last executing test programs: 5.837055695s ago: executing program 4 (id=484): write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe8000000000"], 0xfdef) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x1300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 5.243160613s ago: executing program 0 (id=487): bpf$MAP_CREATE(0x0, 0x0, 0x48) sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x0) listen(0xffffffffffffffff, 0x101) r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$inet(0xffffffffffffffff, 0x0, 0x880) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000d00)=ANY=[], 0x3ce0}, 0x1, 0x0, 0x0, 0x4024011}, 0x40084) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x800700, &(0x7f0000000880)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@usrjquota}, {@user_xattr}, {@usrjquota}, {@sb={'sb', 0x3d, 0x3}}, {@norecovery}, {@usrjquota}, {@init_itable}, {@quota}, {@data_writeback}]}, 0x3, 0x467, &(0x7f0000002280)="$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") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) set_mempolicy(0x3, &(0x7f0000000000)=0x5, 0x6) syz_clone(0x240c7013, 0x0, 0x0, 0x0, 0x0, 0x0) 4.889972198s ago: executing program 4 (id=489): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) bind$packet(r2, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14) close_range(r1, 0xffffffffffffffff, 0x0) 4.797643645s ago: executing program 2 (id=490): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]}) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) kexec_load(0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0xbfffd000, 0x800000}], 0x0) 4.132585424s ago: executing program 1 (id=492): openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x0) io_setup(0x8, &(0x7f0000004200)=0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') io_submit(r0, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}]) 4.086761899s ago: executing program 4 (id=493): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r2}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast}) 4.049179173s ago: executing program 2 (id=494): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f0000"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000), 0xfea7) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) mq_open(&(0x7f00000007c0)='\r\x00elinu\xef\xe3elinux\x00\x86\xf6\x92\n#*\xac\x02\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a|\x9en\xbd\xeb\x14\x7f\xb9\x83\xfe\nf\xc26\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]G\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8S\\\xec\xa31_\v\x8a\xf2\x18\xa6\xb1\xbb\x8b9\x1e\xff\xf8\xcdX\xf7h\b\xaf\x01\x84\xd4\x06Ml(Bw=\x13\xa1&\xd3\xec\xa9\x8ba\x86\x9d\xf4\x11\n\x89z\xa5\xac\xcbh\xc2\x1b\xeay\xbf\x06\x80\xff\xdf\x93\xef\x7f\xb1\xaf\xa0\xae', 0x6e93ebbbcc0884f2, 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x8010, r0, 0x0) 3.854313032s ago: executing program 0 (id=495): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) chdir(&(0x7f0000000100)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) open_by_handle_at(r0, &(0x7f00000005c0)=ANY=[@ANYBLOB="080000000100000008"], 0xffa1) 3.384078269s ago: executing program 2 (id=496): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = add_key$keyring(&(0x7f0000000100), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) request_key(&(0x7f0000000340)='keyring\x00', &(0x7f0000000380)={'syz', 0x3}, 0x0, r2) 3.09527193s ago: executing program 1 (id=497): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = epoll_create1(0x0) r1 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0) timer_settime(0x0, 0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18) r2 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000f1ff000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) vmsplice(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0) fcntl$setpipe(r5, 0x407, 0x5) r6 = socket$kcm(0x29, 0x216659431b87ae49, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg(r6, 0x0, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0) sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) setsockopt$inet6_IPV6_RTHDR(r2, 0x29, 0x39, 0x0, 0x0) r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) syz_open_pts(r7, 0x4a701) unshare(0xc040400) r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={r8, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, 0x8, 0x0, 0x0}}, 0x10) 3.094577349s ago: executing program 4 (id=498): r0 = socket$inet_sctp(0x2, 0x5, 0x84) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) sendto$inet(r0, &(0x7f0000000300)="ab", 0x1, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10) sendmsg$inet_sctp(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)="52ac", 0x2}], 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB="20000000000000008400000002000000000041000000080000000000", @ANYRES32=0x0, @ANYBLOB=' '], 0x40}, 0x0) 2.840889098s ago: executing program 2 (id=499): write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b0000000000"], 0xfdef) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x1300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 2.740954816s ago: executing program 0 (id=500): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0}) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) io_getevents(0x0, 0x1, 0x1, &(0x7f0000004600)=[{}], 0x0) 2.668401609s ago: executing program 3 (id=501): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x73) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = socket(0x10, 0x3, 0x9) connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, &(0x7f0000000180)={&(0x7f0000000b00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [], {0x14}}, 0x28}}, 0x0) 1.999032861s ago: executing program 4 (id=502): mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0) set_mempolicy_home_node(&(0x7f0000fff000/0x1000)=nil, 0x103f, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000f87af148a04a7f947beccd5e51f5a19ee3746d2ec815724655f60a9502462e213fe19fe437391e653fe4d14110d62114d89f6b5282b6844062280b3e99327b3fd2e6590554f3f3e3670c7571dd49402c35615b665c6d475c2e79a1d589eca00b7171488160cd8d8ecf968189407d6eb9b455ad33fe61411155610f8d791f9ffc58dc7085e106627286f0b582405df9a1a3594a41d0064473d742fd51ece81bfd2468207d2c582abaef67c5a2a9fa5810dd6202ac2b0c395fdf878a835f82d01aee8fef2d4998ce00000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x1, 0x357, &(0x7f0000000180)="$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") r1 = creat(&(0x7f0000000280)='./bus\x00', 0x2) pwritev2(r1, &(0x7f00000015c0)=[{&(0x7f0000000080)="ec", 0x1}], 0x1, 0xfffff, 0x0, 0x0) r2 = open(&(0x7f0000000200)='./bus\x00', 0x44000, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) dup3(r2, r1, 0x0) finit_module(r2, 0x0, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000000), 0x4) sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0x18, 0x30, 0xffff, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x80) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={{0x14}, [@NFT_MSG_DELRULE={0x28, 0x8, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x2}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}]}], {0x14}}, 0x50}}, 0x0) 1.988435775s ago: executing program 1 (id=503): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) bind$packet(r2, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14) close_range(r1, 0xffffffffffffffff, 0x0) 1.8158222s ago: executing program 0 (id=504): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]}) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) kexec_load(0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0xbfffd000, 0x800000}], 0x0) 1.762797842s ago: executing program 3 (id=505): bpf$MAP_CREATE(0x0, 0x0, 0x48) sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x0) listen(0xffffffffffffffff, 0x101) r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x880) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000d00)=ANY=[], 0x3ce0}, 0x1, 0x0, 0x0, 0x4024011}, 0x40084) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x800700, &(0x7f0000000880)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@usrjquota}, {@user_xattr}, {@usrjquota}, {@sb={'sb', 0x3d, 0x3}}, {@norecovery}, {@usrjquota}, {@init_itable}, {@quota}, {@data_writeback}]}, 0x3, 0x467, &(0x7f0000002280)="$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") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) set_mempolicy(0x3, &(0x7f0000000000)=0x5, 0x6) syz_clone(0x240c7013, 0x0, 0x0, 0x0, 0x0, 0x0) 1.378561573s ago: executing program 3 (id=506): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f0000"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000), 0xfea7) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) mq_open(&(0x7f00000007c0)='\r\x00elinu\xef\xe3elinux\x00\x86\xf6\x92\n#*\xac\x02\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a|\x9en\xbd\xeb\x14\x7f\xb9\x83\xfe\nf\xc26\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]G\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8S\\\xec\xa31_\v\x8a\xf2\x18\xa6\xb1\xbb\x8b9\x1e\xff\xf8\xcdX\xf7h\b\xaf\x01\x84\xd4\x06Ml(Bw=\x13\xa1&\xd3\xec\xa9\x8ba\x86\x9d\xf4\x11\n\x89z\xa5\xac\xcbh\xc2\x1b\xeay\xbf\x06\x80\xff\xdf\x93\xef\x7f\xb1\xaf\xa0\xae', 0x6e93ebbbcc0884f2, 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x8010, r0, 0x0) 1.228181907s ago: executing program 2 (id=507): syz_open_dev$usbfs(0x0, 0x205, 0x8401) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) getegid() bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='sched_switch\x00', r1}, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x802) socket$nl_generic(0x10, 0x3, 0x10) clock_getres(0x3, &(0x7f0000000200)) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket(0x10, 0x3, 0x0) write(r3, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000003c0000000000000008000f0001000000", 0x24) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1d, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000040)={{0x2, 0xfffe, @broadcast}, {}, 0x0, {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'ip6gre0\x00'}) 1.039078602s ago: executing program 1 (id=508): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0) 972.425583ms ago: executing program 3 (id=509): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000003c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) mount$9p_tcp(0x0, &(0x7f0000000300)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000004c0), 0x8, &(0x7f0000000700)=ANY=[@ANYBLOB='trans=tcp']) 750.085245ms ago: executing program 0 (id=510): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) chdir(&(0x7f0000000100)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) open_by_handle_at(r0, &(0x7f00000005c0)=ANY=[@ANYBLOB="080000000100000008"], 0xffa1) 732.955157ms ago: executing program 1 (id=511): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) r1 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x0) symlinkat(&(0x7f0000000000)='.\x00', r2, &(0x7f0000000140)='./file0\x00') 437.49405ms ago: executing program 1 (id=512): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = dup2(r0, r0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) faccessat2(r1, &(0x7f0000000880)='\x00', 0x1, 0x1100) 342.552451ms ago: executing program 2 (id=513): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = epoll_create1(0x0) r1 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0) timer_settime(0x0, 0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18) r2 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000f1ff000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) vmsplice(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0) fcntl$setpipe(r5, 0x407, 0x5) r6 = socket$kcm(0x29, 0x216659431b87ae49, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg(r6, 0x0, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0) sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) setsockopt$inet6_IPV6_RTHDR(r2, 0x29, 0x39, 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "ff00f7000000000000000000af88008300"}) syz_open_pts(0xffffffffffffffff, 0x4a701) unshare(0xc040400) r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={r7, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, 0x8, 0x0, 0x0}}, 0x10) 256.619545ms ago: executing program 3 (id=514): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0}) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) io_getevents(0x0, 0x1, 0x1, &(0x7f0000004600)=[{}], 0x0) 119.852584ms ago: executing program 0 (id=515): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000f40)=ANY=[@ANYBLOB="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", @ANYRES8], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x16, 0x0, 0xffffffffffffffff, 0xffffffffffffffc9, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000100)="05ff03076844268cb89e14f08848fe", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 74.612939ms ago: executing program 4 (id=516): bpf$MAP_CREATE(0x0, 0x0, 0x48) sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x0) listen(0xffffffffffffffff, 0x101) r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x880) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000d00)=ANY=[], 0x3ce0}, 0x1, 0x0, 0x0, 0x4024011}, 0x40084) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x800700, &(0x7f0000000880)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@usrjquota}, {@user_xattr}, {@usrjquota}, {@sb={'sb', 0x3d, 0x3}}, {@norecovery}, {@usrjquota}, {@init_itable}, {@quota}, {@data_writeback}]}, 0x3, 0x467, &(0x7f0000002280)="$eJzs3M9rHFUcAPDvzCb93SbWKrRWjRYx+CNp0qo9eFEUPFQU9FCPcZOW0m0jTQRbio0i9SJIQc/iUfAv8OZF1JPgVe9SKBqEVk+R2Z1JN9vdZNNsdmv384Fp39t5M/O+O+/tvJm3mwD61kj2TxKxKyJ+i4ihWnZlgZHafzcXL5X/WbxUTmJp6a0/k2q5G4uXykXRYrudeWY0jUg/SfKDxNb63c5duHhmqlKZOZ/nx+fPvjc+d+His6fPTp2aOTVzbvLYsaNHJl54fvK5tuJI1lifxXXjwIezB/e/9s7V18snrr7707fZNrvy9fVxdMpIFvhfS1WN657o9MF6bHddOhnoYUVYl1JEZKdrsNr/h6IUt07eULz6cU8rB2yq7Nq0tfXqhSXgHpbE2mX+7kZFgC4rLvTZ/W+xdGnocVe4/lLtBiiL+2a+1NYMRJqXGWy4v+2kkYg4sfDvV9kSm/QcAgCg3mflL4/HM83Gf2k8WFduTz6HMhwR90XE3oi4PyL2RcQDEVnZxiFlW0Ya8rePf9JrdxhaW7Lx34v53NbK8V8x+ovhUp7bXY1/MDl5ujJzOH9PRmNwa5afWOUY37/y6+et1tWP/7IlO34xFszrcW2g4QHd9NT8VHVQ2gHXP4o4MNAs/mR5JiCJiP0RcWB9u95TJE4/9c3B7QebF1o7/lV0YJ5p6euIJ2vnfyEa4i8kq89Pjm+Lyszh8aJV3O7nX6682er4LeLfsvHI2pOd/x0r239jkeGkfr52bv3HuPL7py3vae60/W9J3q6el+KN+mBqfv78RMSW5Hg1v+L1yVvbFvmifBb/6KHm/X9vvk12nIciImvCD0fEIxHxaF73xyLi8Yg4tEr8P76cJ5q01w21/w7I4p9u+vm33P4bzv/6E6UzP3xX7GzbuuPPzv/Ramo0f6X6+beGdiu40fcPAAAA/g/S6nfgk3RsOZ2mY2O17/Dvix1pZXZu/umTs++fm659V344BtPiSddQ3fPQiWQh32MtP5k/Ky7WH8mfG39R2l7Nj5VnK9M9jh363c4W/T/zR6nXtQM2XbN5tMmuTUEBvdTY/9OV2ctvdLMyQFf5vTb0rzX6f9qtegDd5/oP/atZ/7/ckDcXAPcm13/oX/o/9C/9H/qX/g99aSO/65fo50Sklcr0tojVCxd/EOjuqLNE+4lefzIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB0xn8BAAD///xQ9VA=") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) set_mempolicy(0x3, &(0x7f0000000000)=0x5, 0x6) syz_clone(0x240c7013, 0x0, 0x0, 0x0, 0x0, 0x0) 0s ago: executing program 3 (id=517): write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b0000000000"], 0xfdef) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x1300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.8' (ED25519) to the list of known hosts. [ 216.652800][ T5766] cgroup: Unknown subsys name 'net' [ 216.796641][ T5766] cgroup: Unknown subsys name 'cpuset' [ 216.816079][ T5766] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 229.325234][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 229.331996][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 275.168234][ T5766] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 280.666556][ T5786] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 280.671430][ T5791] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 280.683092][ T5791] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 280.695088][ T5786] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 280.695270][ T5791] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 280.712074][ T5791] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 280.724366][ T5791] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 280.745174][ T5795] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 280.755013][ T5795] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 280.765124][ T5795] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 280.765370][ T5792] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 280.778125][ T5795] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 280.787645][ T5792] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 280.790498][ T5795] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 280.799867][ T5792] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 280.813671][ T5792] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 280.815542][ T5795] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 280.824869][ T5792] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 280.836417][ T5795] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 280.839865][ T5792] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 280.846452][ T5795] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 280.862136][ T5792] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 280.865153][ T5795] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 280.875583][ T5792] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 280.880984][ T5795] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 280.896484][ T5795] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 280.898446][ T5792] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 280.908416][ T5795] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 280.914092][ T5083] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 280.947716][ T5792] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 282.388280][ T5794] chnl_net:caif_netlink_parms(): no params data found [ 282.869028][ T5793] chnl_net:caif_netlink_parms(): no params data found [ 282.983085][ T5791] Bluetooth: hci4: command tx timeout [ 282.988804][ T5791] Bluetooth: hci2: command tx timeout [ 282.994896][ T5792] Bluetooth: hci0: command tx timeout [ 282.995024][ T5795] Bluetooth: hci1: command tx timeout [ 283.073078][ T5784] Bluetooth: hci3: command tx timeout [ 283.260683][ T5787] chnl_net:caif_netlink_parms(): no params data found [ 283.282776][ T5782] chnl_net:caif_netlink_parms(): no params data found [ 283.666726][ T5783] chnl_net:caif_netlink_parms(): no params data found [ 283.803921][ T5794] bridge0: port 1(bridge_slave_0) entered blocking state [ 283.812024][ T5794] bridge0: port 1(bridge_slave_0) entered disabled state [ 283.820264][ T5794] bridge_slave_0: entered allmulticast mode [ 283.830090][ T5794] bridge_slave_0: entered promiscuous mode [ 283.939075][ T5794] bridge0: port 2(bridge_slave_1) entered blocking state [ 283.951262][ T5794] bridge0: port 2(bridge_slave_1) entered disabled state [ 283.959437][ T5794] bridge_slave_1: entered allmulticast mode [ 283.969073][ T5794] bridge_slave_1: entered promiscuous mode [ 284.191942][ T5793] bridge0: port 1(bridge_slave_0) entered blocking state [ 284.200385][ T5793] bridge0: port 1(bridge_slave_0) entered disabled state [ 284.208602][ T5793] bridge_slave_0: entered allmulticast mode [ 284.218198][ T5793] bridge_slave_0: entered promiscuous mode [ 284.336534][ T5793] bridge0: port 2(bridge_slave_1) entered blocking state [ 284.344556][ T5793] bridge0: port 2(bridge_slave_1) entered disabled state [ 284.352724][ T5793] bridge_slave_1: entered allmulticast mode [ 284.362351][ T5793] bridge_slave_1: entered promiscuous mode [ 284.391252][ T5794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 284.457537][ T5794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 284.876858][ T5794] team0: Port device team_slave_0 added [ 284.972660][ T5793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 284.982931][ T5782] bridge0: port 1(bridge_slave_0) entered blocking state [ 284.990922][ T5782] bridge0: port 1(bridge_slave_0) entered disabled state [ 284.998939][ T5782] bridge_slave_0: entered allmulticast mode [ 285.008768][ T5782] bridge_slave_0: entered promiscuous mode [ 285.021962][ T5787] bridge0: port 1(bridge_slave_0) entered blocking state [ 285.030147][ T5787] bridge0: port 1(bridge_slave_0) entered disabled state [ 285.038351][ T5787] bridge_slave_0: entered allmulticast mode [ 285.047529][ T5787] bridge_slave_0: entered promiscuous mode [ 285.063494][ T5795] Bluetooth: hci2: command tx timeout [ 285.068907][ T5794] team0: Port device team_slave_1 added [ 285.069197][ T5795] Bluetooth: hci1: command tx timeout [ 285.077745][ T5784] Bluetooth: hci0: command tx timeout [ 285.080572][ T5791] Bluetooth: hci4: command tx timeout [ 285.142685][ T5795] Bluetooth: hci3: command tx timeout [ 285.177930][ T5793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 285.230636][ T5782] bridge0: port 2(bridge_slave_1) entered blocking state [ 285.238840][ T5782] bridge0: port 2(bridge_slave_1) entered disabled state [ 285.247283][ T5782] bridge_slave_1: entered allmulticast mode [ 285.256847][ T5782] bridge_slave_1: entered promiscuous mode [ 285.267895][ T5787] bridge0: port 2(bridge_slave_1) entered blocking state [ 285.275893][ T5787] bridge0: port 2(bridge_slave_1) entered disabled state [ 285.283966][ T5787] bridge_slave_1: entered allmulticast mode [ 285.293524][ T5787] bridge_slave_1: entered promiscuous mode [ 285.341833][ T5783] bridge0: port 1(bridge_slave_0) entered blocking state [ 285.349925][ T5783] bridge0: port 1(bridge_slave_0) entered disabled state [ 285.358199][ T5783] bridge_slave_0: entered allmulticast mode [ 285.368154][ T5783] bridge_slave_0: entered promiscuous mode [ 285.493620][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 285.500792][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 285.530409][ T5794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 285.547940][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 285.555346][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 285.581909][ T5794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 285.597735][ T5783] bridge0: port 2(bridge_slave_1) entered blocking state [ 285.605827][ T5783] bridge0: port 2(bridge_slave_1) entered disabled state [ 285.614387][ T5783] bridge_slave_1: entered allmulticast mode [ 285.623282][ T5783] bridge_slave_1: entered promiscuous mode [ 285.655160][ T5793] team0: Port device team_slave_0 added [ 285.806235][ T5793] team0: Port device team_slave_1 added [ 285.865445][ T5782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 285.886768][ T5787] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 285.910485][ T5787] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 285.999628][ T5782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 286.097297][ T5783] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 286.121198][ T5783] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 286.139626][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 286.147147][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 286.173781][ T5793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 286.191691][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 286.199171][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 286.225749][ T5793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 286.314990][ T5782] team0: Port device team_slave_0 added [ 286.489456][ T5782] team0: Port device team_slave_1 added [ 286.506576][ T5787] team0: Port device team_slave_0 added [ 286.531076][ T5783] team0: Port device team_slave_0 added [ 286.558192][ T5794] hsr_slave_0: entered promiscuous mode [ 286.568432][ T5794] hsr_slave_1: entered promiscuous mode [ 286.629395][ T5787] team0: Port device team_slave_1 added [ 286.686891][ T5783] team0: Port device team_slave_1 added [ 286.918637][ T5793] hsr_slave_0: entered promiscuous mode [ 286.928694][ T5793] hsr_slave_1: entered promiscuous mode [ 286.940190][ T5793] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 286.948182][ T5793] Cannot create hsr debugfs directory [ 286.957856][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 286.965245][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 286.991723][ T5782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 287.096282][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 287.105149][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 287.132822][ T5783] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 287.142739][ T5795] Bluetooth: hci1: command tx timeout [ 287.149353][ T5791] Bluetooth: hci4: command tx timeout [ 287.149573][ T5792] Bluetooth: hci0: command tx timeout [ 287.161599][ T5784] Bluetooth: hci2: command tx timeout [ 287.172175][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 287.179528][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 287.206003][ T5782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 287.221114][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 287.228545][ T5792] Bluetooth: hci3: command tx timeout [ 287.234467][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 287.260972][ T5787] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 287.278577][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 287.286020][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 287.312645][ T5787] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 287.396123][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 287.403422][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 287.429984][ T5783] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 287.899699][ T5782] hsr_slave_0: entered promiscuous mode [ 287.909567][ T5782] hsr_slave_1: entered promiscuous mode [ 287.919533][ T5782] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 287.928631][ T5782] Cannot create hsr debugfs directory [ 287.950546][ T5787] hsr_slave_0: entered promiscuous mode [ 287.961025][ T5787] hsr_slave_1: entered promiscuous mode [ 287.970986][ T5787] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 287.978915][ T5787] Cannot create hsr debugfs directory [ 288.039739][ T5783] hsr_slave_0: entered promiscuous mode [ 288.049705][ T5783] hsr_slave_1: entered promiscuous mode [ 288.059984][ T5783] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 288.068162][ T5783] Cannot create hsr debugfs directory [ 289.226205][ T5792] Bluetooth: hci0: command tx timeout [ 289.231930][ T5792] Bluetooth: hci4: command tx timeout [ 289.240827][ T5792] Bluetooth: hci2: command tx timeout [ 289.241679][ T5784] Bluetooth: hci1: command tx timeout [ 289.253604][ T5794] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 289.302965][ T5791] Bluetooth: hci3: command tx timeout [ 289.356436][ T5794] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 289.393389][ T5794] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 289.419466][ T5794] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 289.708754][ T5793] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 289.768118][ T5793] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 289.792951][ T5787] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 289.891492][ T5793] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 289.923216][ T5782] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 289.954996][ T5787] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 289.978119][ T5793] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 290.001459][ T5782] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 290.082297][ T5782] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 290.118663][ T5787] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 290.198045][ T5782] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 290.265049][ T5787] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 290.326384][ T5783] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 290.378320][ T5783] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 290.450646][ T5783] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 290.539050][ T5783] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 290.791025][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 290.798064][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 291.542108][ T5794] 8021q: adding VLAN 0 to HW filter on device bond0 [ 291.712022][ T5782] 8021q: adding VLAN 0 to HW filter on device bond0 [ 291.847359][ T5782] 8021q: adding VLAN 0 to HW filter on device team0 [ 291.866647][ T5794] 8021q: adding VLAN 0 to HW filter on device team0 [ 291.950817][ T5793] 8021q: adding VLAN 0 to HW filter on device bond0 [ 291.974566][ T3654] bridge0: port 1(bridge_slave_0) entered blocking state [ 291.982618][ T3654] bridge0: port 1(bridge_slave_0) entered forwarding state [ 292.009429][ T5787] 8021q: adding VLAN 0 to HW filter on device bond0 [ 292.094225][ T3654] bridge0: port 2(bridge_slave_1) entered blocking state [ 292.102049][ T3654] bridge0: port 2(bridge_slave_1) entered forwarding state [ 292.126582][ T3654] bridge0: port 1(bridge_slave_0) entered blocking state [ 292.134557][ T3654] bridge0: port 1(bridge_slave_0) entered forwarding state [ 292.239055][ T3739] bridge0: port 2(bridge_slave_1) entered blocking state [ 292.247169][ T3739] bridge0: port 2(bridge_slave_1) entered forwarding state [ 292.318955][ T5783] 8021q: adding VLAN 0 to HW filter on device bond0 [ 292.350441][ T5787] 8021q: adding VLAN 0 to HW filter on device team0 [ 292.525479][ T5793] 8021q: adding VLAN 0 to HW filter on device team0 [ 292.568033][ T3739] bridge0: port 1(bridge_slave_0) entered blocking state [ 292.575958][ T3739] bridge0: port 1(bridge_slave_0) entered forwarding state [ 292.650902][ T5783] 8021q: adding VLAN 0 to HW filter on device team0 [ 292.707234][ T5782] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 292.764514][ T5794] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 292.775330][ T5794] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 292.857723][ T3739] bridge0: port 2(bridge_slave_1) entered blocking state [ 292.865602][ T3739] bridge0: port 2(bridge_slave_1) entered forwarding state [ 292.890804][ T3739] bridge0: port 1(bridge_slave_0) entered blocking state [ 292.898504][ T3739] bridge0: port 1(bridge_slave_0) entered forwarding state [ 292.914814][ T3739] bridge0: port 2(bridge_slave_1) entered blocking state [ 292.922705][ T3739] bridge0: port 2(bridge_slave_1) entered forwarding state [ 293.049000][ T3654] bridge0: port 1(bridge_slave_0) entered blocking state [ 293.056921][ T3654] bridge0: port 1(bridge_slave_0) entered forwarding state [ 293.079874][ T3654] bridge0: port 2(bridge_slave_1) entered blocking state [ 293.087812][ T3654] bridge0: port 2(bridge_slave_1) entered forwarding state [ 293.560129][ T5793] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 293.571493][ T5793] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 293.888326][ T5783] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 293.902697][ T5783] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 295.360835][ T5782] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 295.483574][ T5794] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 295.963238][ T5793] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 295.990676][ T5787] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 296.180397][ T5782] veth0_vlan: entered promiscuous mode [ 296.291977][ T5783] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 296.385016][ T5782] veth1_vlan: entered promiscuous mode [ 296.759829][ T5787] veth0_vlan: entered promiscuous mode [ 296.809975][ T5793] veth0_vlan: entered promiscuous mode [ 296.929013][ T5787] veth1_vlan: entered promiscuous mode [ 296.963627][ T5782] veth0_macvtap: entered promiscuous mode [ 297.010976][ T5793] veth1_vlan: entered promiscuous mode [ 297.059877][ T5782] veth1_macvtap: entered promiscuous mode [ 297.188389][ T5783] veth0_vlan: entered promiscuous mode [ 297.355705][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 297.373193][ T5783] veth1_vlan: entered promiscuous mode [ 297.489212][ T5787] veth0_macvtap: entered promiscuous mode [ 297.567997][ T5793] veth0_macvtap: entered promiscuous mode [ 297.590062][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 297.633618][ T5793] veth1_macvtap: entered promiscuous mode [ 297.667165][ T5787] veth1_macvtap: entered promiscuous mode [ 297.727654][ T5782] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 297.737917][ T5782] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 297.747302][ T5782] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 297.756663][ T5782] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.000968][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 298.012823][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.028812][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 298.041779][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 298.053170][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.063414][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 298.074265][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.089812][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 298.138234][ T5783] veth0_macvtap: entered promiscuous mode [ 298.164795][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 298.175951][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.191924][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 298.217587][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 298.229453][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.240068][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 298.250917][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.266931][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 298.345804][ T5787] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.355413][ T5787] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.364748][ T5787] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.374101][ T5787] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.410515][ T5783] veth1_macvtap: entered promiscuous mode [ 298.436152][ T5793] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.445505][ T5793] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.454839][ T5793] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.464097][ T5793] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.735121][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 298.747800][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.759703][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 298.770914][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.781320][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 298.792303][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.808001][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 298.995677][ T5794] veth0_vlan: entered promiscuous mode [ 299.081006][ T5794] veth1_vlan: entered promiscuous mode [ 299.107272][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 299.118517][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 299.129415][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 299.140293][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 299.154336][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 299.169218][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 299.184778][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 299.320672][ T5783] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 299.330220][ T5783] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 299.339983][ T5783] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 299.349272][ T5783] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 299.602702][ T5794] veth0_macvtap: entered promiscuous mode [ 299.693382][ T5794] veth1_macvtap: entered promiscuous mode [ 300.004950][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.015940][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.026326][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.037260][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.047497][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.058568][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.068783][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.079614][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.094710][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 300.372970][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.383948][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.394344][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.405155][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.415436][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.427079][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.437368][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.448559][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.463623][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 300.757976][ T5794] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.767410][ T5794] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.776814][ T5794] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.786113][ T5794] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 305.813868][ T3776] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 305.822032][ T3776] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 306.191160][ T3776] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 306.199521][ T3776] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 306.315846][ T3776] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 306.325232][ T3776] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 306.598681][ T5782] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 306.607683][ T3536] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 306.622819][ T3536] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 306.855995][ T4529] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 306.864930][ T4529] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 306.925941][ T3654] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 306.934428][ T3654] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 307.432523][ T3693] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 307.440538][ T3693] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 307.605708][ T5966] loop0: detected capacity change from 0 to 512 [ 307.636334][ T5966] EXT4-fs: inline encryption not supported [ 307.773547][ T3654] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 307.781733][ T3654] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 307.899338][ T5966] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 307.913408][ T5966] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 308.167090][ T5966] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.1: corrupted inode contents [ 308.303946][ T5966] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.1: mark_inode_dirty error [ 308.365521][ T5966] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.1: corrupted inode contents [ 308.483837][ T5974] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.1: corrupted inode contents [ 308.565931][ T3654] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 308.574317][ T3654] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 308.598303][ T5974] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.1: mark_inode_dirty error [ 308.700360][ T5974] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.1: corrupted inode contents [ 308.781598][ T5974] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.1: mark_inode_dirty error [ 308.797634][ T29] audit: type=1326 audit(1733352080.107:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5976 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 308.841946][ T5974] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.1: corrupted inode contents [ 308.890357][ T5979] syz.2.3[5979] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 308.890972][ T5979] syz.2.3[5979] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 308.893105][ T5974] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.1: mark_inode_dirty error [ 308.906843][ T5979] syz.2.3[5979] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 308.926670][ T29] audit: type=1326 audit(1733352080.207:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5976 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 308.973909][ T5979] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3'. [ 309.024781][ T29] audit: type=1326 audit(1733352080.357:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5976 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 309.063133][ T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 309.071376][ T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 309.384213][ T29] audit: type=1326 audit(1733352080.707:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5976 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 309.436239][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 309.532090][ T29] audit: type=1326 audit(1733352080.747:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5976 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 309.661509][ T29] audit: type=1326 audit(1733352080.907:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5976 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 311.128883][ T29] audit: type=1326 audit(1733352082.457:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 311.151170][ T29] audit: type=1326 audit(1733352082.457:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 311.175068][ T29] audit: type=1326 audit(1733352082.477:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 311.198219][ T29] audit: type=1326 audit(1733352082.487:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 311.263774][ T5992] loop3: detected capacity change from 0 to 512 [ 311.384561][ T5992] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 311.385112][ T5992] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 311.529946][ T6002] loop1: detected capacity change from 0 to 128 [ 311.622313][ T6002] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 311.755637][ T6002] ext4 filesystem being mounted at /1/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 311.799045][ T6005] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.5'. [ 312.014716][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 312.934323][ T5793] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 313.672290][ T6019] loop1: detected capacity change from 0 to 512 [ 313.723609][ T6019] EXT4-fs: inline encryption not supported [ 313.846981][ T29] kauditd_printk_skb: 85 callbacks suppressed [ 313.847066][ T29] audit: type=1326 audit(1733352085.177:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6018 comm="syz.0.18" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 313.849802][ T6019] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 313.894328][ T6019] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 313.908246][ T29] audit: type=1326 audit(1733352085.237:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6018 comm="syz.0.18" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 313.931020][ T29] audit: type=1326 audit(1733352085.237:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6018 comm="syz.0.18" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 313.974208][ T29] audit: type=1326 audit(1733352085.307:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6018 comm="syz.0.18" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 314.040383][ T29] audit: type=1326 audit(1733352085.367:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6018 comm="syz.0.18" exe="/root/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 314.063123][ T29] audit: type=1326 audit(1733352085.367:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6018 comm="syz.0.18" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 314.107096][ T6019] netlink: 'syz.1.17': attribute type 10 has an invalid length. [ 314.118796][ T29] audit: type=1326 audit(1733352085.417:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6018 comm="syz.0.18" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 314.144041][ T6019] netdevsim netdevsim1 netdevsim1: entered promiscuous mode [ 314.189983][ T6019] bond0: (slave netdevsim1): Enslaving as an active interface with an up link [ 314.318755][ T6027] loop2: detected capacity change from 0 to 1024 [ 314.339290][ T29] audit: type=1326 audit(1733352085.667:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6018 comm="syz.0.18" exe="/root/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 314.371001][ T6031] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #2: comm syz.1.17: corrupted inode contents [ 314.416500][ T6027] ext4: Bad value for 'auto_da_alloc' [ 314.465105][ T29] audit: type=1326 audit(1733352085.697:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6018 comm="syz.0.18" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 314.491204][ T29] audit: type=1326 audit(1733352085.697:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6018 comm="syz.0.18" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 314.518605][ T6031] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #2: comm syz.1.17: mark_inode_dirty error [ 314.559205][ T6028] loop4: detected capacity change from 0 to 512 [ 314.623470][ T6031] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #2: comm syz.1.17: corrupted inode contents [ 314.676353][ T6036] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #2: comm syz.1.17: corrupted inode contents [ 314.804983][ T6036] EXT4-fs error (device loop1): ext4_setattr:5411: inode #2: comm syz.1.17: mark_inode_dirty error [ 314.978510][ T6028] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 314.994896][ T6028] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it [ 315.006667][ T6028] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.20: Corrupt directory, running e2fsck is recommended [ 315.088393][ T6028] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 315.354599][ T6028] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.20: corrupted in-inode xattr: invalid ea_ino [ 315.424637][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 315.440575][ T6028] EXT4-fs (loop4): Remounting filesystem read-only [ 315.450210][ T6028] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 316.208561][ T6052] netlink: 24 bytes leftover after parsing attributes in process `syz.1.31'. [ 316.798636][ T5794] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 317.307347][ T6062] loop3: detected capacity change from 0 to 8192 [ 317.317357][ T6062] vfat: Unknown parameter 'ÿÿÿÿ00000000000000000009' [ 317.448137][ T6064] loop6: detected capacity change from 0 to 7 [ 317.493947][ T6064] Buffer I/O error on dev loop6, logical block 0, async page read [ 317.502242][ T6064] Buffer I/O error on dev loop6, logical block 0, async page read [ 317.511413][ T6064] Buffer I/O error on dev loop6, logical block 0, async page read [ 317.519842][ T6064] Buffer I/O error on dev loop6, logical block 0, async page read [ 317.528269][ T6064] Buffer I/O error on dev loop6, logical block 0, async page read [ 317.536876][ T6064] Buffer I/O error on dev loop6, logical block 0, async page read [ 317.545580][ T6064] Buffer I/O error on dev loop6, logical block 0, async page read [ 317.557930][ T6064] ldm_validate_partition_table(): Disk read failed. [ 317.566119][ T6064] Buffer I/O error on dev loop6, logical block 0, async page read [ 317.574569][ T6064] Buffer I/O error on dev loop6, logical block 0, async page read [ 317.583044][ T6064] Buffer I/O error on dev loop6, logical block 0, async page read [ 317.591276][ T6064] Dev loop6: unable to read RDB block 0 [ 317.597708][ T6064] loop6: unable to read partition table [ 317.750914][ T6064] loop6: partition table beyond EOD, truncated [ 317.761927][ T6064] loop_reread_partitions: partition scan of loop6 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨â·û [ 317.761927][ T6064] ) failed (rc=-5) [ 318.000232][ T6064] loop0: detected capacity change from 0 to 128 [ 319.286847][ T6088] netlink: 24 bytes leftover after parsing attributes in process `syz.2.47'. [ 319.567888][ T6089] loop4: detected capacity change from 0 to 512 [ 319.627178][ T6091] netlink: 8 bytes leftover after parsing attributes in process `syz.1.49'. [ 319.637034][ T6091] netlink: 4 bytes leftover after parsing attributes in process `syz.1.49'. [ 319.671195][ T6089] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 319.683786][ T6089] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it [ 319.694581][ T6089] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.45: Corrupt directory, running e2fsck is recommended [ 319.878768][ T6089] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 319.931837][ T6089] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.45: corrupted in-inode xattr: invalid ea_ino [ 319.968620][ T6089] EXT4-fs (loop4): Remounting filesystem read-only [ 319.978072][ T6089] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 320.200381][ T29] kauditd_printk_skb: 10 callbacks suppressed [ 320.200475][ T29] audit: type=1326 audit(1733352091.497:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 320.235639][ T29] audit: type=1326 audit(1733352091.507:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=40000003 syscall=62 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 320.259954][ T29] audit: type=1326 audit(1733352091.507:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 320.284532][ T29] audit: type=1326 audit(1733352091.517:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 320.308457][ T29] audit: type=1326 audit(1733352091.517:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 320.475018][ T29] audit: type=1326 audit(1733352091.727:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=40000003 syscall=103 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 320.695780][ T29] audit: type=1326 audit(1733352091.957:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 320.718373][ T29] audit: type=1326 audit(1733352091.957:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 321.085959][ T5794] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 321.301202][ T6114] netlink: 24 bytes leftover after parsing attributes in process `syz.4.60'. [ 321.835610][ T6128] netlink: 4 bytes leftover after parsing attributes in process `syz.2.62'. [ 321.983844][ T6130] netlink: 20 bytes leftover after parsing attributes in process `syz.0.61'. [ 323.358383][ T6144] loop4: detected capacity change from 0 to 512 [ 323.448159][ T6144] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 323.460378][ T6144] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it [ 323.471984][ T6144] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.70: Corrupt directory, running e2fsck is recommended [ 323.517951][ T6144] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 323.644015][ T6144] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.70: corrupted in-inode xattr: invalid ea_ino [ 323.734117][ T6144] EXT4-fs (loop4): Remounting filesystem read-only [ 323.743609][ T6144] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 323.867865][ T29] audit: type=1326 audit(1733352095.197:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.4.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 323.953177][ T29] audit: type=1326 audit(1733352095.237:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.4.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=62 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 324.175066][ T6157] netlink: 8 bytes leftover after parsing attributes in process `syz.3.74'. [ 324.184425][ T6157] netlink: 4 bytes leftover after parsing attributes in process `syz.3.74'. [ 324.427056][ T5794] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 324.657662][ T6164] netlink: 20 bytes leftover after parsing attributes in process `syz.1.77'. [ 326.097384][ T6185] loop1: detected capacity change from 0 to 512 [ 326.289858][ T6185] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 326.302258][ T6185] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it [ 326.313543][ T6185] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.88: Corrupt directory, running e2fsck is recommended [ 326.447880][ T6191] netlink: 8 bytes leftover after parsing attributes in process `syz.4.89'. [ 326.460585][ T6191] netlink: 4 bytes leftover after parsing attributes in process `syz.4.89'. [ 326.515108][ T6185] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117 [ 326.676329][ T6185] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.88: corrupted in-inode xattr: invalid ea_ino [ 326.698800][ T6185] EXT4-fs (loop1): Remounting filesystem read-only [ 326.707740][ T6185] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 326.925836][ T29] kauditd_printk_skb: 5 callbacks suppressed [ 326.925923][ T29] audit: type=1326 audit(1733352098.257:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.88" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 327.043330][ T29] audit: type=1326 audit(1733352098.297:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.88" exe="/root/syz-executor" sig=0 arch=40000003 syscall=103 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 327.066146][ T29] audit: type=1326 audit(1733352098.297:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.88" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 327.301335][ T6204] process 'syz.3.93' launched './file1' with NULL argv: empty string added [ 327.371539][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 328.364830][ T6211] loop3: detected capacity change from 0 to 128 [ 329.342532][ T6216] dccp_close: ABORT with 2 bytes unread [ 329.622010][ T6213] capability: warning: `syz.0.97' uses deprecated v2 capabilities in a way that may be insecure [ 329.924682][ T29] audit: type=1326 audit(1733352101.257:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6212 comm="syz.0.97" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 330.013530][ T29] audit: type=1326 audit(1733352101.297:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6212 comm="syz.0.97" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 331.798846][ T6242] netlink: 20 bytes leftover after parsing attributes in process `syz.2.109'. [ 331.976932][ T6243] loop1: detected capacity change from 0 to 512 [ 332.234797][ T6243] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 332.247042][ T6243] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it [ 332.257732][ T6243] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.105: Corrupt directory, running e2fsck is recommended [ 332.326171][ T6243] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117 [ 332.368259][ T6243] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.105: corrupted in-inode xattr: invalid ea_ino [ 332.368676][ T6251] loop3: detected capacity change from 0 to 512 [ 332.431037][ T6243] EXT4-fs (loop1): Remounting filesystem read-only [ 332.440329][ T6243] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 332.568035][ T6251] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 332.648016][ T6255] loop2: detected capacity change from 0 to 128 [ 332.657849][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 333.217441][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 333.611995][ T29] audit: type=1326 audit(1733352104.867:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.116" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 333.638310][ T29] audit: type=1326 audit(1733352104.887:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.116" exe="/root/syz-executor" sig=0 arch=40000003 syscall=299 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 333.661642][ T29] audit: type=1326 audit(1733352104.887:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.116" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 333.684312][ T29] audit: type=1326 audit(1733352104.887:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.116" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 333.706965][ T29] audit: type=1326 audit(1733352104.907:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.116" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 333.733516][ T29] audit: type=1326 audit(1733352104.907:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.116" exe="/root/syz-executor" sig=0 arch=40000003 syscall=16 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 333.755927][ T29] audit: type=1326 audit(1733352104.907:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.116" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 333.778544][ T29] audit: type=1326 audit(1733352104.917:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.116" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 334.475083][ T6278] netlink: 20 bytes leftover after parsing attributes in process `syz.3.123'. [ 335.107512][ T6284] loop4: detected capacity change from 0 to 512 [ 335.226604][ T6289] loop2: detected capacity change from 0 to 512 [ 335.240067][ T6288] loop3: detected capacity change from 0 to 128 [ 335.267100][ T6284] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 335.281329][ T6284] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it [ 335.293797][ T6284] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.126: Corrupt directory, running e2fsck is recommended [ 335.359323][ T6289] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 335.425807][ T6284] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 335.463635][ T6284] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.126: corrupted in-inode xattr: invalid ea_ino [ 335.618652][ T6284] EXT4-fs (loop4): Remounting filesystem read-only [ 335.628042][ T6284] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 336.093465][ T5783] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 336.336064][ T5794] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 336.662093][ T6305] netlink: 20 bytes leftover after parsing attributes in process `syz.1.139'. [ 336.929985][ T29] audit: type=1326 audit(1733352108.207:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6302 comm="syz.0.136" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 336.952808][ T29] audit: type=1326 audit(1733352108.207:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6302 comm="syz.0.136" exe="/root/syz-executor" sig=0 arch=40000003 syscall=299 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 337.553172][ T6320] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 338.108820][ T6326] Invalid ELF header magic: != ELF [ 338.190104][ T6329] loop3: detected capacity change from 0 to 512 [ 338.286286][ T6329] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 338.298797][ T6329] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it [ 338.309503][ T6329] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.148: Corrupt directory, running e2fsck is recommended [ 338.616572][ T6329] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117 [ 338.697697][ T6329] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.148: corrupted in-inode xattr: invalid ea_ino [ 338.826916][ T6329] EXT4-fs (loop3): Remounting filesystem read-only [ 338.836840][ T6329] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 339.078514][ T6339] netlink: 20 bytes leftover after parsing attributes in process `syz.1.152'. [ 339.378362][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 339.590944][ T6314] loop2: detected capacity change from 0 to 32768 [ 339.644452][ T6314] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.135 (6314) [ 339.702024][ T6314] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 339.713482][ T6314] BTRFS info (device loop2): using sha256 (sha256-generic) checksum algorithm [ 339.888697][ T6314] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR [ 339.889949][ T6314] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR [ 339.900842][ T6314] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR [ 339.911541][ T6314] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR [ 339.923153][ T6314] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR [ 339.933698][ T6314] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR [ 339.944603][ T6314] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR [ 339.956801][ T6314] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR [ 339.967974][ T6314] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR [ 340.211435][ T6314] BTRFS error (device loop2): open_ctree failed [ 340.653865][ T29] kauditd_printk_skb: 14 callbacks suppressed [ 340.653959][ T29] audit: type=1326 audit(1733352111.957:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 340.684631][ T29] audit: type=1326 audit(1733352111.957:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 340.711279][ T29] audit: type=1326 audit(1733352111.957:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=40000003 syscall=299 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 340.734877][ T29] audit: type=1326 audit(1733352111.957:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 340.757650][ T29] audit: type=1326 audit(1733352111.977:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 340.945050][ T29] audit: type=1326 audit(1733352112.277:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 341.075615][ T29] audit: type=1326 audit(1733352112.317:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 341.363353][ T29] audit: type=1326 audit(1733352112.667:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.4.157" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 341.386601][ T29] audit: type=1326 audit(1733352112.687:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.4.157" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 341.505891][ T29] audit: type=1326 audit(1733352112.837:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.4.157" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 344.214817][ T6412] syz.4.170[6412] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 344.215335][ T6412] syz.4.170[6412] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 344.250433][ T6412] syz.4.170[6412] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 344.324244][ T6415] netlink: 24 bytes leftover after parsing attributes in process `syz.4.170'. [ 344.473614][ T6398] loop2: detected capacity change from 0 to 8192 [ 346.260004][ T6436] loop2: detected capacity change from 0 to 512 [ 346.307676][ T6431] netlink: 24 bytes leftover after parsing attributes in process `syz.4.179'. [ 346.676147][ T6416] loop3: detected capacity change from 0 to 32768 [ 346.684371][ T6436] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 346.699880][ T6416] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.172 (6416) [ 347.161449][ T6416] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 347.172754][ T6416] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 347.283463][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR [ 347.284839][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR [ 347.295325][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR [ 347.306030][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR [ 347.316907][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR [ 347.327328][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR [ 347.337699][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR [ 347.351096][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR [ 347.363491][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR [ 347.373687][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR [ 347.384694][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR [ 347.396118][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR [ 347.407719][ T6416] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR [ 347.453531][ T6416] BTRFS error (device loop3): open_ctree failed [ 347.791832][ T5783] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 348.322879][ T29] kauditd_printk_skb: 31 callbacks suppressed [ 348.322967][ T29] audit: type=1326 audit(1733352119.647:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 348.353448][ T29] audit: type=1326 audit(1733352119.657:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 348.378471][ T29] audit: type=1326 audit(1733352119.657:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 348.512973][ T29] audit: type=1326 audit(1733352119.807:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 348.536021][ T29] audit: type=1326 audit(1733352119.807:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 349.253857][ T29] audit: type=1326 audit(1733352120.567:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 349.276556][ T29] audit: type=1326 audit(1733352120.567:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 349.375936][ T29] audit: type=1326 audit(1733352120.657:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 349.402095][ T29] audit: type=1326 audit(1733352120.657:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 349.426024][ T29] audit: type=1326 audit(1733352120.657:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 349.897889][ T6484] netlink: 24 bytes leftover after parsing attributes in process `syz.1.194'. [ 350.689738][ T6481] loop3: detected capacity change from 0 to 8192 [ 350.973193][ T6481] netlink: 8 bytes leftover after parsing attributes in process `syz.3.186'. [ 350.983049][ T6481] netlink: 4 bytes leftover after parsing attributes in process `syz.3.186'. [ 351.414694][ T6502] Invalid ELF header magic: != ELF [ 351.802983][ T6499] loop1: detected capacity change from 0 to 512 [ 352.113737][ T6499] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 352.208410][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 352.215509][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 352.756355][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 353.153173][ T6520] netlink: 24 bytes leftover after parsing attributes in process `syz.0.209'. [ 353.726359][ T29] kauditd_printk_skb: 38 callbacks suppressed [ 353.726448][ T29] audit: type=1326 audit(1733352125.057:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6526 comm="syz.1.213" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 353.755678][ T29] audit: type=1326 audit(1733352125.057:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6526 comm="syz.1.213" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 353.778860][ T29] audit: type=1326 audit(1733352125.057:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6526 comm="syz.1.213" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 353.804790][ T29] audit: type=1326 audit(1733352125.057:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6526 comm="syz.1.213" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 353.828317][ T29] audit: type=1326 audit(1733352125.057:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6526 comm="syz.1.213" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 353.851271][ T29] audit: type=1326 audit(1733352125.057:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6526 comm="syz.1.213" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 353.873832][ T29] audit: type=1326 audit(1733352125.057:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6526 comm="syz.1.213" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 353.896804][ T29] audit: type=1326 audit(1733352125.057:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6526 comm="syz.1.213" exe="/root/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 353.922950][ T29] audit: type=1326 audit(1733352125.067:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6526 comm="syz.1.213" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 353.945512][ T29] audit: type=1326 audit(1733352125.067:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6526 comm="syz.1.213" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 354.434554][ T6533] loop3: detected capacity change from 0 to 128 [ 354.755644][ T6533] +}[@: attempt to access beyond end of device [ 354.755644][ T6533] loop3: rw=0, sector=121, nr_sectors = 920 limit=128 [ 354.995697][ T6545] loop4: detected capacity change from 0 to 512 [ 355.201981][ T6545] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 355.700243][ T5794] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 355.777293][ T6547] dccp_close: ABORT with 2 bytes unread [ 355.908569][ T6553] netlink: 24 bytes leftover after parsing attributes in process `syz.2.222'. [ 357.441312][ T6571] Zero length message leads to an empty skb [ 358.890811][ T6592] netlink: 24 bytes leftover after parsing attributes in process `syz.0.236'. [ 359.726806][ T29] kauditd_printk_skb: 11 callbacks suppressed [ 359.726894][ T29] audit: type=1326 audit(1733352131.047:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6595 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 359.759088][ T29] audit: type=1326 audit(1733352131.057:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6595 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 359.835794][ T29] audit: type=1326 audit(1733352131.127:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6595 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=40000003 syscall=247 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 359.861106][ T29] audit: type=1326 audit(1733352131.127:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6595 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 359.888508][ T29] audit: type=1326 audit(1733352131.127:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6595 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 360.101908][ T29] audit: type=1326 audit(1733352131.247:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6595 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=40000003 syscall=248 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 360.126144][ T29] audit: type=1326 audit(1733352131.257:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6595 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 360.151833][ T29] audit: type=1326 audit(1733352131.267:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6595 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 360.175226][ T29] audit: type=1326 audit(1733352131.277:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6595 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 360.198519][ T29] audit: type=1326 audit(1733352131.287:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6595 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 360.244436][ T6601] netlink: 4 bytes leftover after parsing attributes in process `syz.3.242'. [ 360.294110][ T6603] loop2: detected capacity change from 0 to 8192 [ 360.340996][ T6601] veth0_macvtap: left promiscuous mode [ 360.387387][ T6598] loop1: detected capacity change from 0 to 256 [ 360.892255][ T6603] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 361.064004][ T6603] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 361.594563][ T6603] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 362.013611][ T6603] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 362.311306][ T6625] loop3: detected capacity change from 0 to 512 [ 362.363184][ T6627] netlink: 24 bytes leftover after parsing attributes in process `syz.4.251'. [ 362.583011][ T6625] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 362.669665][ T6603] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 362.699689][ T6603] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 362.735793][ T6603] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 362.766863][ T6603] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 362.963150][ T6634] loop1: detected capacity change from 0 to 512 [ 363.116828][ T6634] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 363.374747][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 363.489525][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 363.588902][ T6637] loop4: detected capacity change from 0 to 512 [ 363.771346][ T6637] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 363.785429][ T6637] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 364.484467][ T5794] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 364.740760][ T6655] loop2: detected capacity change from 0 to 128 [ 365.181024][ T6663] loop4: detected capacity change from 0 to 512 [ 365.295577][ T6663] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 365.339709][ T29] kauditd_printk_skb: 19 callbacks suppressed [ 365.339813][ T29] audit: type=1804 audit(1733352136.667:300): pid=6667 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.261" name="/newroot/46/file0/bus" dev="loop2" ino=1048607 res=1 errno=0 [ 365.371476][ T29] audit: type=1800 audit(1733352136.667:301): pid=6667 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.261" name="bus" dev="loop2" ino=1048607 res=0 errno=0 [ 365.458673][ T6655] +}[@: attempt to access beyond end of device [ 365.458673][ T6655] loop2: rw=0, sector=121, nr_sectors = 920 limit=128 [ 365.790434][ T5794] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.658852][ T6678] loop2: detected capacity change from 0 to 1024 [ 366.697039][ T6669] loop1: detected capacity change from 0 to 8192 [ 366.933175][ T6678] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 367.090084][ T6669] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 367.172250][ T29] audit: type=1804 audit(1733352138.497:302): pid=6689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.269" name="/newroot/47/file1/file1" dev="loop2" ino=15 res=1 errno=0 [ 367.459339][ T6669] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 367.583499][ T6669] bond0: (slave netdevsim1): Releasing backup interface [ 367.619890][ T6669] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 367.740059][ T5783] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 367.863023][ T6669] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 368.249464][ T6669] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 368.279815][ T6669] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 368.310028][ T6669] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 368.352199][ T6669] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 368.689199][ T6707] loop4: detected capacity change from 0 to 128 [ 368.944458][ T6704] loop2: detected capacity change from 0 to 512 [ 369.071128][ T29] audit: type=1804 audit(1733352140.397:303): pid=6716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.279" name="/newroot/56/file0/bus" dev="loop4" ino=1048609 res=1 errno=0 [ 369.095359][ T29] audit: type=1800 audit(1733352140.397:304): pid=6716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.279" name="bus" dev="loop4" ino=1048609 res=0 errno=0 [ 369.108069][ T6710] dccp_close: ABORT with 2 bytes unread [ 369.479572][ T6704] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 369.494577][ T6704] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 369.791271][ T5783] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 370.327511][ T6731] loop3: detected capacity change from 0 to 512 [ 370.337522][ T6731] EXT4-fs: inline encryption not supported [ 370.801767][ T6731] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 370.816084][ T6731] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 370.885894][ T6738] loop1: detected capacity change from 0 to 512 [ 370.968600][ T6731] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.289: corrupted inode contents [ 371.073787][ T6731] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.289: mark_inode_dirty error [ 371.131375][ T6731] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.289: corrupted inode contents [ 371.148802][ T6731] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.289: mark_inode_dirty error [ 371.200466][ T6738] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 371.507152][ T6747] dccp_close: ABORT with 2 bytes unread [ 371.553868][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 371.653238][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 371.800673][ T6751] netlink: 4 bytes leftover after parsing attributes in process `syz.0.297'. [ 371.897054][ T6751] veth0_macvtap: left promiscuous mode [ 372.418112][ T6759] loop3: detected capacity change from 0 to 128 [ 372.755502][ T29] audit: type=1804 audit(1733352144.057:305): pid=6763 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.295" name="/newroot/60/file0/bus" dev="loop3" ino=1048610 res=1 errno=0 [ 372.778290][ T29] audit: type=1800 audit(1733352144.057:306): pid=6763 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.295" name="bus" dev="loop3" ino=1048610 res=0 errno=0 [ 372.837046][ T6759] +}[@: attempt to access beyond end of device [ 372.837046][ T6759] loop3: rw=0, sector=121, nr_sectors = 920 limit=128 [ 373.023362][ T29] audit: type=1326 audit(1733352144.227:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.300" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 373.046468][ T29] audit: type=1326 audit(1733352144.227:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.300" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 373.075361][ T29] audit: type=1326 audit(1733352144.237:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.300" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 373.100007][ T29] audit: type=1326 audit(1733352144.237:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.300" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 373.122640][ T29] audit: type=1326 audit(1733352144.237:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.300" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 373.145104][ T29] audit: type=1326 audit(1733352144.237:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.300" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 373.174135][ T29] audit: type=1326 audit(1733352144.237:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.300" exe="/root/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 373.198652][ T29] audit: type=1326 audit(1733352144.237:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.300" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 373.738066][ T6749] loop2: detected capacity change from 0 to 32768 [ 373.785098][ T6749] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.293 (6749) [ 373.805289][ T6749] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 373.816121][ T6749] BTRFS info (device loop2): using sha256 (sha256-generic) checksum algorithm [ 374.347377][ T6783] loop1: detected capacity change from 0 to 512 [ 374.364067][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR [ 374.365170][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR [ 374.377461][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR [ 374.396012][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR [ 374.532179][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR [ 374.543677][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR [ 374.570924][ T6783] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 374.626578][ T6749] BTRFS error (device loop2): open_ctree failed [ 375.249454][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 375.307271][ T6801] loop3: detected capacity change from 0 to 1024 [ 375.501713][ T6801] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 376.125844][ T6809] Invalid ELF header magic: != ELF [ 376.237394][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 378.658140][ T29] kauditd_printk_skb: 21 callbacks suppressed [ 378.658235][ T29] audit: type=1326 audit(1733352149.987:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.1.326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 378.770483][ T29] audit: type=1326 audit(1733352150.037:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.1.326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 378.799518][ T29] audit: type=1326 audit(1733352150.037:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.1.326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 378.824253][ T29] audit: type=1326 audit(1733352150.037:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.1.326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 378.846766][ T29] audit: type=1326 audit(1733352150.047:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.1.326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 378.870401][ T29] audit: type=1326 audit(1733352150.047:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.1.326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 378.899301][ T29] audit: type=1326 audit(1733352150.057:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.1.326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 378.923848][ T29] audit: type=1326 audit(1733352150.057:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.1.326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 378.946277][ T29] audit: type=1326 audit(1733352150.067:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.1.326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 378.969149][ T29] audit: type=1326 audit(1733352150.067:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.1.326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 379.224579][ T6826] loop3: detected capacity change from 0 to 32768 [ 379.315557][ T6826] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.320 (6826) [ 379.513118][ T6826] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 379.524193][ T6826] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 380.156240][ T6826] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR [ 380.157402][ T6826] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR [ 380.457822][ T6826] BTRFS error (device loop3): open_ctree failed [ 381.459466][ T6888] loop3: detected capacity change from 0 to 128 [ 383.011433][ T6907] dccp_close: ABORT with 2 bytes unread [ 383.105776][ T6918] loop3: detected capacity change from 0 to 512 [ 383.527338][ T6918] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 384.000896][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 384.045680][ T6933] loop4: detected capacity change from 0 to 128 [ 384.121472][ T6929] loop2: detected capacity change from 0 to 8192 [ 384.295861][ T29] kauditd_printk_skb: 54 callbacks suppressed [ 384.295951][ T29] audit: type=1804 audit(1733352155.627:400): pid=6936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.357" name="/newroot/71/file0/bus" dev="loop4" ino=1048612 res=1 errno=0 [ 384.330887][ T29] audit: type=1800 audit(1733352155.627:401): pid=6936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.357" name="bus" dev="loop4" ino=1048612 res=0 errno=0 [ 384.469947][ T6929] netlink: 8 bytes leftover after parsing attributes in process `syz.2.356'. [ 384.479439][ T6929] netlink: 4 bytes leftover after parsing attributes in process `syz.2.356'. [ 384.591585][ T6942] loop3: detected capacity change from 0 to 2048 [ 384.703543][ T6942] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 384.735587][ T29] audit: type=1326 audit(1733352156.057:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.1.361" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 384.821828][ T29] audit: type=1326 audit(1733352156.137:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.1.361" exe="/root/syz-executor" sig=0 arch=40000003 syscall=299 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 384.847351][ T29] audit: type=1326 audit(1733352156.147:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.1.361" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 384.870995][ T29] audit: type=1326 audit(1733352156.147:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.1.361" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 384.896427][ T29] audit: type=1326 audit(1733352156.147:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.1.361" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 385.075344][ T29] audit: type=1326 audit(1733352156.327:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.1.361" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 385.098623][ T29] audit: type=1326 audit(1733352156.327:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.1.361" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f50579 code=0x7ffc0000 [ 385.819264][ T6960] netlink: 'syz.0.366': attribute type 10 has an invalid length. [ 385.827899][ T6960] netlink: 40 bytes leftover after parsing attributes in process `syz.0.366'. [ 385.840947][ T6960] bridge0: port 3(veth1_macvtap) entered blocking state [ 385.859500][ T6960] bridge0: port 3(veth1_macvtap) entered disabled state [ 385.868662][ T6960] veth1_macvtap: entered allmulticast mode [ 385.877076][ T6960] veth1_macvtap: left allmulticast mode [ 385.886090][ T6960] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check. [ 386.212812][ T29] audit: type=1326 audit(1733352157.517:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.2.369" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 386.247315][ T4674] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 386.300338][ T4674] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 386.313140][ T4674] EXT4-fs (loop3): This should not happen!! Data will be lost [ 386.313140][ T4674] [ 386.323241][ T4674] EXT4-fs (loop3): Total free blocks count 0 [ 386.329519][ T4674] EXT4-fs (loop3): Free/Dirty block details [ 386.335908][ T4674] EXT4-fs (loop3): free_blocks=2415919104 [ 386.341942][ T4674] EXT4-fs (loop3): dirty_blocks=704 [ 386.347689][ T4674] EXT4-fs (loop3): Block reservation details [ 386.354485][ T4674] EXT4-fs (loop3): i_reserved_data_blocks=44 [ 386.380701][ T4674] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 674 with error 28 [ 386.930548][ T6972] loop2: detected capacity change from 0 to 512 [ 387.012951][ T6972] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 387.601911][ T6974] loop1: detected capacity change from 0 to 8192 [ 387.669947][ T6974] netlink: 8 bytes leftover after parsing attributes in process `syz.1.373'. [ 387.679401][ T6974] netlink: 4 bytes leftover after parsing attributes in process `syz.1.373'. [ 389.997902][ T29] kauditd_printk_skb: 33 callbacks suppressed [ 389.997987][ T29] audit: type=1326 audit(1733352161.327:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.0.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 390.114766][ T29] audit: type=1326 audit(1733352161.397:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.0.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 390.138228][ T29] audit: type=1326 audit(1733352161.437:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.0.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=356 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 390.161434][ T29] audit: type=1326 audit(1733352161.437:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.0.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 390.186659][ T29] audit: type=1326 audit(1733352161.437:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.0.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 390.272170][ T7017] loop2: detected capacity change from 0 to 512 [ 390.280519][ T29] audit: type=1326 audit(1733352161.547:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.0.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=91 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 390.303593][ T29] audit: type=1326 audit(1733352161.547:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.0.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 390.326344][ T29] audit: type=1326 audit(1733352161.547:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.0.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 390.350808][ T29] audit: type=1326 audit(1733352161.577:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.0.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 390.375833][ T29] audit: type=1326 audit(1733352161.577:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.0.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 390.405935][ T7017] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 390.509669][ T7011] loop1: detected capacity change from 0 to 8192 [ 391.144869][ T7026] syz.4.395[7026] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 391.145360][ T7026] syz.4.395[7026] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 391.211261][ T7026] syz.4.395[7026] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 391.948262][ T7039] loop3: detected capacity change from 0 to 128 [ 392.461155][ T7044] loop1: detected capacity change from 0 to 128 [ 392.567025][ T7044] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 392.585025][ T7044] ext4 filesystem being mounted at /81/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 392.757093][ T7051] loop2: detected capacity change from 0 to 8192 [ 393.020693][ T5793] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 393.054488][ T7051] netlink: 8 bytes leftover after parsing attributes in process `syz.2.407'. [ 393.064575][ T7051] netlink: 4 bytes leftover after parsing attributes in process `syz.2.407'. [ 393.182801][ T7057] loop4: detected capacity change from 0 to 512 [ 393.330174][ T7057] EXT4-fs (loop4): VFS: Can't find ext4 filesystem [ 393.995202][ T7063] infiniband syz1: set down [ 394.000091][ T7063] infiniband syz1: added syzkaller0 [ 394.412058][ T7063] RDS/IB: syz1: added [ 394.416547][ T7063] smc: adding ib device syz1 with port count 1 [ 394.423500][ T7063] smc: ib device syz1 port 1 has pnetid [ 395.869260][ T7079] loop2: detected capacity change from 0 to 128 [ 396.203703][ T29] kauditd_printk_skb: 80 callbacks suppressed [ 396.203806][ T29] audit: type=1326 audit(1733352167.477:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7082 comm="syz.3.418" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 396.233516][ T29] audit: type=1326 audit(1733352167.477:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7082 comm="syz.3.418" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 396.256042][ T29] audit: type=1804 audit(1733352167.487:535): pid=7080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.416" name="/newroot/74/file0/bus" dev="loop2" ino=1048614 res=1 errno=0 [ 396.278894][ T29] audit: type=1800 audit(1733352167.487:536): pid=7080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.416" name="bus" dev="loop2" ino=1048614 res=0 errno=0 [ 396.303589][ T29] audit: type=1326 audit(1733352167.497:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7082 comm="syz.3.418" exe="/root/syz-executor" sig=0 arch=40000003 syscall=356 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 396.327200][ T29] audit: type=1326 audit(1733352167.497:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7082 comm="syz.3.418" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 396.351651][ T29] audit: type=1326 audit(1733352167.517:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7082 comm="syz.3.418" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 396.505791][ T7080] +}[@: attempt to access beyond end of device [ 396.505791][ T7080] loop2: rw=0, sector=121, nr_sectors = 920 limit=128 [ 396.871664][ T7087] loop3: detected capacity change from 0 to 128 [ 396.889384][ T29] audit: type=1326 audit(1733352168.197:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7082 comm="syz.3.418" exe="/root/syz-executor" sig=0 arch=40000003 syscall=91 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 396.915381][ T29] audit: type=1326 audit(1733352168.197:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7082 comm="syz.3.418" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 396.938844][ T29] audit: type=1326 audit(1733352168.197:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7082 comm="syz.3.418" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 397.110920][ T7087] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 397.244387][ T7087] ext4 filesystem being mounted at /80/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 397.279591][ T75] smc: removing ib device syz1 [ 397.571355][ T7089] loop4: detected capacity change from 0 to 8192 [ 397.709380][ T7089] netlink: 8 bytes leftover after parsing attributes in process `syz.4.420'. [ 397.718804][ T7089] netlink: 4 bytes leftover after parsing attributes in process `syz.4.420'. [ 398.206015][ T7092] dccp_close: ABORT with 15584 bytes unread [ 399.361086][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 400.608522][ T7111] loop1: detected capacity change from 0 to 512 [ 400.725378][ T7111] EXT4-fs (loop1): VFS: Can't find ext4 filesystem [ 401.251295][ T7118] Invalid ELF header magic: != ELF [ 401.397915][ T29] kauditd_printk_skb: 30 callbacks suppressed [ 401.398001][ T29] audit: type=1326 audit(1733352172.727:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7122 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 401.432838][ T29] audit: type=1326 audit(1733352172.737:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7122 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 401.457491][ T29] audit: type=1326 audit(1733352172.757:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7122 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 401.480090][ T29] audit: type=1326 audit(1733352172.757:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7122 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 401.502712][ T29] audit: type=1326 audit(1733352172.767:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7122 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 401.525280][ T29] audit: type=1326 audit(1733352172.767:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7122 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 401.554555][ T29] audit: type=1326 audit(1733352172.767:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7122 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=40000003 syscall=283 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 401.579088][ T29] audit: type=1326 audit(1733352172.767:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7122 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 401.601507][ T29] audit: type=1326 audit(1733352172.767:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7122 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 401.804395][ T29] audit: type=1326 audit(1733352173.127:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7126 comm="syz.3.435" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 401.936507][ T7127] loop3: detected capacity change from 0 to 128 [ 402.148330][ T7127] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 402.153661][ T7132] loop2: detected capacity change from 0 to 2048 [ 402.193085][ T7127] ext4 filesystem being mounted at /83/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 402.358439][ T7132] loop2: p1 < > p3 p4 < > [ 402.374026][ T7132] loop2: p3 start 4284289 is beyond EOD, truncated [ 402.634070][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 403.046905][ T7143] vlan2: entered promiscuous mode [ 403.058589][ T7143] syz_tun: entered promiscuous mode [ 403.079157][ T7143] team0: Port device vlan2 added [ 403.231357][ T7145] loop1: detected capacity change from 0 to 512 [ 403.252618][ T7147] netlink: 24 bytes leftover after parsing attributes in process `syz.3.441'. [ 403.322987][ T7145] EXT4-fs (loop1): VFS: Can't find ext4 filesystem [ 403.951101][ T7155] loop4: detected capacity change from 0 to 128 [ 404.957378][ T7166] loop1: detected capacity change from 0 to 8192 [ 405.015192][ T7166] netlink: 8 bytes leftover after parsing attributes in process `syz.1.450'. [ 405.024499][ T7166] netlink: 4 bytes leftover after parsing attributes in process `syz.1.450'. [ 405.062247][ T7170] loop2: detected capacity change from 0 to 128 [ 405.142135][ T7170] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 405.167999][ T7170] ext4 filesystem being mounted at /82/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 405.493866][ T5786] Bluetooth: hci0: command 0x0406 tx timeout [ 405.500320][ T5786] Bluetooth: hci4: command 0x0406 tx timeout [ 405.518891][ T5786] Bluetooth: hci2: command 0x0406 tx timeout [ 405.526484][ T5786] Bluetooth: hci1: command 0x0406 tx timeout [ 405.533106][ T5786] Bluetooth: hci3: command 0x0406 tx timeout [ 405.730562][ T5783] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 406.424649][ T7185] loop1: detected capacity change from 0 to 512 [ 406.478778][ T7185] EXT4-fs (loop1): VFS: Can't find ext4 filesystem [ 406.680809][ T29] kauditd_printk_skb: 73 callbacks suppressed [ 406.680904][ T29] audit: type=1326 audit(1733352178.007:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7186 comm="syz.3.457" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 406.736492][ T7178] 9pnet: Could not find request transport: 0xffffffffffffffff [ 406.809443][ T29] audit: type=1326 audit(1733352178.057:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7186 comm="syz.3.457" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 406.832495][ T29] audit: type=1326 audit(1733352178.117:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7186 comm="syz.3.457" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 406.861159][ T29] audit: type=1326 audit(1733352178.127:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7186 comm="syz.3.457" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 406.886554][ T29] audit: type=1326 audit(1733352178.127:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7186 comm="syz.3.457" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 406.909306][ T29] audit: type=1326 audit(1733352178.137:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7186 comm="syz.3.457" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 406.931790][ T29] audit: type=1326 audit(1733352178.137:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7186 comm="syz.3.457" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 406.960818][ T29] audit: type=1326 audit(1733352178.137:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7186 comm="syz.3.457" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 407.500961][ T7192] loop2: detected capacity change from 0 to 8192 [ 407.602684][ T29] audit: type=1326 audit(1733352178.317:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7186 comm="syz.3.457" exe="/root/syz-executor" sig=0 arch=40000003 syscall=283 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 407.625344][ T29] audit: type=1326 audit(1733352178.547:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7186 comm="syz.3.457" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 407.943340][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.2.463'. [ 407.952915][ T7192] netlink: 4 bytes leftover after parsing attributes in process `syz.2.463'. [ 407.979775][ T7201] loop1: detected capacity change from 0 to 128 [ 408.361970][ T7203] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280 [ 408.437025][ T7204] syz.1.461: attempt to access beyond end of device [ 408.437025][ T7204] loop1: rw=0, sector=121, nr_sectors = 920 limit=128 [ 408.614520][ T7208] dccp_close: ABORT with 15584 bytes unread [ 410.839324][ T7233] syz.3.478 uses obsolete (PF_INET,SOCK_PACKET) [ 410.915609][ T7234] dccp_close: ABORT with 15584 bytes unread [ 412.253179][ T7245] loop1: detected capacity change from 0 to 128 [ 412.623239][ T29] kauditd_printk_skb: 50 callbacks suppressed [ 412.623331][ T29] audit: type=1326 audit(1733352183.927:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.490" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 412.652285][ T29] audit: type=1326 audit(1733352183.927:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.490" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 412.675099][ T29] audit: type=1326 audit(1733352183.957:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.490" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 412.714485][ T29] audit: type=1326 audit(1733352184.047:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.490" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 412.763917][ T29] audit: type=1326 audit(1733352184.097:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.490" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 412.895862][ T29] audit: type=1326 audit(1733352184.127:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.490" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 412.919218][ T29] audit: type=1326 audit(1733352184.127:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.490" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 412.941786][ T29] audit: type=1326 audit(1733352184.147:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.490" exe="/root/syz-executor" sig=0 arch=40000003 syscall=283 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 412.964922][ T29] audit: type=1326 audit(1733352184.147:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.490" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 412.991170][ T29] audit: type=1326 audit(1733352184.147:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.490" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7ffc0000 [ 413.616909][ T7263] pim6reg1: entered promiscuous mode [ 413.665627][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 413.667367][ T7263] pim6reg1: entered allmulticast mode [ 413.672264][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 415.660329][ T7287] loop3: detected capacity change from 0 to 512 [ 415.677341][ T7287] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 416.179070][ T7292] loop4: detected capacity change from 0 to 128 [ 416.214464][ T7298] netlink: 4 bytes leftover after parsing attributes in process `syz.2.507'. [ 416.242748][ T7298] veth0_macvtap: left promiscuous mode [ 416.375120][ T7301] mmap: syz.1.508 (7301) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 417.358361][ T7313] syz.1.512[7313] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 417.360357][ T7313] syz.1.512[7313] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 417.475548][ T7313] syz.1.512[7313] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 417.559661][ T7316] ===================================================== [ 417.578777][ T7316] BUG: KMSAN: uninit-value in batadv_get_vid+0x1d4/0x300 [ 417.586275][ T7316] batadv_get_vid+0x1d4/0x300 [ 417.591227][ T7316] batadv_interface_tx+0x31c/0x1db0 [ 417.596940][ T7316] dev_hard_start_xmit+0x247/0xa20 [ 417.602458][ T7316] __dev_queue_xmit+0x366a/0x57d0 [ 417.607753][ T7316] __bpf_redirect+0x1511/0x1690 [ 417.612990][ T7316] bpf_clone_redirect+0x37e/0x500 [ 417.618326][ T7316] ___bpf_prog_run+0x13fe/0xe0f0 [ 417.623700][ T7316] __bpf_prog_run512+0xc5/0xf0 [ 417.628762][ T7316] bpf_test_run+0x546/0xd20 [ 417.633661][ T7316] bpf_prog_test_run_skb+0x18c4/0x2570 [ 417.639395][ T7316] bpf_prog_test_run+0x5e5/0xa30 [ 417.644774][ T7316] __sys_bpf+0x6aa/0xd90 [ 417.649437][ T7316] __ia32_sys_bpf+0xa0/0xe0 [ 417.654339][ T7316] ia32_sys_call+0x394d/0x4180 [ 417.659348][ T7316] __do_fast_syscall_32+0xb0/0x110 [ 417.665003][ T7316] do_fast_syscall_32+0x38/0x80 [ 417.670153][ T7316] do_SYSENTER_32+0x1f/0x30 [ 417.675101][ T7316] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 417.681738][ T7316] [ 417.684343][ T7316] Uninit was created at: [ 417.688939][ T7316] kmem_cache_alloc_node_noprof+0x907/0xe00 [ 417.695280][ T7316] kmalloc_reserve+0x13d/0x4a0 [ 417.700263][ T7316] pskb_expand_head+0x226/0x1a60 [ 417.705625][ T7316] skb_ensure_writable+0x496/0x520 [ 417.710971][ T7316] bpf_clone_redirect+0x1c5/0x500 [ 417.716447][ T7316] ___bpf_prog_run+0x13fe/0xe0f0 [ 417.721651][ T7316] __bpf_prog_run512+0xc5/0xf0 [ 417.726850][ T7316] bpf_test_run+0x546/0xd20 [ 417.731592][ T7316] bpf_prog_test_run_skb+0x18c4/0x2570 [ 417.737464][ T7316] bpf_prog_test_run+0x5e5/0xa30 [ 417.742914][ T7316] __sys_bpf+0x6aa/0xd90 [ 417.747400][ T7316] __ia32_sys_bpf+0xa0/0xe0 [ 417.752149][ T7316] ia32_sys_call+0x394d/0x4180 [ 417.757290][ T7316] __do_fast_syscall_32+0xb0/0x110 [ 417.762885][ T7316] do_fast_syscall_32+0x38/0x80 [ 417.768020][ T7316] do_SYSENTER_32+0x1f/0x30 [ 417.772962][ T7316] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 417.779595][ T7316] [ 417.782089][ T7316] CPU: 1 UID: 0 PID: 7316 Comm: syz.0.515 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0 [ 417.793114][ T7316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 417.803538][ T7316] ===================================================== [ 417.810703][ T7316] Disabling lock debugging due to kernel taint [ 417.817225][ T7316] Kernel panic - not syncing: kmsan.panic set ... [ 417.823846][ T7316] CPU: 1 UID: 0 PID: 7316 Comm: syz.0.515 Tainted: G B 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0 [ 417.836208][ T7316] Tainted: [B]=BAD_PAGE [ 417.840519][ T7316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 417.850877][ T7316] Call Trace: [ 417.854337][ T7316] [ 417.857431][ T7316] dump_stack_lvl+0x216/0x2d0 [ 417.862397][ T7316] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 417.868475][ T7316] dump_stack+0x1e/0x24 [ 417.872923][ T7316] panic+0x4e2/0xcf0 [ 417.877095][ T7316] ? kmsan_get_metadata+0xd1/0x1c0 [ 417.882466][ T7316] kmsan_report+0x2c7/0x2d0 [ 417.887217][ T7316] ? is_module_text_address+0x1b3/0x250 [ 417.893019][ T7316] ? __msan_warning+0x95/0x120 [ 417.898039][ T7316] ? batadv_get_vid+0x1d4/0x300 [ 417.903217][ T7316] ? batadv_interface_tx+0x31c/0x1db0 [ 417.908868][ T7316] ? dev_hard_start_xmit+0x247/0xa20 [ 417.914373][ T7316] ? __dev_queue_xmit+0x366a/0x57d0 [ 417.919800][ T7316] ? __bpf_redirect+0x1511/0x1690 [ 417.925066][ T7316] ? bpf_clone_redirect+0x37e/0x500 [ 417.930523][ T7316] ? ___bpf_prog_run+0x13fe/0xe0f0 [ 417.935870][ T7316] ? __bpf_prog_run512+0xc5/0xf0 [ 417.941044][ T7316] ? bpf_test_run+0x546/0xd20 [ 417.945942][ T7316] ? bpf_prog_test_run_skb+0x18c4/0x2570 [ 417.951803][ T7316] ? bpf_prog_test_run+0x5e5/0xa30 [ 417.957147][ T7316] ? __sys_bpf+0x6aa/0xd90 [ 417.961780][ T7316] ? __ia32_sys_bpf+0xa0/0xe0 [ 417.966706][ T7316] ? ia32_sys_call+0x394d/0x4180 [ 417.971853][ T7316] ? __do_fast_syscall_32+0xb0/0x110 [ 417.977403][ T7316] ? do_fast_syscall_32+0x38/0x80 [ 417.982688][ T7316] ? do_SYSENTER_32+0x1f/0x30 [ 417.987620][ T7316] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 417.994493][ T7316] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 418.000528][ T7316] ? do_SYSENTER_32+0x1f/0x30 [ 418.005481][ T7316] ? filter_irq_stacks+0x60/0x1a0 [ 418.010775][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.016197][ T7316] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 418.022230][ T7316] ? batadv_interface_tx+0xc6/0x1db0 [ 418.027779][ T7316] ? filter_irq_stacks+0x60/0x1a0 [ 418.033047][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.038454][ T7316] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 418.044478][ T7316] __msan_warning+0x95/0x120 [ 418.049344][ T7316] batadv_get_vid+0x1d4/0x300 [ 418.054255][ T7316] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 418.060280][ T7316] batadv_interface_tx+0x31c/0x1db0 [ 418.065996][ T7316] ? netif_skb_features+0x11fa/0x13f0 [ 418.071582][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.076997][ T7316] ? __pfx_batadv_interface_tx+0x10/0x10 [ 418.082882][ T7316] ? __pfx_batadv_interface_tx+0x10/0x10 [ 418.088769][ T7316] dev_hard_start_xmit+0x247/0xa20 [ 418.094112][ T7316] __dev_queue_xmit+0x366a/0x57d0 [ 418.099350][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.104760][ T7316] ? __dev_queue_xmit+0x3d6/0x57d0 [ 418.110141][ T7316] __bpf_redirect+0x1511/0x1690 [ 418.115229][ T7316] bpf_clone_redirect+0x37e/0x500 [ 418.120540][ T7316] ___bpf_prog_run+0x13fe/0xe0f0 [ 418.125748][ T7316] __bpf_prog_run512+0xc5/0xf0 [ 418.130756][ T7316] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 418.137348][ T7316] ? kmsan_internal_poison_memory+0x7d/0x90 [ 418.143493][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.148896][ T7316] ? kmsan_internal_poison_memory+0x49/0x90 [ 418.155041][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.160437][ T7316] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 418.167032][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.172783][ T7316] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 418.178803][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.184204][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.189608][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.195027][ T7316] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 418.201056][ T7316] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 418.207124][ T7316] ? __pfx___bpf_prog_run512+0x10/0x10 [ 418.212867][ T7316] bpf_test_run+0x546/0xd20 [ 418.217613][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.223030][ T7316] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 418.229665][ T7316] ? kmsan_get_metadata+0x13e/0x1c0 [ 418.235074][ T7316] ? bpf_test_run+0x3af/0xd20 [ 418.240003][ T7316] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 418.246032][ T7316] bpf_prog_test_run_skb+0x18c4/0x2570 [ 418.251839][ T7316] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 418.257879][ T7316] bpf_prog_test_run+0x5e5/0xa30 [ 418.263118][ T7316] __sys_bpf+0x6aa/0xd90 [ 418.267612][ T7316] __ia32_sys_bpf+0xa0/0xe0 [ 418.272430][ T7316] ia32_sys_call+0x394d/0x4180 [ 418.277413][ T7316] __do_fast_syscall_32+0xb0/0x110 [ 418.282790][ T7316] ? switch_fpu_return+0x17/0x20 [ 418.287929][ T7316] do_fast_syscall_32+0x38/0x80 [ 418.293040][ T7316] do_SYSENTER_32+0x1f/0x30 [ 418.297800][ T7316] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 418.304415][ T7316] RIP: 0023:0xf745d579 [ 418.308666][ T7316] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 418.328543][ T7316] RSP: 002b:00000000f514657c EFLAGS: 00000206 ORIG_RAX: 0000000000000165 [ 418.337182][ T7316] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000080 [ 418.345332][ T7316] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000 [ 418.353466][ T7316] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 418.361606][ T7316] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 418.369753][ T7316] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 418.377912][ T7316] [ 418.381254][ T7316] Kernel Offset: disabled [ 418.385692][ T7316] Rebooting in 86400 seconds..