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 263.626399][ T28] audit: type=1326 audit(1757195717.577:2180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 263.670044][ T28] audit: type=1326 audit(1757195717.577:2181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 263.708766][ T8855] bond1 (unregistering): Released all slaves [ 267.270595][ T8884] loop3: detected capacity change from 0 to 512 [ 267.322237][ T8884] EXT4-fs: Ignoring removed mblk_io_submit option [ 267.805826][ T8884] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 267.890332][ T8887] loop2: detected capacity change from 0 to 512 [ 268.384959][ T28] kauditd_printk_skb: 16 callbacks suppressed [ 268.384978][ T28] audit: type=1326 audit(1757195722.377:2198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.4.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 268.530602][ T28] audit: type=1326 audit(1757195722.377:2199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.4.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 268.607922][ T28] audit: type=1326 audit(1757195722.387:2200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.4.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 268.701406][ T28] audit: type=1326 audit(1757195722.387:2201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.4.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 268.834503][ T28] audit: type=1326 audit(1757195722.397:2202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.4.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 268.857766][ T28] audit: type=1326 audit(1757195722.397:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.4.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 268.881221][ T28] audit: type=1326 audit(1757195722.397:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.4.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 268.903665][ T28] audit: type=1326 audit(1757195722.397:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.4.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 268.938592][ T28] audit: type=1326 audit(1757195722.397:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.4.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 268.961471][ T28] audit: type=1326 audit(1757195722.397:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.4.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 269.004852][ T8884] EXT4-fs (loop3): 1 truncate cleaned up [ 269.010855][ T8887] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1116: casefold flag without casefold feature [ 269.025103][ T8884] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 269.142418][ T8889] loop4: detected capacity change from 0 to 8192 [ 269.183253][ T8887] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1116: couldn't read orphan inode 15 (err -117) [ 269.276743][ T8887] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 269.304894][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 269.594103][ T8901] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1117'. [ 269.853004][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 270.007691][ T8905] loop3: detected capacity change from 0 to 512 [ 270.125280][ T8905] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 271.052037][ T8924] loop2: detected capacity change from 0 to 8192 [ 271.194696][ T8935] siw: device registration error -23 [ 272.057706][ T8933] loop3: detected capacity change from 0 to 512 [ 272.156916][ T8933] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1128: casefold flag without casefold feature [ 272.240493][ T8933] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1128: couldn't read orphan inode 15 (err -117) [ 272.318541][ T8933] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 272.614951][ T8947] syz.2.1131[8947] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 272.615092][ T8947] syz.2.1131[8947] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 272.720469][ T8947] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1131'. [ 272.804308][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.313887][ T8959] : (slave bond_slave_0): Releasing backup interface [ 273.564250][ T8962] loop4: detected capacity change from 0 to 512 [ 273.578554][ T8959] : (slave bond_slave_1): Releasing backup interface [ 273.587820][ T8962] EXT4-fs: Ignoring removed nobh option [ 273.750237][ T8962] ext4: Unknown parameter 'fscontext' [ 273.919053][ T8959] team0: Failed to send options change via netlink (err -105) [ 273.960359][ T8959] team0: Failed to send port change of device team_slave_0 via netlink (err -105) [ 273.986776][ T8959] team0: Port device team_slave_0 removed [ 274.064732][ T8959] team0: Failed to send options change via netlink (err -105) [ 274.101745][ T8959] team0: Failed to send port change of device team_slave_1 via netlink (err -105) [ 274.128829][ T8959] team0: Port device team_slave_1 removed [ 274.144902][ T8959] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 274.159215][ T8959] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 274.183598][ T8959] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 274.193033][ T8959] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 274.303321][ T8963] team0: Mode changed to "activebackup" [ 274.594425][ T8971] loop2: detected capacity change from 0 to 2048 [ 274.652452][ T8971] loop2: p1 p3 p4 [ 274.667880][ T8971] loop2: p4 size 589824 extends beyond EOD, truncated [ 275.005507][ T5802] udevd[5802]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 275.016069][ T5792] udevd[5792]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 275.049485][ T5844] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 275.092015][ T5844] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 275.182882][ T5792] udevd[5792]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 275.202505][ T8979] loop4: detected capacity change from 0 to 512 [ 275.356648][ T8983] fido_id[8983]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 275.397401][ T8979] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1141: casefold flag without casefold feature [ 275.427608][ T8989] loop0: detected capacity change from 0 to 128 [ 275.451224][ T8979] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1141: couldn't read orphan inode 15 (err -117) [ 275.540845][ T8979] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 275.620541][ T8989] syz.0.1146: attempt to access beyond end of device [ 275.620541][ T8989] loop0: rw=2049, sector=138, nr_sectors = 2 limit=128 [ 275.777660][ T8996] syz.0.1146: attempt to access beyond end of device [ 275.777660][ T8996] loop0: rw=2049, sector=138, nr_sectors = 2 limit=128 [ 276.050884][ T28] kauditd_printk_skb: 102 callbacks suppressed [ 276.050900][ T28] audit: type=1326 audit(1757195730.397:2310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8975 comm="syz.4.1141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 276.110006][ T28] audit: type=1326 audit(1757195730.437:2311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.2.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2caed8ebe9 code=0x7ffc0000 [ 276.155515][ T28] audit: type=1326 audit(1757195730.437:2312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.2.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f2caed8ebe9 code=0x7ffc0000 [ 276.187271][ T28] audit: type=1326 audit(1757195730.437:2313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.2.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2caed8ebe9 code=0x7ffc0000 [ 276.408090][ T28] audit: type=1326 audit(1757195730.447:2314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8975 comm="syz.4.1141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 276.439952][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 276.493124][ T28] audit: type=1326 audit(1757195730.447:2315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8975 comm="syz.4.1141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 276.516678][ T28] audit: type=1326 audit(1757195730.447:2316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8975 comm="syz.4.1141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 276.539841][ T28] audit: type=1326 audit(1757195730.447:2317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8975 comm="syz.4.1141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 276.562966][ T28] audit: type=1326 audit(1757195730.447:2318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8975 comm="syz.4.1141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 276.585905][ T28] audit: type=1326 audit(1757195730.447:2319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8975 comm="syz.4.1141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 276.724350][ T9008] loop2: detected capacity change from 0 to 1024 [ 276.861783][ T9008] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 276.977866][ T9008] ext4 filesystem being mounted at /266/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 277.185625][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 277.502104][ T9024] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1159'. [ 277.536581][ T9024] loop3: detected capacity change from 0 to 512 [ 277.581446][ T9024] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 277.620043][ T9024] ext4 filesystem being mounted at /291/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 277.680863][ T9024] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #4: comm syz.3.1159: corrupted inode contents [ 277.699508][ T9024] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #4: comm syz.3.1159: mark_inode_dirty error [ 277.726556][ T9024] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #4: comm syz.3.1159: corrupted inode contents [ 277.761032][ T9024] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #4: comm syz.3.1159: mark_inode_dirty error [ 277.782281][ T9024] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1159: Failed to acquire dquot type 1 [ 277.913791][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 277.933278][ T9029] loop4: detected capacity change from 0 to 8192 [ 278.162463][ T9039] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in; [ 278.162463][ T9039] program syz.0.1165 not setting count and/or reply_len properly [ 281.624758][ T9063] loop0: detected capacity change from 0 to 512 [ 281.642354][ T9064] loop4: detected capacity change from 0 to 512 [ 281.725905][ T9064] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1169: casefold flag without casefold feature [ 281.743625][ T9063] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 281.820449][ T9063] ext4 filesystem being mounted at /313/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 281.853881][ T9064] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1169: couldn't read orphan inode 15 (err -117) [ 281.897643][ T9064] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 282.071738][ T9063] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 282.113469][ T9071] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 282.575182][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 283.230659][ T9097] netlink: 'syz.0.1186': attribute type 21 has an invalid length. [ 283.257292][ T9097] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1186'. [ 283.270098][ T9097] netlink: 'syz.0.1186': attribute type 1 has an invalid length. [ 283.378384][ T9101] loop2: detected capacity change from 0 to 512 [ 283.400591][ T9101] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1187: casefold flag without casefold feature [ 283.419752][ T9101] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1187: couldn't read orphan inode 15 (err -117) [ 283.445448][ T9101] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 283.789676][ T9110] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1191'. [ 283.805370][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 284.176879][ T9122] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus [ 284.648221][ T9131] loop3: detected capacity change from 0 to 512 [ 284.674659][ T9133] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1202'. [ 284.687038][ T9131] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1201: casefold flag without casefold feature [ 284.709659][ T9133] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1202'. [ 284.713155][ T9131] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1201: couldn't read orphan inode 15 (err -117) [ 284.771444][ T9131] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 284.843936][ T9136] loop4: detected capacity change from 0 to 512 [ 284.857725][ T9136] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 284.920522][ T9136] __quota_error: 114 callbacks suppressed [ 284.920552][ T9136] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 284.952204][ T9136] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 284.965409][ T9136] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1204: Failed to acquire dquot type 1 [ 284.998645][ T9136] EXT4-fs (loop4): 1 truncate cleaned up [ 285.026057][ T9136] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 285.108733][ T9136] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 285.198672][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 285.238225][ T9145] atomic_op ffff888078288198 conn xmit_atomic 0000000000000000 [ 285.595460][ T9156] loop2: detected capacity change from 0 to 1024 [ 285.612772][ T9156] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 285.636906][ T9156] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 285.653119][ T9156] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 285.667942][ T9156] EXT4-fs error (device loop2): ext4_get_journal_inode:5807: inode #5: comm syz.2.1211: unexpected bad inode w/o EXT4_IGET_BAD [ 285.688263][ T9156] EXT4-fs (loop2): no journal found [ 285.694203][ T9156] EXT4-fs (loop2): can't get journal size [ 285.706533][ T9156] EXT4-fs (loop2): too many log groups per flexible block group [ 285.714841][ T9156] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 285.722208][ T9156] EXT4-fs (loop2): mount failed [ 285.811642][ T5792] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 286.259242][ T28] audit: type=1326 audit(1757195740.597:2432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9173 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 286.312410][ T28] audit: type=1326 audit(1757195740.647:2433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9173 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 286.460726][ T28] audit: type=1326 audit(1757195740.647:2434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9173 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 286.573727][ T28] audit: type=1326 audit(1757195740.647:2435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9173 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 286.596344][ T28] audit: type=1326 audit(1757195740.827:2436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9176 comm="syz.4.1219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 286.628609][ T28] audit: type=1326 audit(1757195740.847:2437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9176 comm="syz.4.1219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 286.674326][ T28] audit: type=1326 audit(1757195740.847:2438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9176 comm="syz.4.1219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 286.726443][ T28] audit: type=1326 audit(1757195740.847:2439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9176 comm="syz.4.1219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 287.270174][ T5922] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 287.282129][ T9226] loop4: detected capacity change from 0 to 512 [ 287.347863][ T9226] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1226: casefold flag without casefold feature [ 287.377447][ T9226] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1226: couldn't read orphan inode 15 (err -117) [ 287.437267][ T9226] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 287.452437][ T5922] usb 4-1: device descriptor read/64, error -71 [ 287.665865][ T9249] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1228'. [ 287.730358][ T5922] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 287.736222][ T5837] IPVS: starting estimator thread 0... [ 287.762504][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 287.840527][ T9252] IPVS: using max 17 ests per chain, 40800 per kthread [ 287.900242][ T5922] usb 4-1: device descriptor read/64, error -71 [ 288.035666][ T5922] usb usb4-port1: attempt power cycle [ 288.341543][ T9268] atomic_op ffff88805b2cf198 conn xmit_atomic 0000000000000000 [ 288.473431][ T5922] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 288.520760][ T5922] usb 4-1: device descriptor read/8, error -71 [ 288.800071][ T5922] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 288.872195][ T5922] usb 4-1: device descriptor read/8, error -71 [ 288.970597][ T9280] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1242'. [ 288.993427][ T5922] usb usb4-port1: unable to enumerate USB device [ 289.236197][ T9290] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4) [ 289.243328][ T9290] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 289.269561][ T9290] vhci_hcd vhci_hcd.0: Device attached [ 289.285129][ T9286] loop2: detected capacity change from 0 to 8192 [ 289.575412][ T9298] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1248'. [ 289.641665][ T5922] usb 41-1: new low-speed USB device number 2 using vhci_hcd [ 289.898098][ T9307] loop2: detected capacity change from 0 to 512 [ 289.907274][ T9307] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 290.051752][ T28] kauditd_printk_skb: 57 callbacks suppressed [ 290.051767][ T28] audit: type=1326 audit(1757195744.397:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9289 comm="syz.4.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 290.090282][ T9291] vhci_hcd: connection reset by peer [ 290.098996][ T9218] vhci_hcd: stop threads [ 290.114437][ T9218] vhci_hcd: release socket [ 290.144737][ T9218] vhci_hcd: disconnect device [ 290.145848][ T28] audit: type=1326 audit(1757195744.397:2498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9289 comm="syz.4.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 290.222531][ T9311] loop2: detected capacity change from 0 to 128 [ 290.433744][ T9317] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1257'. [ 290.664928][ T28] audit: type=1326 audit(1757195745.007:2499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9320 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 290.708247][ T28] audit: type=1326 audit(1757195745.007:2500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9320 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 290.770137][ T28] audit: type=1326 audit(1757195745.007:2501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9320 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 290.828335][ T28] audit: type=1326 audit(1757195745.007:2502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9320 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 290.896638][ T28] audit: type=1326 audit(1757195745.007:2503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9320 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 290.919436][ T28] audit: type=1326 audit(1757195745.027:2504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9320 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 290.959353][ T28] audit: type=1326 audit(1757195745.027:2505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9320 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 291.044666][ T28] audit: type=1326 audit(1757195745.027:2506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9320 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f582258ebe9 code=0x7ffc0000 [ 291.253315][ T9339] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1267'. [ 291.618976][ T9349] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1270'. [ 292.006371][ T9359] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1275'. [ 292.048628][ T9359] erspan0: entered promiscuous mode [ 292.080983][ T9359] macsec1: entered promiscuous mode [ 292.088649][ T9359] macsec1: entered allmulticast mode [ 292.109125][ T9359] erspan0: entered allmulticast mode [ 292.141163][ T9359] erspan0: left allmulticast mode [ 292.146544][ T9359] erspan0: left promiscuous mode [ 292.262707][ T9363] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1277'. [ 292.461768][ T9373] loop2: detected capacity change from 0 to 512 [ 292.532882][ T9373] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 292.551785][ T9372] loop4: detected capacity change from 0 to 512 [ 292.624047][ T9373] ext4 filesystem being mounted at /305/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 292.666414][ T9372] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1280: casefold flag without casefold feature [ 292.687891][ T9372] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1280: couldn't read orphan inode 15 (err -117) [ 292.769497][ T9387] loop3: detected capacity change from 0 to 1024 [ 292.797771][ T9373] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 292.800353][ T9372] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 292.839589][ T9387] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 292.852725][ T9387] ext4 filesystem being mounted at /317/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 292.912132][ T9373] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 293.054202][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 293.247377][ T9395] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1288'. [ 293.441999][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 293.965221][ T9414] loop4: detected capacity change from 0 to 1024 [ 294.019951][ T9414] EXT4-fs: Ignoring removed nomblk_io_submit option [ 294.097177][ T9414] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 294.287865][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 294.501052][ T9426] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1300'. [ 294.781507][ T5922] vhci_hcd: vhci_device speed not set [ 295.182124][ T9438] loop3: detected capacity change from 0 to 1024 [ 295.255793][ T9438] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 295.364153][ T9438] ext4 filesystem being mounted at /324/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 295.456905][ T28] kauditd_printk_skb: 26 callbacks suppressed [ 295.456921][ T28] audit: type=1800 audit(1757195749.797:2533): pid=9438 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1306" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 295.642301][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 296.135387][ T9451] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1311'. [ 296.158586][ T9453] syz.4.1312[9453] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 296.158807][ T9453] syz.4.1312[9453] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 296.348450][ T28] audit: type=1326 audit(1757195750.687:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9456 comm="syz.3.1314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 296.391362][ T28] audit: type=1326 audit(1757195750.687:2535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9456 comm="syz.3.1314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 296.414244][ T28] audit: type=1326 audit(1757195750.687:2536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9456 comm="syz.3.1314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=161 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 296.443364][ T28] audit: type=1326 audit(1757195750.687:2537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9456 comm="syz.3.1314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 296.589605][ T28] audit: type=1326 audit(1757195750.927:2538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9460 comm="syz.3.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 296.626643][ T28] audit: type=1326 audit(1757195750.927:2539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9460 comm="syz.3.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 296.676558][ T28] audit: type=1326 audit(1757195750.927:2540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9460 comm="syz.3.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 296.711371][ T28] audit: type=1326 audit(1757195750.927:2541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9460 comm="syz.3.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 296.748016][ T28] audit: type=1326 audit(1757195750.927:2542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9460 comm="syz.3.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 296.985909][ T9474] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1322'. [ 297.582175][ T9495] loop3: detected capacity change from 0 to 1024 [ 297.585718][ T9497] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1333'. [ 297.644067][ T9495] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 297.703494][ T9495] ext4 filesystem being mounted at /329/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 297.805859][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 297.995709][ T9510] loop3: detected capacity change from 0 to 1024 [ 298.030852][ T9510] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 298.067006][ T9510] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 298.191710][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 298.224229][ T9521] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1343'. [ 298.399452][ T9525] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1342'. [ 298.409564][ T9525] netem: change failed [ 298.819487][ T9537] random: crng reseeded on system resumption [ 300.014134][ T9545] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1353'. [ 300.108979][ T9549] netlink: 272 bytes leftover after parsing attributes in process `syz.2.1355'. [ 300.216781][ T9551] loop3: detected capacity change from 0 to 1024 [ 300.335765][ T9551] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 300.364092][ T9551] ext4 filesystem being mounted at /335/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 300.418528][ T9554] syzkaller0: entered allmulticast mode [ 300.430525][ T9554] syzkaller0: entered promiscuous mode [ 300.443942][ T9554] syzkaller0: left promiscuous mode [ 300.460406][ T9554] syzkaller0: left allmulticast mode [ 300.549089][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 300.771808][ T9565] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1360'. [ 301.053884][ T9571] loop3: detected capacity change from 0 to 512 [ 301.104243][ T28] kauditd_printk_skb: 57 callbacks suppressed [ 301.104261][ T28] audit: type=1107 audit(1757195755.447:2600): pid=9572 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 301.158777][ T9571] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 301.208074][ T9571] ext4 filesystem being mounted at /338/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 301.223096][ T9571] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 301.934672][ T28] audit: type=1326 audit(1757195756.277:2601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.4.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 301.966844][ T28] audit: type=1326 audit(1757195756.277:2602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.4.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 302.060012][ T28] audit: type=1326 audit(1757195756.307:2603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.4.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 302.095630][ T28] audit: type=1326 audit(1757195756.307:2604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.4.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 302.125399][ T28] audit: type=1326 audit(1757195756.307:2605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.4.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52d18ebe9 code=0x7ffc0000 [ 302.299946][ T5830] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 302.392969][ T28] audit: type=1107 audit(1757195756.737:2606): pid=9599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 302.460784][ T5830] usb 4-1: device descriptor read/64, error -71 [ 302.730176][ T5830] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 302.879911][ T5830] usb 4-1: device descriptor read/64, error -71 [ 303.021904][ T5830] usb usb4-port1: attempt power cycle [ 303.480067][ T5830] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 303.509957][ T28] audit: type=1326 audit(1757195757.847:2607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9622 comm="syz.4.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb52d185ba7 code=0x7ffc0000 [ 303.542311][ T5830] usb 4-1: device descriptor read/8, error -71 [ 303.590278][ T28] audit: type=1326 audit(1757195757.847:2608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9622 comm="syz.4.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb52d12adb9 code=0x7ffc0000 [ 303.654631][ T28] audit: type=1326 audit(1757195757.857:2609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9622 comm="syz.4.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb52d185ba7 code=0x7ffc0000 [ 305.014525][ T9669] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 305.026692][ T9670] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1401'. [ 305.532438][ T9685] loop4: detected capacity change from 0 to 2048 [ 305.558609][ T9685] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 305.637469][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 305.979161][ T9703] loop3: detected capacity change from 0 to 1024 [ 306.004054][ T9703] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 306.081524][ T9698] EXT4-fs error (device loop3): mb_free_blocks:1938: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt. [ 306.110151][ T28] kauditd_printk_skb: 99 callbacks suppressed [ 306.110167][ T28] audit: type=1326 audit(1757195760.447:2709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.3.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f580dd8ebe9 code=0x7ffc0000 [ 306.138741][ C0] vkms_vblank_simulate: vblank timer overrun [ 306.213137][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 306.297795][ T9717] [ 306.301093][ T9717] ============================= [ 306.306317][ T9717] WARNING: suspicious RCU usage [ 306.311611][ T9717] syzkaller #0 Not tainted [ 306.316060][ T9717] ----------------------------- [ 306.321427][ T9717] kernel/events/callchain.c:161 suspicious rcu_dereference_check() usage! [ 306.330314][ T9717] [ 306.330314][ T9717] other info that might help us debug this: [ 306.330314][ T9717] [ 306.340946][ T9717] [ 306.340946][ T9717] rcu_scheduler_active = 2, debug_locks = 1 [ 306.349148][ T9717] 1 lock held by syz.2.1422/9717: [ 306.354316][ T9717] #0: ffffffff8cd2fdc0 (rcu_read_lock_trace){....}-{0:0}, at: rcu_read_lock_trace+0x37/0x70 [ 306.364820][ T9717] [ 306.364820][ T9717] stack backtrace: [ 306.370871][ T9717] CPU: 0 PID: 9717 Comm: syz.2.1422 Not tainted syzkaller #0 [ 306.378294][ T9717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 306.388408][ T9717] Call Trace: [ 306.391742][ T9717] [ 306.394808][ T9717] dump_stack_lvl+0x16c/0x230 [ 306.399552][ T9717] ? show_regs_print_info+0x20/0x20 [ 306.404804][ T9717] ? load_image+0x3b0/0x3b0 [ 306.409373][ T9717] lockdep_rcu_suspicious+0x1e1/0x300 [ 306.414804][ T9717] get_callchain_entry+0x2a9/0x3c0 [ 306.419945][ T9717] get_perf_callchain+0xa3/0x4b0 [ 306.424910][ T9717] ? put_callchain_entry+0xb0/0xb0 [ 306.430047][ T9717] ? plist_add+0x3d8/0x490 [ 306.434500][ T9717] __bpf_get_stack+0x2d7/0x510 [ 306.439294][ T9717] ? stack_map_get_build_id_offset+0x720/0x720 [ 306.445488][ T9717] ? __cant_sleep+0x210/0x210 [ 306.450190][ T9717] ? bpf_prog_d43750871481577d+0x45/0x49 [ 306.455858][ T9717] bpf_get_stack_raw_tp+0x1a9/0x210 [ 306.461078][ T9717] bpf_prog_d43750871481577d+0x45/0x49 [ 306.466555][ T9717] bpf_prog_run_pin_on_cpu+0x63/0x140 [ 306.472041][ T9717] bpf_prog_test_run_syscall+0x311/0x490 [ 306.477715][ T9717] ? sock_gen_cookie+0x60/0x60 [ 306.482513][ T9717] ? sock_gen_cookie+0x60/0x60 [ 306.487305][ T9717] bpf_prog_test_run+0x321/0x390 [ 306.492269][ T9717] __sys_bpf+0x440/0x800 [ 306.496529][ T9717] ? bpf_link_show_fdinfo+0x350/0x350 [ 306.501925][ T9717] ? lock_chain_count+0x20/0x20 [ 306.506862][ T9717] __x64_sys_bpf+0x7c/0x90 [ 306.511300][ T9717] do_syscall_64+0x55/0xb0 [ 306.515737][ T9717] ? clear_bhb_loop+0x40/0x90 [ 306.520428][ T9717] ? clear_bhb_loop+0x40/0x90 [ 306.525135][ T9717] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 306.531063][ T9717] RIP: 0033:0x7f2caed8ebe9 [ 306.535500][ T9717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 306.555132][ T9717] RSP: 002b:00007f2cacff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 306.563571][ T9717] RAX: ffffffffffffffda RBX: 00007f2caefc5fa0 RCX: 00007f2caed8ebe9 [ 306.571586][ T9717] RDX: 0000000000000010 RSI: 0000200000000740 RDI: 000000000000000a [ 306.579568][ T9717] RBP: 00007f2caee11e19 R08: 0000000000000000 R09: 0000000000000000 [ 306.587551][ T9717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 306.595535][ T9717] R13: 00007f2caefc6038 R14: 00007f2caefc5fa0 R15: 00007ffc3d513498 [ 306.603537][ T9717] [ 306.606621][ C0] vkms_vblank_simulate: vblank timer overrun