last executing test programs: 7m51.487965596s ago: executing program 3 (id=12): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'batadv_slave_1\x00'}) socket$packet(0x11, 0x2, 0x300) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0}, 0x18) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x40}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x4c}}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000300)={0x0, 0xb4, "843e11682ddcd5862a5e6e60ab0e497e02203c2f21537c7a3a3b4d014bbe253c206562805d23573e0be6a6577d3e101e0063a924cb89cc3eb7f89ccff90c3743d7156763a52dffef07ccb555f6273e6f67fe7c5126670e20d1c90e8d4f796326fcc2e081f33d493e6de8468542d7e2709b66b861da1f4b987f8aec34d8e34e130896f78396991d1b4f5e628be6fcc77092fdf9f9bc551eb0d2c54a87cd6f98fcd93006d02cd11dd35bd6096cbcd364a18c017a3b"}, &(0x7f0000000200)=0xbc) socket$inet_smc(0x2b, 0x1, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080) 7m41.658245331s ago: executing program 3 (id=23): socket$inet_smc(0x2b, 0x1, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8) close(r0) 7m41.016990142s ago: executing program 3 (id=28): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='mm_page_alloc\x00', r0, 0x0, 0xf}, 0x18) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) 7m38.52800466s ago: executing program 3 (id=29): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18) syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x248, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@oldalloc}, {@i_version}]}, 0xfd, 0x48f, &(0x7f0000000940)="$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") bpf$PROG_LOAD(0x5, 0x0, 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'}) 7m35.807362995s ago: executing program 3 (id=36): bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b00000007000000010001000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000002c7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r2 = getpid() process_vm_readv(r2, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r3 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="d80000001c0081064e81f782db44b9040a1d08040e00000000000aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) 7m32.877348649s ago: executing program 3 (id=44): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000140000e0b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = epoll_create(0x8) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040)) close_range(r2, r3, 0x0) 7m28.45894011s ago: executing program 32 (id=44): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000140000e0b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = epoll_create(0x8) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040)) close_range(r2, r3, 0x0) 5m59.123534798s ago: executing program 2 (id=418): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10) sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)={0x30, 0x0, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xfffffe24, 0x99, {0x0, 0x3}}}}}, 0x30}}, 0x4000000) 5m50.425387989s ago: executing program 2 (id=422): unshare(0x2a020400) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4000, &(0x7f0000000000)=0x7fff, 0x100000000, 0x1) r1 = openat$loop_ctrl(0xffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0x4c80, &(0x7f0000005780)={0x0, 0x0, "ac563d05d310141258e0a2a06783eb29e46b1fac57461914278705b6afba000000000000536dfdc9ce9c12d1207f8a3ad1dad7ed0fc16b2ccd00000000000000180000000c0996d78e489eef651d35ca509de7cf52e7578e9ce37710000001000032936e283ae72a63729b333fc1ee6b15fb899a2072631f76cd0a59b1709500000000000000c0df2d95b9c3fbccef0111f1fc6db466c73268074c38df1f6bf2cc88aa61ffffffff2b887e04e671d55f281047000002000000000003000000000100000039fb00", "2fc7eecad58f368bf3ba45a6f7874bf0f0a2e2d039d23b33645c7a714b200d1ec427e16f2d87c3a7f0a258b1856e10dbfadd1f9f5b294c68af413bb746e6b0803177028065618aa080c2ca8efe18fbb6c85459e9ff5c1aa9c17498a05220b09c2d859832bf5ae846009f6a415023b9a7110bda56f514841bf04e54bf592d28107037e86729ff5789dd40d9180160cf72a92609650dc97d806d75425c3cbabb3e8f59afcd807086dc9a87048f229a1c8b183c2077b18922f8dcade6cbf835b715887e9a20c69f14468fb321e017c8a2361f5300617d2ff15e5e2df6b8fa425461dc9c997020beed571b01b0ae899a7a21fe7f9dce8b2ff0374cde255fe2cd3444fa236242d0a976de3ceed2abb0bcb9e4580db4bf248fa20f27dc7c9a953b420f032e6fe0de2a657b7903f0a3d4d67908255b1ac3274313a683ad8a328816336d20dbfdc9f262073dade576891220dd05e0cb6e97bb433637adb6f42c3a040a0089d9a86b42dffeba614460c184bd405cf3749fad5a47609eeb5c48f0222ea459597a0fa855c9d6d789ed17235c6cbf62757d54c99a03b777b7af6058a33b32aa49973625747e0ff1d3c4898a1ea7e68807d9be2b9ca09de22790441964131b1e6dbf633f06c23ddb02736a741396cb1c3dbe49eabdad6f662ee642be86560e24bf2578bc93119d19b446587a8455b445e1cbcb86848331888a8a8adb0836628a73c9c41f8501ae67caa0165fca251674fcfd5f78415a4497519f0d4a79ba166a55721c4db05be7155ae7bca92f4fff5cdcf2d581d2da972ee240355984210e5927904ee74bd15da96d23e0b5bb07ce1adf2683032e8ae4dd9dd6f5bd841ef30ccdce954426f1cf29f2f35decb485f4faa36caae23e7d136317dbb6ace192dc0484d5e3cc341dee5041430dcd5f320a9f3679196bd2a2348619c4a55e090cecf0da78fdba2b25a3373a813d5e719ef2fbfea38035828e28d1666b64dbabce44140e9f0c7e8685e69d8192d1953c1dba2c2a471658538ade2e295732c4a23ca63b54252673ea15374da608ff431e56c9b74bc88b858511910a8ff6a294354093449e90994cf70a60cb108e19ad7625c27bc7934076a8a8fa8a14b06b0e94813a9ff3961e251856a0d34b728025121cf045be55d3997ca1ba4643509fb7eb84b1dbf97663f63fbf32b32f92eebff4ff420cd8c45fda163c09aa879283c282ef4bc93d416854ada56921cc6f82a67a3d024c1a828eb8d4c901f6066f8df327f694f828124d880da4f98c66087f8a825b9b01609f980a0f48c471fdcb7696e493a02a7b34420ccddae0e26b8f4db77ee712ccbc480fb8fe625d51ee2ead77637b9f7bd4a70fc21581498915c72ce999eb2a3888ad4c66c5e623d2f9c983f4c3e17714a63af06c222a62671b407a8f30619f1cb8a9efc177a18ceefc0760a27f5001124e81eeff04950364cf1881c03c1cc99b1e5dbc36ec94ed875c54a87dc19143303b2ad34738e683fdfe7e257fa5609e785e3c81dcd387bccfba8d31077b2140b06a361167ab1abb6e8c9b6e7b8918c992a7c4fce8797048bc3eba6ef7f65789b6d59ce4e4dcc5a3d44b9ef24de8996347c79cbaaaaef13dbac1dab9fb6090a757be36cf3e15bcde5bddc318bd42265371ebfe941f63a5d2dbcd9c6103ab91b5c292ae86e4dc6df13194dd81319db2ad7f51fe377196b2b87db9614cd1d572f3df9b518d36aacd8c4f454c1a61fd587642e87e8a4d4029e46064cc730e7b75efae0e6b798184b33765160696e327ce80ad8ec0a5c20e57b07b2cc19f849b1c527994b6631ae61bd9c6703966d141714bffb6cfb7708e2c6669cf33f42c8e8130d73a2bdb42bbd3316e1a2deae59b7bbe6e77518326d11714ac543143c8bc4c9cf39d84b06bf10ad463d7b9d14f5d44d98c78f5bc96793c254a612e300065a0e568234110f4f3d93b584b5767e41cb9d2514a16138d8dd650b885b6ac87ce233957dee5c1d2004fc5882d41ffcc1751d565ad92d04ce0cf0221ac7d7a0441f4024ce74ff4d3df9559026ebb5b5602ee9e8d87f1899d20e61879c417a00321e87ceac1b952e51700d384ed3b07c70fd8be0d61290b6100abc393bfd33f425892509e55350797f139b64b68e357f66a1776504ea67689ca482534308c9c7b76c7f9fbe1d1cc739dee391c0b7a781d6bade90ec2a46f617d436cc7f51eb1c94de092ccf1d7b57c31fc1c8e18b9bab9858792a129dfa62b379d22aec6129065a867bda550337e30edcfc0732a5b69559c8d45270d7df9d06b385c51a05e57280d66f5c02c7ca1f463e6ef6d1d2e3b04c6df77fd88e06197acf4d5287660e90d7b1d5d4b7410d44e36aa3652e86d9b97935fc19459bd155e497bee58013f9cbef97b669b3d8fbd77a286a50b86aa11e4376e44275297bcdcb252ad8ca4742a6cd66563c4ba6318b765899d853043877b6400d654ba955fa6376857b6307d443168211dde06a156d8908269ab033c9de9546b3cc41583e7cae7038720d909fed58b52f7bc7aba12b1be3a2e23474af919426326556cf37d584c4e905f8d84604fdb192f0993b213107fae21c323d69f3113d2f5d6371a49a40b98030868c824ff0916556044bc32ce80497c46c01e254e2accfd01aeabf18c545b907cd5fd0b00a82c42e644690ad1099dc3ec5e0df8c5d783ec93e6712857137eee4d06762fa12233d1ba4e7bc597d970a434ce615ffe432f6289bd297f7973f29e8460391c44cab29f2e21f639e7aea6c0c7e57a35585573b88ce6a2beed7807278b73a9eb21d82a477f7f9eef24c1cf0b7fddee8b3dfa633cb37c3f1ac53f34acd6dc0e29494d644f9bdce8d65e734fa52d1cdd0f147d48f02000b31fd0dcd2766cf8ea8b92bd340195c6833e4320eaf125ad61fa8772ac380f363fd2b3b5df23aa0e08034cfe5963fada592e851f5b274e6defae6cb1dbc5f29c52855352d8417262780ba7c8040cac21a0fda09a76af7a58b66f9a89d35f7a957548cf49f7117542a2f0f2c1c8bb371eba256aaac009798a97a27a62256fafad3988bb9b577eb00c06d28a91c85aa20f176e44e52b37a8068bfec1434c1277e68619e8459f83359976c81ca49462e1b9abf83fed9d4e08d9fdc6626bd73099ff8c2e95384e0517eff3e02a1882ef5a804989ad5a9536628f3989631f610ba9172c92c44c372ff48d590be9896e741012b3ea511727a1476d706debdea7216e1bf2461fda61a7bc6db99c098fe4e32eafbe2ac15782ddfd1609cec300015b542c835ff195cd779699d8ced1edd571f3734ef6373c526553ee9684674cd5ae1e8f390065ed761257cbb120168dcebacc94f22a15d6bc8444afff61601305c9212f086ae5a322968983568bfaed808fd935a8260709781a58bf3ce77e94912e0361c149076abd1aa186ac38e65d879e92bc58bc7adde9339f712b8a07d798ad573318559a31c1e64354bfc5f3e9a195118cab384d9b7d192305e5fe6e8eaebd7403095e3833fb3a6425e7b8b7ae0515d5cba8a19c2b49e33cd9bedbac96f01c5a24ddc36b35f16cfd55ec584f18ecf7313a812d5d44b6ac02808ab4389e7ed6426454d9f4c69a288d36a211f27c4770cad16daba3c97e0d51a7012ba7ee4881daf21ca720c0a14d54852516c8342989ed328d13366be829416218e0d2cc9c708a06669873b4a7a32e35dbc59d5f7eeebb7fb3c307e84c287c2e3a921e94149a90a56e4c8bcf9548442961c388ba8cb9e2f881582131cce0898c86ad57795a5984ca55e6159bdfab2f7c1a925301eb6a33bf33baf957f18d648b55e0c613db371343cc7ce89f91423629e644b286bba4d8b4cbb116e30da5f7a4bba8606093fe5d6bad8bc5f98fb1ac476bf8724a8008a725ed3bed86c763f2eac7d77f1ef9a96702e13ec5080bb82606741e08fde37aceb1dd32c11afa92be85ff46ec2010ce17d5cf92e91243ccb1070000002a746ca1f1135b1b0638ffe19c8b31644a08f9f1990685e0f458f096daae910e9f36a83a8ba01dde2b5d0d3097b1cf03be7aee0a8c7c4c8672d45c6310e7d2e5558143ad9e79a9751b8ac54a3e86fdfd9320ef69c7130460e259462be21db94fcbd3181903130f3f982f4c8011bfe62bd5903ad8713281be0fa8de38553ea6c3e566152518bd80fbeb5863f0de7c7cf26606b48b63c89d9f9c798816e7e1e1dbb3946a1048ebf383f117ac9bf565a277086fd9cc0250dd22cf1d2c3cf58fa227f4f2c201be2df79230b6a95333f3a3ded0d11f9b647da9b4cb70fa02631552df57b7a6009b1b36d8f7c9f2fc7ac53912f29e79fdb57acecd431adf2dca1c0e7d31d7ff38ce7b3089416d9ab4f7474f1b68141228d4350ad7541676caf115e6c4eeecc706e0268c2eda740cce7a22e1090fb0216608a13c50316ee056414d0dfce99ab3f9c4619df20d7e0c254c3e9a9717f140b1a4ecdba1ca5ce3bb252083a69bb107338184f55d064c912745aa81588de2299fb9f77201c5ded7cbf572b64c0d6d300344226355d1a4cb8088e43780e01e190e9b877ba14431d115296e31c2cc0266c0df82da2530ac1e094cdfee42fcfdb8ee5d03c251d24d5b0fefafa7b9c2a2e73a814e768d57a5429372dce6266dc547a4c93a05dece1e7601a658d4855843db66ba8ecae9cd1703d66a3aff1beabe77c0ce96772d570c73f88d028eb8716dcb5e49792b39f1a5a4275a4f83d8ae2ea8883bbfaa42050392da86d7a4a22835553cd2fdcd0cca630ad003c4a15ae0b7a7cee875b5a08f0ef70d86187054260001c9698419bf1569b1802439cd3fe320d9272b853e7b34a322a5fbade5cd3ad0e1c4b07d111981494215d3b82c2fe8a7697052a3b7b1ef3fb22d5e33e57c8d422b5e3dc9cf1a5df5401559c56610f44a4e409b12aa82bf661c17a2bb76e469583531f782b55da4eabbb68cb39bf32844398fe0ffb79e4c95e3e3c3ed3e9ac304cf1980b7cde8fcf76966cca196748e4ad7a02debd6ccc4a3e9b8adaa7dc668a76cbd137b2e6fbc673900000100000000009bf5ed16d5f5818535802fa7627a7d352f4216ba3f84481394c0500b7aea67e838d5dd0422eeb940ad42546e1f3c2cd85c53abbaada51b5571323d7ea53d436c2d349befca87909c1dc2a23d2db53ecc272b80896b65fa0cad8854e6b36e052ecbe677024b9614a180fc54c20fac7ed4d16e7ba17a368f0a00a036d23ae4b19ad3d99642ff054850233b60e706a4f575e49234acc76211a5bace9b8417eb6d986dab4bc6b8b510ee0477f6b8738f00709b7f35aac1730017c0037e5c40404d145b527a29500fab1e3c00"}) openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.pending_reads\x00', 0x414080, 0x18d) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff) socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00'}) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=@newlink={0x48, 0x10, 0x401, 0xff7f, 0x0, {0x0, 0x0, 0x0, r5, 0x40000}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x18, 0x2, 0x0, 0x1, @val={0x14, 0x1, {{0x0, 0x0, 0x0, r5, 0x60044, 0x42242}}}}}}]}, 0x48}}, 0x0) 5m48.458517694s ago: executing program 2 (id=427): r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') ppoll(&(0x7f0000000140)=[{r0}], 0x1, 0x0, 0x0, 0x0) 5m46.905946162s ago: executing program 2 (id=432): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10) sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)={0x30, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xfffffe24, 0x99, {0x0, 0x3}}}}}, 0x30}}, 0x4000000) 5m37.270528423s ago: executing program 2 (id=437): unshare(0x2a020400) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4000, &(0x7f0000000000)=0x7fff, 0x100000000, 0x1) r1 = openat$loop_ctrl(0xffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0x4c80, &(0x7f0000005780)={0x0, 0x0, "ac563d05d310141258e0a2a06783eb29e46b1fac57461914278705b6afba000000000000536dfdc9ce9c12d1207f8a3ad1dad7ed0fc16b2ccd00000000000000180000000c0996d78e489eef651d35ca509de7cf52e7578e9ce37710000001000032936e283ae72a63729b333fc1ee6b15fb899a2072631f76cd0a59b1709500000000000000c0df2d95b9c3fbccef0111f1fc6db466c73268074c38df1f6bf2cc88aa61ffffffff2b887e04e671d55f281047000002000000000003000000000100000039fb00", "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"}) openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.pending_reads\x00', 0x414080, 0x18d) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff) socket$nl_route(0x10, 0x3, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x1, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=@newlink={0x48, 0x10, 0x401, 0xff7f, 0x0, {0x0, 0x0, 0x0, r4, 0x40000}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x18, 0x2, 0x0, 0x1, @val={0x14, 0x1, {{0x0, 0x0, 0x0, r4, 0x60044, 0x42242}}}}}}]}, 0x48}}, 0x0) 5m35.65754923s ago: executing program 2 (id=443): fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x1, 0x1, 0x2, 0x2000}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) syz_pidfd_open(r0, 0x0) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) lseek(0xffffffffffffffff, 0xcbe, 0x0) 5m20.235299493s ago: executing program 33 (id=443): fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x1, 0x1, 0x2, 0x2000}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) syz_pidfd_open(r0, 0x0) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) lseek(0xffffffffffffffff, 0xcbe, 0x0) 5m10.177016461s ago: executing program 1 (id=549): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18) sendmsg$nl_route_sched(r0, 0x0, 0x0) 5m9.36224276s ago: executing program 1 (id=554): bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) fchmodat(0xffffffffffffffff, 0x0, 0x8) 5m8.655224026s ago: executing program 1 (id=558): socket$nl_xfrm(0x10, 0x3, 0x6) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setscheduler(0x0, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3) 5m5.135382296s ago: executing program 1 (id=562): r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x2, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10) sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000) r2 = dup3(r1, r0, 0x0) recvmmsg(r2, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='smaps_rollup\x00') preadv(r3, &(0x7f0000000080)=[{&(0x7f0000000000)=""/92, 0x5c}], 0x1, 0x0, 0x0) r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2688f54c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 5m3.777699419s ago: executing program 1 (id=569): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa33"], 0xfdef) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x5, 0x47, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x80040600, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 5m3.08141886s ago: executing program 1 (id=571): socket$nl_xfrm(0x10, 0x3, 0x6) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x3) 4m47.54896861s ago: executing program 34 (id=571): socket$nl_xfrm(0x10, 0x3, 0x6) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x3) 9.267102424s ago: executing program 5 (id=1518): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='percpu_alloc_percpu\x00', r1, 0x0, 0x5}, 0x18) bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000880)=ANY=[@ANYBLOB="0600000004000000be7000005c"], 0x48) 7.778175982s ago: executing program 5 (id=1524): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x200801f, &(0x7f0000000040)={[{@nobh}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xc80}}]}, 0xfe, 0x4e5, &(0x7f0000000380)="$eJzs3dFrW18dAPDvvU22detMpz7Mgdtwk3bo0nZ1W/FhKog+DdT5PmubldK0GW26rWVoh3+AIKKCL/rki+AfIMj+BBEG+i4qiuimDz5MryS5qV2XtB1LE3/t5wOnOefmJt/v6SUn99x7yQ3g2LocEeMRkWVZdi0iSvnyNC+x1SqN9V69fDrXKElk2b2/JZHky9rvdTJ/PJO/7FREfO3LEd9M3o67trG5NFutVlbz9kR9OXmdZZvXF5dnFyoLlZXp6albM7dnbs5M9qSfoxFx54t/+sF3f/alO7/69OPf3//L+LdaHWzZ2Y9eanW92PxftBUiYvUwgg1IodnDlpsDzgUAgL019vc/HBGfiIhrUYqh5t4cAAAAcJRknxuJ10nr/B8AAABwNKURMRJJWs6v9x2JNC2XW9fwfjROp9XaWv1TWWn7eMFoFNMHi9XKZH7twGgUk0Z7Kr/Gtt2+sas9HRHnIuL7peFmuzxXq84P9MgHAAAAHB9nds3//1lqzf8BAACAI2Z00AkAAAAAh878HwAAAI4+838AAAA40r5y926jZO37X88/2lhfqj26Pl9ZWyovr8+V52qrD8sLtdpC8zf7lvd7v2qt9vAzsbL+ZKJeWatPrG1s3l+ura/U7y++cQtsAAAAoI/OXXr+uyQitj47nEZElux4rhiRDe1cudD//IDDk77Lyn88vDyA/hsadALAwNilh+OrOOgEgIHbbxzoevHOr3ufCwAAcDjGPrZ9/r9ZgOMjP/+fJINOBOg75//h+Dox6ASAgSnutQdgUgBHXnqAj/r7n//PsndKCgAA6LmRZknScj4PGIk0LZcjzjZvC1BMHixWK5MR8aGI+G2peLLRnmq+MnF4AAAAAAAAAAAAAAAAAAAAAAAAAAAOKMuSyLoY3l4HAAAA+CCLSP+c5Pf/GitdHdl9fOBE8q9S5PcJffzjez98Mluvr041lv99e3n9R/nyG/0+egEAAAB00p6nt+fxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANBLr14+nWuXfsb96xciYrRT/EKcaj6eimJEnP5HEoUdr0siYqgH8beeRcT5TvGTRloxmmexO34aEcMDjn+mB/HhOHveGH8+3+nzl8bl5mPnz18hL++r+/iXbo9/Q13Gv7Od3jB9e9GFF7+Y6Br/WcSFQufxpx0/6RL/ygH7+I2vb252ey77acRYx++f5I1YE0nh4cTaxub1xeXZhcpCZWV6eurWzO2ZmzOTEw8Wq5X8b8cY3/v4L/+zV/9Pd4k/uk//rx6w//9+8eTlR1rV4q6nivGTLBu/0nn7n+8Sv/3d98l8czfaY+36Vqu+08Wf/+bipT36P9+l//tt//ED9v/aV7/zhwOuCgD0wdrG5tJstVpZVVE5tMpw9DHobOy1Tnsntg/5fDsP9X+xCd65MsBBCQAAOBT/2+kfdCYAAAAAAAAAAAAAAAAAAABwfO33M2DRg58T2x1zazBdBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADY038DAAD//wKdyz4=") sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0000000000040000240012800b0001006272696467650000140002800500250001000000050018"], 0x44}}, 0x0) r0 = socket$inet6(0x10, 0x3, 0x0) sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b) 6.939787993s ago: executing program 6 (id=1529): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000024000180060005004e230000060001000200000008000300ac1414aa0800060001"], 0x38}, 0x1, 0x0, 0x0, 0x4000011}, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r2}, 0x10) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000580)={0x14, r1, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x235272c27981e554}, 0x0) 6.335564457s ago: executing program 5 (id=1531): r0 = socket$nl_generic(0x10, 0x3, 0x10) rseq(0x0, 0x0, 0x0, 0x0) unshare(0x24060400) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x18208e, &(0x7f0000005a00), 0x1, 0x42f, &(0x7f0000000940)="$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") prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r1) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000009c0)=""/151, 0x97}, {&(0x7f00000000c0)=""/190, 0xbe}, {&(0x7f0000000200)=""/134, 0x86}, {&(0x7f0000000340)=""/190, 0xbe}, {&(0x7f0000001640)=""/4073, 0xfe9}], 0x5}, 0x4}], 0x1, 0x40000000, 0x0) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16, @ANYBLOB="030704707900000000000100040004000180"], 0x18}}, 0x0) socket$nl_route(0x10, 0x3, 0x0) r2 = socket$can_raw(0x1d, 0x3, 0x1) capset(&(0x7f0000000400)={0x20071026}, &(0x7f0000000040)={0x200004, 0x200000, 0x0, 0x0, 0x8, 0x7}) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', 0x0}) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYBLOB="380000001800010000000000000000000a03000000000000000000000c001600080001000500000008000400", @ANYRES32=r4, @ANYBLOB="0600150007"], 0x38}}, 0x0) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) r7 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0) getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) r8 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0) ioctl$TIOCL_GETKMSGREDIRECT(r6, 0x4b66, &(0x7f0000000000)) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000240)=[{{0x2}, {0x2, 0x1, 0x1, 0x1}}, {{0x2, 0x0, 0x1, 0x1}, {0x1, 0x1}}], 0x10) 5.81881129s ago: executing program 6 (id=1535): bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/14], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e80000006c00010029bd7000fcdbdf2500000000", @ANYRES32, @ANYBLOB="001000008000000008000f002000000014003500726f7365300000000000000000000000a40034801400350070696d367265673000000020000000001400350076657468305f6d614176746170000000140035006d61637674617030020000000000000014003500677265300000000000000000000000001400350076657468305f746f5f626174616476001400350001657468315f6d6163767461700000001400350067726530000000000000000000000000140035006261746164765f736c6176655f31000008000f"], 0xe8}}, 0x0) 5.190908617s ago: executing program 0 (id=1536): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x28, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='signal_generate\x00', r1}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a0079"], 0x44}}, 0x0) 5.177612208s ago: executing program 4 (id=1537): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x20000, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x8000000004) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r2) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r2, 0x9) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) sendmmsg(r3, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x28, 0x0, 0x9, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1d}]}]}, 0x28}}, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, &(0x7f0000000100)) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r6, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r6, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800) writev(r1, 0x0, 0x0) 4.230687627s ago: executing program 4 (id=1539): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0xec}}, 0x0) 4.09191971s ago: executing program 0 (id=1540): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0a00000003000000ff0f000007"], 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000200)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) 3.942990197s ago: executing program 4 (id=1541): r0 = socket$kcm(0x10, 0x2, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000120000000c"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000ac0)="d80000001c0081064e81f782db44b9040a1d08040000000000000aa1180002000607002603600e12080b0f0000810401a8001605200001400200000803604e0cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee422fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef5d2defd5ccae8d3fb7c27a1059ae31c60e2234d732", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) 3.722852605s ago: executing program 6 (id=1542): bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) creat(&(0x7f00000002c0)='./file0\x00', 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x8fff5], 0x0, 0x0, 0x1f, 0x1}}, 0x3c) 3.352393714s ago: executing program 5 (id=1543): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f0000000a80)=ANY=[@ANYBLOB="180000000000002000000000ff000000850000000f000000850000000500000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="7c010000100033060000000000000000fc000000000000000000000000000000ffffffff00000000000000000000000000004000000080040000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1414000000000000000000000000000000000032000000fe80000000000000000000000000001a2703000000000000000000000000000000000000000000000000000000000000ff0f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008f000000000000000000000029bd7000000000000a00040000000000000000001c00200000004e2200000000ac1414bb000000000000000000000000480002"], 0x17c}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 3.317664575s ago: executing program 4 (id=1544): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) write$tun(0xffffffffffffffff, 0x0, 0x0) syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0) 3.061248282s ago: executing program 0 (id=1545): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000024000180060005004e230000060001000200000008000300ac1414aa0800060001"], 0x38}, 0x1, 0x0, 0x0, 0x4000011}, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r2}, 0x10) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000580)={0x14, r1, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x235272c27981e554}, 0x0) 2.861449291s ago: executing program 7 (id=1546): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x20000, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x8000000004) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r2) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r2, 0x9) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) sendmmsg(r3, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x28, 0x0, 0x9, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1d}]}]}, 0x28}}, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, &(0x7f0000000100)) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r6, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r6, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800) writev(r1, 0x0, 0x0) 2.834529019s ago: executing program 5 (id=1547): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) open_tree(0xffffffffffffff9c, 0x0, 0x1) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x509, &(0x7f0000000b00)="$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") 2.375336063s ago: executing program 0 (id=1548): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00') pread64(r1, &(0x7f0000001240)=""/102400, 0x200000, 0x0) 2.016388611s ago: executing program 7 (id=1549): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x20000, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x8000000004) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r2) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r2, 0x9) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) sendmmsg(r3, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x28, 0x0, 0x9, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1d}]}]}, 0x28}}, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, &(0x7f0000000100)) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r6, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r6, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800) writev(r1, 0x0, 0x0) 2.013375416s ago: executing program 6 (id=1550): r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000380)={0x0, 0xc1ba, 0x0, 0x3, 0x3d9}, &(0x7f0000000240)=0x0, &(0x7f0000000340)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10) syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x38, 0x3, r0, 0x0, 0x0, 0x0, 0x1, 0x1, {0x3}}) io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0x0) 1.707810673s ago: executing program 7 (id=1551): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0xec}}, 0x0) 1.662474573s ago: executing program 4 (id=1552): bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/14], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e80000006c00010029bd7000fcdbdf2500000000", @ANYRES32, @ANYBLOB="001000008000000008000f002000000014003500726f7365300000000000000000000000a40034801400350070696d367265673000000020000000001400350076657468305f6d614176746170000000140035006d61637674617030020000000000000014003500677265300000000000000000000000001400350076657468305f746f5f626174616476001400350001657468315f6d6163767461700000001400350067726530000000000000000000000000140035006261746164765f736c6176655f31000008000f"], 0xe8}}, 0x0) 1.199904182s ago: executing program 5 (id=1553): r0 = socket$nl_generic(0x10, 0x3, 0x10) rseq(0x0, 0x0, 0x0, 0x0) unshare(0x24060400) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x18208e, &(0x7f0000005a00), 0x1, 0x42f, &(0x7f0000000940)="$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") prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r1) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000009c0)=""/151, 0x97}, {&(0x7f00000000c0)=""/190, 0xbe}, {&(0x7f0000000200)=""/134, 0x86}, {&(0x7f0000000340)=""/190, 0xbe}, {&(0x7f0000001640)=""/4073, 0xfe9}], 0x5}, 0x4}], 0x1, 0x40000000, 0x0) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16, @ANYBLOB="030704707900000000000100040004000180"], 0x18}}, 0x0) socket$nl_route(0x10, 0x3, 0x0) r2 = socket$can_raw(0x1d, 0x3, 0x1) capset(&(0x7f0000000400)={0x20071026}, &(0x7f0000000040)={0x200004, 0x200000, 0x0, 0x0, 0x8, 0x7}) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', 0x0}) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYBLOB="380000001800010000000000000000000a03000000000000000000000c001600080001000500000008000400", @ANYRES32=r4, @ANYBLOB="0600150007"], 0x38}}, 0x0) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) r7 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0) getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) r8 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0) ioctl$TIOCL_GETKMSGREDIRECT(r6, 0x4b66, &(0x7f0000000000)) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000240)=[{{0x2}, {0x2, 0x1, 0x1, 0x1}}, {{0x2, 0x0, 0x1, 0x1}, {0x1, 0x1}}], 0x10) 1.154153475s ago: executing program 7 (id=1554): r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r1}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[], 0x1c}}, 0x4002) 1.149479055s ago: executing program 0 (id=1555): r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000080000000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff1, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10) creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca) mount(0x0, 0x0, 0x0, 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) move_mount(r0, &(0x7f0000000040)='./file0\x00', r0, &(0x7f0000000180)='./file0\x00', 0x220) 700.093885ms ago: executing program 6 (id=1556): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0xf, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r4, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r5, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r6, 0x0) r7 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r7, &(0x7f0000000100)=[{&(0x7f00000002c0)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f6400f95023eed19400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100080c2994000000", 0x58}], 0x1) syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), r7) 547.161563ms ago: executing program 4 (id=1557): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f0000000a80)=ANY=[@ANYBLOB="180000000000002000000000ff000000850000000f000000850000000500000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="7c010000100033060000000000000000fc000000000000000000000000000000ffffffff00000000000000000000000000004000000080040000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1414000000000000000000000000000000000032000000fe80000000000000000000000000001a2703000000000000000000000000000000000000000000000000000000000000ff0f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008f000000000000000000000029bd7000000000000a00040000000000000000001c00200000004e2200000000ac1414bb000000000000000000000000480002"], 0x17c}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 331.210378ms ago: executing program 0 (id=1558): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000024000180060005004e230000060001000200000008000300ac1414aa0800060001"], 0x38}, 0x1, 0x0, 0x0, 0x4000011}, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r2}, 0x10) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000580)={0x14, r1, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x235272c27981e554}, 0x0) 201.537109ms ago: executing program 6 (id=1559): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x20000, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x8000000004) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r2) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r2, 0x9) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) sendmmsg(r3, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x28, 0x0, 0x9, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1d}]}]}, 0x28}}, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, &(0x7f0000000100)) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r6, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r6, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800) writev(r1, 0x0, 0x0) 157.215318ms ago: executing program 7 (id=1560): fsetxattr(0xffffffffffffffff, &(0x7f0000000080)=@known='trusted.overlay.upper\x00', 0x0, 0x0, 0x0) fgetxattr(0xffffffffffffffff, &(0x7f0000000000)=@known='trusted.overlay.upper\x00', 0x0, 0x0) 0s ago: executing program 7 (id=1561): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b000000000000"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) name_to_handle_at(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x1200) r2 = socket$packet(0x11, 0x3, 0x300) r3 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'gretap0\x00'}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) pipe(&(0x7f0000002480)={0xffffffffffffffff, 0xffffffffffffffff}) read(r7, &(0x7f0000019440)=""/102391, 0x18ff7) write$P9_RVERSION(r8, &(0x7f0000000880)={0x13, 0x65, 0xffff, 0x2, 0x6, '9P2000'}, 0x13) dup2(r4, r5) kernel console output (not intermixed with test programs): 1.552578][ T8986] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 541.569346][ T8986] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 541.870798][ T8990] EXT4-fs (loop6): revision level too high, forcing read-only mode [ 541.944885][ T8990] EXT4-fs (loop6): orphan cleanup on readonly fs [ 542.021759][ T8990] Quota error (device loop6): dq_insert_tree: Quota tree root isn't allocated! [ 542.031530][ T8990] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota [ 542.042305][ T8990] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.950: Failed to acquire dquot type 1 [ 542.235986][ T8990] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.950: bg 0: block 40: padding at end of block bitmap is not set [ 542.360671][ T8990] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 542.545107][ T8990] EXT4-fs (loop6): 1 truncate cleaned up [ 542.553125][ T8990] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 542.708559][ T5780] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 543.064125][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 543.179748][ T9012] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 543.610228][ T9014] loop0: detected capacity change from 0 to 128 [ 543.695332][ T9021] loop4: detected capacity change from 0 to 128 [ 543.970900][ T9014] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 544.079773][ T9014] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 544.928047][ T5780] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 545.432769][ T9038] loop6: detected capacity change from 0 to 512 [ 545.610061][ T9038] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 545.624827][ T9038] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 546.020683][ T9055] loop5: detected capacity change from 0 to 512 [ 546.101576][ T9054] loop4: detected capacity change from 0 to 164 [ 546.191547][ T9054] Unable to read rock-ridge attributes [ 546.258897][ T9055] EXT4-fs: Ignoring removed nobh option [ 546.295172][ T9054] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 546.632717][ T9055] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 546.633059][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 546.641675][ T9055] EXT4-fs (loop5): orphan cleanup on readonly fs [ 546.736579][ T9055] Quota error (device loop5): dq_insert_tree: Quota tree root isn't allocated! [ 546.746388][ T9055] Quota error (device loop5): qtree_write_dquot: Error -5 occurred while creating quota [ 546.756655][ T9055] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.968: Failed to acquire dquot type 1 [ 546.892797][ T9055] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.968: bg 0: block 40: padding at end of block bitmap is not set [ 546.932475][ T9055] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 547.030491][ T9055] EXT4-fs (loop5): 1 truncate cleaned up [ 547.038629][ T9055] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 547.285728][ T9071] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 547.755882][ T6109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 548.121780][ T9073] loop7: detected capacity change from 0 to 128 [ 548.364903][ T9085] loop5: detected capacity change from 0 to 764 [ 548.498988][ T9085] netlink: 4 bytes leftover after parsing attributes in process `syz.5.976'. [ 548.508272][ T9085] bridge_slave_1: left allmulticast mode [ 548.514363][ T9085] bridge_slave_1: left promiscuous mode [ 548.525970][ T9085] bridge0: port 2(bridge_slave_1) entered disabled state [ 548.558100][ T9085] bridge_slave_0: left allmulticast mode [ 548.564469][ T9085] bridge_slave_0: left promiscuous mode [ 548.571198][ T9085] bridge0: port 1(bridge_slave_0) entered disabled state [ 548.912844][ T9093] loop6: detected capacity change from 0 to 512 [ 549.051036][ T29] audit: type=1326 audit(1734405655.138:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9092 comm="syz.6.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 549.075063][ T29] audit: type=1326 audit(1734405655.148:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9092 comm="syz.6.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 549.309390][ T29] audit: type=1326 audit(1734405655.348:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9095 comm="syz.6.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f752efb85c5 code=0x7ffc0000 [ 549.332684][ T29] audit: type=1326 audit(1734405655.368:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9092 comm="syz.6.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 549.359699][ T29] audit: type=1326 audit(1734405655.368:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9092 comm="syz.6.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 549.384091][ T29] audit: type=1326 audit(1734405655.398:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9092 comm="syz.6.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 549.406882][ T29] audit: type=1326 audit(1734405655.438:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9092 comm="syz.6.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 549.430128][ T29] audit: type=1326 audit(1734405655.438:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9092 comm="syz.6.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 549.596160][ T9097] loop0: detected capacity change from 0 to 512 [ 549.915272][ T9097] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 549.929341][ T9097] ext4 filesystem being mounted at /212/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 550.068039][ T9106] loop5: detected capacity change from 0 to 164 [ 550.177622][ T9106] Unable to read rock-ridge attributes [ 550.247161][ T9106] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 550.684528][ T5780] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 551.210115][ T9119] loop5: detected capacity change from 0 to 512 [ 551.319065][ T9119] EXT4-fs: Ignoring removed nobh option [ 551.497375][ T9119] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 551.508850][ T9119] EXT4-fs (loop5): orphan cleanup on readonly fs [ 551.543541][ T9119] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.986: Failed to acquire dquot type 1 [ 551.557241][ T9124] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 551.605722][ T9119] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.986: bg 0: block 40: padding at end of block bitmap is not set [ 551.663787][ T9119] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 551.770249][ T9119] EXT4-fs (loop5): 1 truncate cleaned up [ 551.778782][ T9119] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 551.962989][ T6109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 552.264582][ T9132] loop4: detected capacity change from 0 to 128 [ 552.451786][ T9138] netlink: 68 bytes leftover after parsing attributes in process `syz.5.991'. [ 552.469511][ T9132] syz.4.989: attempt to access beyond end of device [ 552.469511][ T9132] loop4: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 553.928183][ T51] Bluetooth: hci4: command 0x0406 tx timeout [ 554.291458][ T9147] loop6: detected capacity change from 0 to 512 [ 554.438617][ T9148] loop5: detected capacity change from 0 to 164 [ 554.567975][ T9148] Unable to read rock-ridge attributes [ 554.616471][ T9147] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 554.629789][ T9147] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 554.791944][ T9148] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 554.825084][ T9151] loop4: detected capacity change from 0 to 512 [ 554.850518][ T29] kauditd_printk_skb: 30 callbacks suppressed [ 554.850598][ T29] audit: type=1326 audit(1734405660.948:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9150 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 554.879429][ C1] vkms_vblank_simulate: vblank timer overrun [ 555.121628][ T29] audit: type=1326 audit(1734405661.018:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9150 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 555.144049][ C1] vkms_vblank_simulate: vblank timer overrun [ 555.473659][ T29] audit: type=1326 audit(1734405661.548:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9150 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 555.496130][ C1] vkms_vblank_simulate: vblank timer overrun [ 555.697139][ T29] audit: type=1326 audit(1734405661.678:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9150 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 555.720304][ T29] audit: type=1326 audit(1734405661.708:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9158 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f213f3b85c5 code=0x7ffc0000 [ 555.743595][ T29] audit: type=1326 audit(1734405661.798:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9150 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 555.767082][ T29] audit: type=1326 audit(1734405661.798:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9150 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 555.809145][ T29] audit: type=1326 audit(1734405661.798:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9150 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 555.834117][ T29] audit: type=1326 audit(1734405661.878:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9150 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 555.857111][ T29] audit: type=1326 audit(1734405661.878:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9150 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 556.377376][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 557.421824][ T9170] loop7: detected capacity change from 0 to 512 [ 557.437473][ T9170] EXT4-fs: Ignoring removed nobh option [ 557.804073][ T9170] EXT4-fs (loop7): revision level too high, forcing read-only mode [ 557.849189][ T9170] EXT4-fs (loop7): orphan cleanup on readonly fs [ 557.901414][ T9170] EXT4-fs error (device loop7): ext4_acquire_dquot:6938: comm syz.7.1001: Failed to acquire dquot type 1 [ 557.936518][ T9170] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.1001: bg 0: block 40: padding at end of block bitmap is not set [ 557.979478][ T9170] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 557.992353][ T9170] EXT4-fs (loop7): 1 truncate cleaned up [ 558.000093][ T9170] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 558.036322][ T9185] loop4: detected capacity change from 0 to 128 [ 558.121541][ T7864] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 558.458651][ T9185] syz.4.1004: attempt to access beyond end of device [ 558.458651][ T9185] loop4: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 558.494518][ T9189] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 559.415561][ T9201] loop4: detected capacity change from 0 to 164 [ 559.448752][ T9196] loop7: detected capacity change from 0 to 512 [ 559.625177][ T9201] Unable to read rock-ridge attributes [ 560.033415][ T9196] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 560.046715][ T9196] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 560.745225][ T29] kauditd_printk_skb: 23 callbacks suppressed [ 560.745407][ T29] audit: type=1326 audit(1734405666.828:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9213 comm="syz.4.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 560.774964][ C0] vkms_vblank_simulate: vblank timer overrun [ 560.781937][ T29] audit: type=1326 audit(1734405666.828:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9213 comm="syz.4.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 560.804563][ C0] vkms_vblank_simulate: vblank timer overrun [ 560.820820][ T29] audit: type=1326 audit(1734405666.888:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9213 comm="syz.4.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 560.873685][ T29] audit: type=1326 audit(1734405666.978:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9213 comm="syz.4.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 560.875152][ T29] audit: type=1326 audit(1734405666.978:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9213 comm="syz.4.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 560.940160][ T29] audit: type=1326 audit(1734405666.978:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.4.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f213f3b85c5 code=0x7ffc0000 [ 561.027462][ T29] audit: type=1326 audit(1734405667.108:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.4.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 561.063032][ T7864] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 561.066490][ T29] audit: type=1326 audit(1734405667.168:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9213 comm="syz.4.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 561.315265][ T9228] loop0: detected capacity change from 0 to 128 [ 561.385064][ T29] audit: type=1326 audit(1734405667.488:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9213 comm="syz.4.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 561.385296][ T29] audit: type=1326 audit(1734405667.488:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9213 comm="syz.4.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 561.645640][ T9228] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 561.703867][ T9228] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 562.019109][ T9233] loop7: detected capacity change from 0 to 512 [ 562.028547][ T9233] EXT4-fs: Ignoring removed nobh option [ 562.172320][ T9233] EXT4-fs (loop7): revision level too high, forcing read-only mode [ 562.182499][ T9233] EXT4-fs (loop7): orphan cleanup on readonly fs [ 562.622223][ T9233] EXT4-fs error (device loop7): ext4_acquire_dquot:6938: comm syz.7.1016: Failed to acquire dquot type 1 [ 562.690231][ T9233] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.1016: bg 0: block 40: padding at end of block bitmap is not set [ 562.772933][ T9233] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 562.806728][ T9233] EXT4-fs (loop7): 1 truncate cleaned up [ 562.983562][ T9233] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 563.302752][ T9233] netlink: 83 bytes leftover after parsing attributes in process `syz.7.1016'. [ 563.692302][ T9247] loop4: detected capacity change from 0 to 128 [ 564.021340][ T7864] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 564.190309][ T5780] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 565.038622][ T9255] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 565.799762][ T9263] loop7: detected capacity change from 0 to 164 [ 565.824769][ T9267] loop4: detected capacity change from 0 to 2048 [ 565.930725][ T9267] loop4: p1 < > p4 [ 566.021415][ T9263] Unable to read rock-ridge attributes [ 566.187607][ T9267] loop4: p4 size 8388608 extends beyond EOD, truncated [ 566.272408][ T9273] loop6: detected capacity change from 0 to 512 [ 566.627078][ T9277] loop5: detected capacity change from 0 to 512 [ 566.668543][ T29] kauditd_printk_skb: 20 callbacks suppressed [ 566.668620][ T29] audit: type=1326 audit(1734405672.768:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9276 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 566.816576][ T29] audit: type=1326 audit(1734405672.808:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9276 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 566.925517][ T29] audit: type=1326 audit(1734405673.018:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9287 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f38869b85c5 code=0x7ffc0000 [ 566.925746][ T29] audit: type=1326 audit(1734405673.018:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9276 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 566.925959][ T29] audit: type=1326 audit(1734405673.028:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9276 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 566.963488][ T9286] loop7: detected capacity change from 0 to 512 [ 567.023574][ T29] audit: type=1326 audit(1734405673.108:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9276 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 567.052822][ T29] audit: type=1326 audit(1734405673.108:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9276 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 567.078572][ T29] audit: type=1326 audit(1734405673.108:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9276 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 567.102600][ T29] audit: type=1326 audit(1734405673.108:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9276 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 567.125565][ T29] audit: type=1326 audit(1734405673.108:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9276 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 567.147995][ C1] vkms_vblank_simulate: vblank timer overrun [ 567.162784][ T9286] EXT4-fs: Ignoring removed nobh option [ 567.199771][ T9290] loop0: detected capacity change from 0 to 128 [ 567.325217][ T9286] EXT4-fs (loop7): revision level too high, forcing read-only mode [ 567.345256][ T9286] EXT4-fs (loop7): orphan cleanup on readonly fs [ 567.366586][ T9273] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 567.380081][ T9273] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 567.423945][ T9286] EXT4-fs error (device loop7): ext4_acquire_dquot:6938: comm syz.7.1030: Failed to acquire dquot type 1 [ 567.489633][ T9286] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.1030: bg 0: block 40: padding at end of block bitmap is not set [ 567.546021][ T9290] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 567.658233][ T9290] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 567.833761][ T9286] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 567.865666][ T9286] EXT4-fs (loop7): 1 truncate cleaned up [ 567.879154][ T9286] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 567.905841][ T9286] netlink: 83 bytes leftover after parsing attributes in process `syz.7.1030'. [ 567.995122][ T7864] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 568.499766][ T9306] loop7: detected capacity change from 0 to 128 [ 568.563883][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 568.620392][ T9309] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 568.624858][ T5780] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 568.688583][ T8361] udevd[8361]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 568.758739][ T5983] udevd[5983]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 569.250477][ T9314] loop5: detected capacity change from 0 to 164 [ 569.280829][ T9314] Unable to read rock-ridge attributes [ 572.316851][ T9339] loop6: detected capacity change from 0 to 512 [ 572.356326][ T9339] EXT4-fs: Ignoring removed nobh option [ 572.413356][ T9339] EXT4-fs (loop6): revision level too high, forcing read-only mode [ 572.415425][ T9339] EXT4-fs (loop6): orphan cleanup on readonly fs [ 572.420364][ T9339] __quota_error: 33 callbacks suppressed [ 572.420442][ T9339] Quota error (device loop6): dq_insert_tree: Quota tree root isn't allocated! [ 572.420539][ T9339] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota [ 572.420723][ T9339] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.1043: Failed to acquire dquot type 1 [ 572.440639][ T9339] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1043: bg 0: block 40: padding at end of block bitmap is not set [ 572.446041][ T9339] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 572.449059][ T9339] EXT4-fs (loop6): 1 truncate cleaned up [ 572.453088][ T9339] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 572.576226][ T9346] loop4: detected capacity change from 0 to 128 [ 572.596928][ T9339] netlink: 83 bytes leftover after parsing attributes in process `syz.6.1043'. [ 572.966582][ T9346] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 572.987274][ T9347] loop5: detected capacity change from 0 to 512 [ 573.120411][ T9346] ext4 filesystem being mounted at /240/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 573.231014][ T29] audit: type=1326 audit(1734405679.328:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9334 comm="syz.5.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 573.254250][ T29] audit: type=1326 audit(1734405679.328:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9334 comm="syz.5.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 573.277453][ T29] audit: type=1326 audit(1734405679.328:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9334 comm="syz.5.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 573.651940][ T9353] loop7: detected capacity change from 0 to 512 [ 573.742492][ T29] audit: type=1800 audit(1734405679.468:368): pid=9343 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1045" name="file0" dev="loop4" ino=12 res=0 errno=0 [ 573.764391][ T29] audit: type=1326 audit(1734405679.708:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9334 comm="syz.5.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 573.786823][ C1] vkms_vblank_simulate: vblank timer overrun [ 573.794661][ T29] audit: type=1326 audit(1734405679.708:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9334 comm="syz.5.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 573.820985][ T29] audit: type=1326 audit(1734405679.748:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9354 comm="syz.5.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f38869b85c5 code=0x7ffc0000 [ 573.844761][ T29] audit: type=1326 audit(1734405679.828:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9334 comm="syz.5.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 574.026263][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 574.074900][ T5777] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 574.454884][ T9353] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 574.468826][ T9353] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 575.064053][ T7864] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 576.710011][ T9397] loop0: detected capacity change from 0 to 512 [ 576.742480][ T9397] EXT4-fs: Ignoring removed nobh option [ 576.823668][ T9397] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 576.840384][ T9397] EXT4-fs (loop0): orphan cleanup on readonly fs [ 576.966946][ T9397] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.1058: Failed to acquire dquot type 1 [ 577.083349][ T9397] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1058: bg 0: block 40: padding at end of block bitmap is not set [ 577.145878][ T9397] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 577.184761][ T9397] EXT4-fs (loop0): 1 truncate cleaned up [ 577.202983][ T9397] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 577.632807][ T9404] loop4: detected capacity change from 0 to 512 [ 577.665235][ T29] kauditd_printk_skb: 34 callbacks suppressed [ 577.665315][ T29] audit: type=1326 audit(1734405683.758:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9403 comm="syz.4.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 577.695191][ T29] audit: type=1326 audit(1734405683.758:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9403 comm="syz.4.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 577.724981][ T29] audit: type=1326 audit(1734405683.758:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9403 comm="syz.4.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 577.748644][ T29] audit: type=1326 audit(1734405683.768:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9406 comm="syz.4.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f213f3b85c5 code=0x7ffc0000 [ 577.771992][ T29] audit: type=1326 audit(1734405683.768:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9403 comm="syz.4.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 577.795405][ T29] audit: type=1326 audit(1734405683.768:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9403 comm="syz.4.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 577.828875][ T29] audit: type=1326 audit(1734405683.798:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9403 comm="syz.4.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 577.851846][ T29] audit: type=1326 audit(1734405683.798:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9403 comm="syz.4.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 577.875010][ T29] audit: type=1326 audit(1734405683.798:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9403 comm="syz.4.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 577.898087][ T29] audit: type=1326 audit(1734405683.798:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9403 comm="syz.4.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f213f321f29 code=0x7ffc0000 [ 578.086235][ T9397] netlink: 83 bytes leftover after parsing attributes in process `syz.0.1058'. [ 578.676899][ T9405] loop5: detected capacity change from 0 to 128 [ 578.853520][ T9414] loop6: detected capacity change from 0 to 512 [ 579.103605][ T9405] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 579.144233][ T9414] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 579.159914][ T9414] ext4 filesystem being mounted at /98/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 579.293678][ T9405] ext4 filesystem being mounted at /188/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 579.429394][ T5780] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 579.764507][ T9420] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 580.835983][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 580.870993][ T6109] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 582.189973][ T9452] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 582.740565][ T9457] loop0: detected capacity change from 0 to 512 [ 582.807912][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 582.807986][ T29] audit: type=1326 audit(1734405688.908:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9456 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 582.841785][ T29] audit: type=1326 audit(1734405688.918:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9456 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 582.964010][ T29] audit: type=1326 audit(1734405688.988:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9464 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fcbecdb85c5 code=0x7ffc0000 [ 582.986880][ T29] audit: type=1326 audit(1734405688.988:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9456 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 583.009761][ T29] audit: type=1326 audit(1734405688.988:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9456 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 583.035617][ T29] audit: type=1326 audit(1734405688.988:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9456 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 583.187525][ T29] audit: type=1326 audit(1734405689.188:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9464 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 583.248973][ T9459] loop4: detected capacity change from 0 to 512 [ 583.307260][ T9462] loop6: detected capacity change from 0 to 128 [ 583.471396][ T9462] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 583.591977][ T9462] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 583.687586][ T9459] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 583.700906][ T9459] ext4 filesystem being mounted at /249/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 583.791542][ T29] audit: type=1800 audit(1734405689.888:425): pid=9462 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1078" name="file0" dev="loop6" ino=12 res=0 errno=0 [ 583.812175][ C0] vkms_vblank_simulate: vblank timer overrun [ 583.918212][ T29] audit: type=1804 audit(1734405690.008:426): pid=9462 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1078" name="/newroot/102/file1/file0" dev="loop6" ino=12 res=1 errno=0 [ 584.144256][ T9477] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1080'. [ 584.596354][ T9482] kvm: kvm [9481]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x6d00000800 [ 584.632358][ T5777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 585.104650][ T7555] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 585.443647][ T9495] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 586.701899][ T9512] loop6: detected capacity change from 0 to 512 [ 586.832491][ T29] audit: type=1326 audit(1734405692.918:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.6.1091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 587.362731][ T9521] loop7: detected capacity change from 0 to 512 [ 587.708706][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 587.715596][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 587.904292][ T9521] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 587.917536][ T9521] ext4 filesystem being mounted at /72/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 588.010594][ T9531] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1096'. [ 588.224879][ T9527] loop0: detected capacity change from 0 to 128 [ 588.329319][ T9527] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 588.363373][ T9527] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 588.468246][ T29] kauditd_printk_skb: 7 callbacks suppressed [ 588.468330][ T29] audit: type=1800 audit(1734405694.568:435): pid=9527 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1095" name="file0" dev="loop0" ino=12 res=0 errno=0 [ 588.547334][ T29] audit: type=1804 audit(1734405694.598:436): pid=9534 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1095" name="/newroot/230/file1/file0" dev="loop0" ino=12 res=1 errno=0 [ 588.628206][ T9543] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 588.884263][ T7864] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 589.599358][ T5780] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 590.391397][ T9570] loop7: detected capacity change from 0 to 512 [ 590.483107][ T29] audit: type=1326 audit(1734405696.518:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.7.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 590.505568][ C0] vkms_vblank_simulate: vblank timer overrun [ 590.518160][ T29] audit: type=1326 audit(1734405696.518:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.7.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 590.518379][ T29] audit: type=1326 audit(1734405696.548:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9571 comm="syz.7.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdd795b85c5 code=0x7ffc0000 [ 590.518592][ T29] audit: type=1326 audit(1734405696.548:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.7.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 590.518807][ T29] audit: type=1326 audit(1734405696.558:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.7.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 590.519026][ T29] audit: type=1326 audit(1734405696.558:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.7.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 590.519298][ T29] audit: type=1326 audit(1734405696.558:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.7.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 590.519513][ T29] audit: type=1326 audit(1734405696.558:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.7.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 591.070683][ T9582] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1111'. [ 591.197418][ T9583] loop0: detected capacity change from 0 to 512 [ 591.598763][ T9583] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 591.612499][ T9583] ext4 filesystem being mounted at /232/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 593.825923][ T5780] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 593.903534][ T9620] loop7: detected capacity change from 0 to 128 [ 594.143488][ T9620] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 594.257642][ T9620] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 594.584095][ T29] kauditd_printk_skb: 31 callbacks suppressed [ 594.584281][ T29] audit: type=1800 audit(1734405700.648:476): pid=9614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1118" name="file0" dev="loop7" ino=12 res=0 errno=0 [ 594.939306][ T29] audit: type=1804 audit(1734405701.038:477): pid=9614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1118" name="/newroot/77/file1/file0" dev="loop7" ino=12 res=1 errno=0 [ 597.201369][ T7864] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 597.243252][ T9648] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1129'. [ 597.252685][ T9648] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1129'. [ 597.265440][ T9648] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1129'. [ 597.276147][ T9648] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1129'. [ 597.435134][ T9644] kvm: kvm [9642]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x6d00000800 [ 597.459776][ T9656] loop5: detected capacity change from 0 to 512 [ 597.697743][ T9656] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 597.711109][ T9656] ext4 filesystem being mounted at /204/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 598.386554][ T6109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 599.038880][ T9681] loop4: detected capacity change from 0 to 128 [ 599.266489][ T9681] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 599.298355][ T9681] ext4 filesystem being mounted at /263/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 599.495139][ T29] audit: type=1800 audit(1734405705.568:478): pid=9679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1137" name="file0" dev="loop4" ino=12 res=0 errno=0 [ 599.519744][ T29] audit: type=1804 audit(1734405705.578:479): pid=9679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1137" name="/newroot/263/file1/file0" dev="loop4" ino=12 res=1 errno=0 [ 600.838757][ T9706] loop0: detected capacity change from 0 to 764 [ 600.945721][ T9709] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1143'. [ 600.960427][ T9709] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1143'. [ 600.971433][ T9709] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1143'. [ 600.981409][ T9709] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1143'. [ 601.021247][ T9711] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1147'. [ 601.078521][ T5777] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 601.274124][ T9706] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1145'. [ 601.283895][ T9706] bridge_slave_1: left allmulticast mode [ 601.289790][ T9706] bridge_slave_1: left promiscuous mode [ 601.296718][ T9706] bridge0: port 2(bridge_slave_1) entered disabled state [ 601.321602][ T9718] loop7: detected capacity change from 0 to 512 [ 601.339965][ T9718] EXT4-fs: Ignoring removed nobh option [ 601.403346][ T9706] bridge_slave_0: left promiscuous mode [ 601.410221][ T9706] bridge0: port 1(bridge_slave_0) entered disabled state [ 601.514122][ T9720] loop4: detected capacity change from 0 to 512 [ 601.660606][ T9718] EXT4-fs (loop7): revision level too high, forcing read-only mode [ 601.676779][ T9718] EXT4-fs (loop7): orphan cleanup on readonly fs [ 601.820072][ T9718] Quota error (device loop7): dq_insert_tree: Quota tree root isn't allocated! [ 601.829980][ T9718] Quota error (device loop7): qtree_write_dquot: Error -5 occurred while creating quota [ 601.840368][ T9718] EXT4-fs error (device loop7): ext4_acquire_dquot:6938: comm syz.7.1148: Failed to acquire dquot type 1 [ 602.108789][ T9720] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 602.123667][ T9720] ext4 filesystem being mounted at /264/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 602.135568][ T9718] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.1148: bg 0: block 40: padding at end of block bitmap is not set [ 602.228306][ T9718] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 602.349414][ T9718] EXT4-fs (loop7): 1 truncate cleaned up [ 602.357389][ T9718] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 602.394778][ T9718] netlink: 47 bytes leftover after parsing attributes in process `syz.7.1148'. [ 602.404881][ T9718] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1148'. [ 602.550117][ T7864] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 602.611139][ T9733] loop6: detected capacity change from 0 to 2048 [ 602.739410][ T9733] loop6: p1 < > p4 [ 602.816282][ T9733] loop6: p4 size 8388608 extends beyond EOD, truncated [ 603.472446][ T5777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 603.896551][ T5136] loop6: p1 < > p4 [ 603.909231][ T5136] loop6: p4 size 8388608 extends beyond EOD, truncated [ 604.534215][ T9763] loop7: detected capacity change from 0 to 128 [ 604.701591][ T9768] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1158'. [ 604.832608][ T9763] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 604.923190][ T9771] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1159'. [ 604.932606][ T9771] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1159'. [ 604.945395][ T9771] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1159'. [ 604.955831][ T9771] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1159'. [ 605.012952][ T9763] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 605.199111][ T9778] loop0: detected capacity change from 0 to 764 [ 605.473687][ T9786] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1161'. [ 605.516564][ T29] audit: type=1800 audit(1734405711.338:480): pid=9763 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1156" name="file0" dev="loop7" ino=12 res=0 errno=0 [ 605.643336][ T9789] loop6: detected capacity change from 0 to 512 [ 605.683263][ T9789] EXT4-fs: Ignoring removed nobh option [ 606.039776][ T9789] EXT4-fs (loop6): revision level too high, forcing read-only mode [ 606.121287][ T9789] EXT4-fs (loop6): orphan cleanup on readonly fs [ 606.166072][ T7864] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 606.197495][ T9789] Quota error (device loop6): dq_insert_tree: Quota tree root isn't allocated! [ 606.207193][ T9789] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota [ 606.217510][ T9789] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.1162: Failed to acquire dquot type 1 [ 606.283959][ T9789] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1162: bg 0: block 40: padding at end of block bitmap is not set [ 606.361477][ T5936] udevd[5936]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory [ 606.434900][ T8361] udevd[8361]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory [ 606.452961][ T9789] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 606.499919][ T9789] EXT4-fs (loop6): 1 truncate cleaned up [ 606.507763][ T9789] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 606.601435][ T9789] netlink: 47 bytes leftover after parsing attributes in process `syz.6.1162'. [ 606.610914][ T9789] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1162'. [ 606.851564][ T9802] loop7: detected capacity change from 0 to 512 [ 606.964262][ T8361] udevd[8361]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory [ 607.043846][ T5983] udevd[5983]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory [ 607.144677][ T9802] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 607.158154][ T9802] ext4 filesystem being mounted at /86/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 607.181141][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 607.835721][ T7864] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 608.514227][ T9815] loop5: detected capacity change from 0 to 2048 [ 608.764080][ T9815] loop5: p1 < > p4 [ 608.820800][ T9815] loop5: p4 size 8388608 extends beyond EOD, truncated [ 608.879940][ T9826] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1173'. [ 609.004059][ T9830] loop7: detected capacity change from 0 to 128 [ 609.116274][ T9832] kvm: kvm [9829]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0xde00000080 [ 609.127093][ T9832] kvm: kvm [9829]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0xfd00000000 [ 609.143970][ T9832] kvm: kvm [9829]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x17d00000000 [ 609.161679][ T9832] kvm: kvm [9829]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x2c800000000 [ 609.177010][ T9832] kvm: kvm [9829]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x3c800000000 [ 609.192229][ T9832] kvm: kvm [9829]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4c800000000 [ 609.207258][ T9832] kvm: kvm [9829]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x5c800000000 [ 609.222616][ T9832] kvm: kvm [9829]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x6c800000000 [ 609.237745][ T9832] kvm: kvm [9829]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x7c800000000 [ 609.259845][ T9832] kvm: kvm [9829]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x8c800000000 [ 609.701502][ T5136] loop5: p1 < > p4 [ 609.725124][ T9830] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 609.747113][ T5136] loop5: p4 size 8388608 extends beyond EOD, truncated [ 609.778146][ T9830] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 609.964811][ T29] audit: type=1800 audit(1734405716.038:481): pid=9830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1174" name="file0" dev="loop7" ino=12 res=0 errno=0 [ 609.985879][ T29] audit: type=1804 audit(1734405716.038:482): pid=9830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1174" name="/newroot/88/file1/file0" dev="loop7" ino=12 res=1 errno=0 [ 610.119530][ T9848] loop6: detected capacity change from 0 to 512 [ 610.128617][ T9848] EXT4-fs: Ignoring removed nobh option [ 610.180200][ T9847] loop0: detected capacity change from 0 to 512 [ 610.425662][ T29] audit: type=1326 audit(1734405716.518:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9845 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 610.592959][ T5983] udevd[5983]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory [ 610.608355][ T8361] udevd[8361]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory [ 610.672997][ T29] audit: type=1326 audit(1734405716.738:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9845 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 610.690177][ T9859] loop4: detected capacity change from 0 to 512 [ 610.741568][ T9848] EXT4-fs (loop6): revision level too high, forcing read-only mode [ 610.832638][ T29] audit: type=1326 audit(1734405716.838:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9845 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 610.856667][ T9848] EXT4-fs (loop6): orphan cleanup on readonly fs [ 610.899399][ T9848] Quota error (device loop6): dq_insert_tree: Quota tree root isn't allocated! [ 610.910427][ T9848] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota [ 610.921816][ T9848] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.1178: Failed to acquire dquot type 1 [ 610.985908][ T29] audit: type=1326 audit(1734405717.078:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9845 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 611.009462][ T29] audit: type=1326 audit(1734405717.078:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9845 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 611.053081][ T9848] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1178: bg 0: block 40: padding at end of block bitmap is not set [ 611.095755][ T8355] udevd[8355]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory [ 611.131343][ T8361] udevd[8361]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory [ 611.136949][ T9854] loop5: detected capacity change from 0 to 764 [ 611.158768][ T9848] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 611.213836][ T29] audit: type=1326 audit(1734405717.138:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9845 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 611.244586][ T9859] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 611.257757][ T9859] ext4 filesystem being mounted at /271/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 611.305293][ T9848] EXT4-fs (loop6): 1 truncate cleaned up [ 611.313197][ T9848] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 611.390321][ T7864] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 611.418274][ T9868] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1176'. [ 611.588648][ T9848] netlink: 47 bytes leftover after parsing attributes in process `syz.6.1178'. [ 611.603740][ T9848] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1178'. [ 612.136770][ T9873] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1181'. [ 612.216274][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 612.308861][ T5777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 613.664555][ T9894] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1188'. [ 613.976194][ T9901] loop7: detected capacity change from 0 to 128 [ 614.085222][ T9901] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 614.099242][ T9904] loop0: detected capacity change from 0 to 512 [ 614.233210][ T9901] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 614.345978][ T9909] loop4: detected capacity change from 0 to 512 [ 614.424614][ T9909] EXT4-fs: Ignoring removed nobh option [ 614.587235][ T9909] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 614.666288][ T9909] EXT4-fs (loop4): orphan cleanup on readonly fs [ 614.731450][ T9909] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1193: Failed to acquire dquot type 1 [ 614.842887][ T9909] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1193: bg 0: block 40: padding at end of block bitmap is not set [ 614.904696][ T9909] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 615.114246][ T9909] EXT4-fs (loop4): 1 truncate cleaned up [ 615.122457][ T9909] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 615.184853][ T7864] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 615.415001][ T9923] netlink: 47 bytes leftover after parsing attributes in process `syz.4.1193'. [ 615.424571][ T9923] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1193'. [ 615.468846][ T9922] loop0: detected capacity change from 0 to 764 [ 615.733196][ T9929] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1195'. [ 616.179042][ T5777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 617.034247][ T9944] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1201'. [ 617.044059][ T9944] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1201'. [ 617.053616][ T9944] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1201'. [ 617.063077][ T9944] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1201'. [ 617.563963][ T9955] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1204'. [ 617.706140][ T9958] loop4: detected capacity change from 0 to 512 [ 617.850811][ T29] kauditd_printk_skb: 25 callbacks suppressed [ 617.850888][ T29] audit: type=1326 audit(1734405723.948:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 617.880916][ T29] audit: type=1326 audit(1734405723.968:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 618.039689][ T9963] loop5: detected capacity change from 0 to 128 [ 618.141863][ T29] audit: type=1326 audit(1734405724.008:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 618.169279][ T29] audit: type=1326 audit(1734405724.008:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 618.193440][ T29] audit: type=1326 audit(1734405724.058:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 618.216382][ T29] audit: type=1326 audit(1734405724.118:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 618.239160][ T29] audit: type=1326 audit(1734405724.118:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 618.265312][ T29] audit: type=1326 audit(1734405724.128:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 618.289031][ T29] audit: type=1326 audit(1734405724.128:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 618.311914][ T29] audit: type=1326 audit(1734405724.128:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 618.334794][ T9963] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 618.377706][ T9963] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 618.997283][ T9978] loop4: detected capacity change from 0 to 512 [ 619.053265][ T9978] EXT4-fs: Ignoring removed nobh option [ 619.155465][ T6109] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 619.193459][ T9978] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 619.215020][ T9978] EXT4-fs (loop4): orphan cleanup on readonly fs [ 619.254079][ T9978] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1210: Failed to acquire dquot type 1 [ 619.341913][ T9978] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1210: bg 0: block 40: padding at end of block bitmap is not set [ 619.417976][ T9978] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 619.420851][ T9981] loop7: detected capacity change from 0 to 764 [ 619.512808][ T9978] EXT4-fs (loop4): 1 truncate cleaned up [ 619.665219][ T9981] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1212'. [ 619.724413][ T9978] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 619.853324][ T9981] bridge_slave_1: left allmulticast mode [ 619.859352][ T9981] bridge_slave_1: left promiscuous mode [ 619.867056][ T9981] bridge0: port 2(bridge_slave_1) entered disabled state [ 619.945680][ T9978] netlink: 47 bytes leftover after parsing attributes in process `syz.4.1210'. [ 620.017719][ T9981] bridge_slave_0: left promiscuous mode [ 620.024949][ T9981] bridge0: port 1(bridge_slave_0) entered disabled state [ 620.708083][ T5777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 621.036154][T10000] __nla_validate_parse: 1 callbacks suppressed [ 621.036235][T10000] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1216'. [ 621.054211][T10000] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1216'. [ 621.063593][T10000] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1216'. [ 621.072942][T10000] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1216'. [ 621.136888][T10002] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1219'. [ 621.370518][T10008] loop0: detected capacity change from 0 to 512 [ 622.107018][T10014] loop6: detected capacity change from 0 to 128 [ 622.324401][T10014] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 622.413718][T10014] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 623.485756][T10038] loop0: detected capacity change from 0 to 512 [ 623.510447][T10038] EXT4-fs: Ignoring removed nobh option [ 623.622725][T10038] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 623.631839][T10038] EXT4-fs (loop0): orphan cleanup on readonly fs [ 623.659596][ T7555] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 623.757865][T10038] __quota_error: 59 callbacks suppressed [ 623.757948][T10038] Quota error (device loop0): dq_insert_tree: Quota tree root isn't allocated! [ 623.774192][T10038] Quota error (device loop0): qtree_write_dquot: Error -5 occurred while creating quota [ 623.788343][T10038] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.1227: Failed to acquire dquot type 1 [ 623.959364][T10038] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1227: bg 0: block 40: padding at end of block bitmap is not set [ 624.258423][T10043] loop4: detected capacity change from 0 to 764 [ 624.268331][T10038] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 624.373102][T10038] EXT4-fs (loop0): 1 truncate cleaned up [ 624.380880][T10038] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 624.485626][T10043] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1228'. [ 624.495037][T10043] bridge_slave_1: left allmulticast mode [ 624.508201][T10043] bridge_slave_1: left promiscuous mode [ 624.515510][T10043] bridge0: port 2(bridge_slave_1) entered disabled state [ 624.577491][T10038] netlink: 47 bytes leftover after parsing attributes in process `syz.0.1227'. [ 624.587055][T10038] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1227'. [ 624.626205][T10043] bridge_slave_0: left promiscuous mode [ 624.633659][T10043] bridge0: port 1(bridge_slave_0) entered disabled state [ 625.401281][T10065] loop6: detected capacity change from 0 to 128 [ 625.582232][T10065] syz.6.1234: attempt to access beyond end of device [ 625.582232][T10065] loop6: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 625.739761][ T5780] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 626.080656][T10073] loop5: detected capacity change from 0 to 512 [ 626.940764][T10082] loop6: detected capacity change from 0 to 128 [ 627.327210][T10088] loop0: detected capacity change from 0 to 512 [ 627.403848][T10082] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 627.464539][T10082] ext4 filesystem being mounted at /131/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 627.622959][T10088] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 627.636177][T10088] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 627.652787][ T29] audit: type=1800 audit(1734405733.748:579): pid=10082 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1240" name="file0" dev="loop6" ino=12 res=0 errno=0 [ 627.793132][ T29] audit: type=1804 audit(1734405733.808:580): pid=10099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1240" name="/newroot/131/file1/file0" dev="loop6" ino=12 res=1 errno=0 [ 628.244978][ T5780] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 628.454465][ T7555] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 628.781347][T10112] loop7: detected capacity change from 0 to 764 [ 629.024631][T10116] loop4: detected capacity change from 0 to 512 [ 629.045453][T10116] EXT4-fs: Ignoring removed nobh option [ 629.046337][T10121] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1248'. [ 629.233044][T10124] loop5: detected capacity change from 0 to 128 [ 629.443282][T10116] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 629.493773][T10116] EXT4-fs (loop4): orphan cleanup on readonly fs [ 629.658087][T10116] Quota error (device loop4): dq_insert_tree: Quota tree root isn't allocated! [ 629.667749][T10116] Quota error (device loop4): qtree_write_dquot: Error -5 occurred while creating quota [ 629.678012][T10116] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1249: Failed to acquire dquot type 1 [ 629.875366][T10116] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1249: bg 0: block 40: padding at end of block bitmap is not set [ 629.989512][T10116] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 630.123277][T10116] EXT4-fs (loop4): 1 truncate cleaned up [ 630.136925][T10116] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 630.263240][T10116] netlink: 47 bytes leftover after parsing attributes in process `syz.4.1249'. [ 630.824100][ T5777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 630.973378][T10141] loop5: detected capacity change from 0 to 512 [ 631.417946][T10145] loop6: detected capacity change from 0 to 128 [ 631.620187][T10145] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 631.646453][T10145] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 631.835700][T10157] loop4: detected capacity change from 0 to 512 [ 631.992416][ T29] audit: type=1800 audit(1734405738.068:581): pid=10145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1257" name="file0" dev="loop6" ino=12 res=0 errno=0 [ 632.013618][ T29] audit: type=1804 audit(1734405738.068:582): pid=10148 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1257" name="/newroot/135/file1/file0" dev="loop6" ino=12 res=1 errno=0 [ 632.464990][T10157] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 632.479010][T10157] ext4 filesystem being mounted at /285/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 633.120110][T10174] loop7: detected capacity change from 0 to 764 [ 633.197100][ T7555] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 633.324055][T10177] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1263'. [ 633.441376][ T5777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 634.209700][T10187] loop6: detected capacity change from 0 to 128 [ 634.296306][T10187] syz.6.1265: attempt to access beyond end of device [ 634.296306][T10187] loop6: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 634.811153][T10194] loop7: detected capacity change from 0 to 512 [ 634.917069][T10194] EXT4-fs: Ignoring removed nobh option [ 634.932376][T10193] loop0: detected capacity change from 0 to 512 [ 634.997991][T10194] EXT4-fs (loop7): revision level too high, forcing read-only mode [ 635.303003][T10194] EXT4-fs (loop7): orphan cleanup on readonly fs [ 635.497141][T10194] Quota error (device loop7): dq_insert_tree: Quota tree root isn't allocated! [ 635.506923][T10194] Quota error (device loop7): qtree_write_dquot: Error -5 occurred while creating quota [ 635.517245][T10194] EXT4-fs error (device loop7): ext4_acquire_dquot:6938: comm syz.7.1269: Failed to acquire dquot type 1 [ 635.541652][T10194] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.1269: bg 0: block 40: padding at end of block bitmap is not set [ 635.578385][T10194] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 635.635479][T10194] EXT4-fs (loop7): 1 truncate cleaned up [ 635.917563][T10194] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 636.304668][T10194] netlink: 47 bytes leftover after parsing attributes in process `syz.7.1269'. [ 636.711097][T10216] loop6: detected capacity change from 0 to 128 [ 636.918764][ T7864] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 636.946723][T10216] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 636.969588][T10216] ext4 filesystem being mounted at /138/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 637.158364][ T29] audit: type=1800 audit(1734405743.258:583): pid=10215 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1275" name="file0" dev="loop6" ino=12 res=0 errno=0 [ 637.180313][ T29] audit: type=1804 audit(1734405743.258:584): pid=10216 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1275" name="/newroot/138/file1/file0" dev="loop6" ino=12 res=1 errno=0 [ 637.460195][T10225] loop0: detected capacity change from 0 to 512 [ 637.481949][ T7555] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 637.641733][T10232] loop5: detected capacity change from 0 to 764 [ 637.764657][T10225] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 637.778705][T10225] ext4 filesystem being mounted at /267/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 638.117591][T10242] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1279'. [ 638.513795][T10247] loop7: detected capacity change from 0 to 128 [ 638.758829][T10247] syz.7.1281: attempt to access beyond end of device [ 638.758829][T10247] loop7: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 638.976310][ T5780] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 639.225343][T10254] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1285'. [ 639.254428][T10253] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 641.045325][T10272] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1290'. [ 642.224201][T10291] loop6: detected capacity change from 0 to 764 [ 642.313431][T10292] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1295'. [ 642.561580][ T29] audit: type=1326 audit(1734405748.618:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.4.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 642.585410][ T29] audit: type=1326 audit(1734405748.618:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.4.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 642.608323][ T29] audit: type=1326 audit(1734405748.648:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10295 comm="syz.4.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f213f3b85c5 code=0x7ffc0000 [ 642.635421][ T29] audit: type=1326 audit(1734405748.648:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.4.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 642.660777][ T29] audit: type=1326 audit(1734405748.658:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.4.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 642.683855][ T29] audit: type=1326 audit(1734405748.658:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.4.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 642.706756][ T29] audit: type=1326 audit(1734405748.658:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.4.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 642.733891][ T29] audit: type=1326 audit(1734405748.658:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.4.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 642.759318][ T29] audit: type=1326 audit(1734405748.658:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.4.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f213f321f29 code=0x7ffc0000 [ 642.782285][ T29] audit: type=1326 audit(1734405748.658:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.4.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 643.124369][T10291] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1297'. [ 643.133790][T10291] bridge_slave_1: left allmulticast mode [ 643.144591][T10291] bridge_slave_1: left promiscuous mode [ 643.151355][T10291] bridge0: port 2(bridge_slave_1) entered disabled state [ 643.192769][T10291] bridge_slave_0: left promiscuous mode [ 643.199912][T10291] bridge0: port 1(bridge_slave_0) entered disabled state [ 643.560241][T10306] loop5: detected capacity change from 0 to 128 [ 644.015585][T10306] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 644.330681][T10306] ext4 filesystem being mounted at /239/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 645.247138][T10320] loop7: detected capacity change from 0 to 128 [ 645.378931][T10322] loop0: detected capacity change from 0 to 512 [ 645.485044][T10320] syz.7.1305: attempt to access beyond end of device [ 645.485044][T10320] loop7: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 645.543712][T10322] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 645.557990][T10322] ext4 filesystem being mounted at /273/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 645.684323][ T6109] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 646.372440][ T5780] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 647.201317][T10334] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 647.940868][T10338] netlink: 84 bytes leftover after parsing attributes in process `syz.5.1311'. [ 649.332338][ T29] kauditd_printk_skb: 32 callbacks suppressed [ 649.332419][ T29] audit: type=1326 audit(1734405755.288:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10346 comm="syz.5.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 649.361602][ T29] audit: type=1326 audit(1734405755.288:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10346 comm="syz.5.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 649.387484][ T29] audit: type=1326 audit(1734405755.348:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10350 comm="syz.5.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f38869b85c5 code=0x7ffc0000 [ 649.411425][ T29] audit: type=1326 audit(1734405755.348:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10346 comm="syz.5.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 649.434346][ T29] audit: type=1326 audit(1734405755.358:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10346 comm="syz.5.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 649.457663][ T29] audit: type=1326 audit(1734405755.378:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10346 comm="syz.5.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 649.507915][ T29] audit: type=1326 audit(1734405755.578:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10350 comm="syz.5.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 649.531407][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 649.538608][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 649.620366][ T29] audit: type=1326 audit(1734405755.628:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10346 comm="syz.5.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 649.834357][ T29] audit: type=1326 audit(1734405755.838:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10346 comm="syz.5.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 649.857298][ T29] audit: type=1326 audit(1734405755.838:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10346 comm="syz.5.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 649.929646][T10352] loop0: detected capacity change from 0 to 128 [ 650.310908][T10352] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 650.348958][T10352] ext4 filesystem being mounted at /275/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 650.417297][T10363] loop6: detected capacity change from 0 to 764 [ 650.581896][T10370] loop4: detected capacity change from 0 to 128 [ 650.988388][T10376] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1316'. [ 651.239396][T10378] loop5: detected capacity change from 0 to 512 [ 651.251082][T10378] EXT4-fs: Ignoring removed nobh option [ 651.273897][T10378] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 651.284140][T10378] EXT4-fs (loop5): orphan cleanup on readonly fs [ 651.467844][T10378] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1320: Failed to acquire dquot type 1 [ 651.552219][T10384] loop7: detected capacity change from 0 to 512 [ 651.580573][T10378] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1320: bg 0: block 40: padding at end of block bitmap is not set [ 651.662968][T10378] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 651.675366][ T5780] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 651.735427][T10378] EXT4-fs (loop5): 1 truncate cleaned up [ 651.750379][T10378] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 652.003937][T10391] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1322'. [ 652.135031][T10378] netlink: 47 bytes leftover after parsing attributes in process `syz.5.1320'. [ 652.213511][T10384] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 652.226970][T10384] ext4 filesystem being mounted at /116/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 653.427240][ T6109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 654.023320][T10411] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 654.419540][ T7864] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 655.557817][ T29] kauditd_printk_skb: 18 callbacks suppressed [ 655.557898][ T29] audit: type=1326 audit(1734405761.558:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10419 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 655.587209][ T29] audit: type=1326 audit(1734405761.558:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10419 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 655.610039][ T29] audit: type=1326 audit(1734405761.588:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10421 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f213f3b85c5 code=0x7ffc0000 [ 655.637207][ T29] audit: type=1326 audit(1734405761.598:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10419 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 655.661638][ T29] audit: type=1326 audit(1734405761.598:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10419 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 655.684592][ T29] audit: type=1326 audit(1734405761.598:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10419 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 655.707497][ T29] audit: type=1326 audit(1734405761.598:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10419 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 655.730360][ T29] audit: type=1326 audit(1734405761.598:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10419 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 655.758069][ T29] audit: type=1326 audit(1734405761.598:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10419 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f213f321f29 code=0x7ffc0000 [ 655.782781][ T29] audit: type=1326 audit(1734405761.608:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10419 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 657.072742][T10438] netlink: 84 bytes leftover after parsing attributes in process `syz.7.1334'. [ 657.262340][T10432] loop6: detected capacity change from 0 to 128 [ 657.296491][T10432] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 657.377319][T10432] ext4 filesystem being mounted at /150/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 657.420559][T10440] loop0: detected capacity change from 0 to 764 [ 657.855207][T10451] loop4: detected capacity change from 0 to 128 [ 658.065967][T10440] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1333'. [ 658.255402][T10451] syz.4.1336: attempt to access beyond end of device [ 658.255402][T10451] loop4: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 658.302017][T10455] loop5: detected capacity change from 0 to 512 [ 658.584439][T10455] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 658.597628][T10455] ext4 filesystem being mounted at /247/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 659.123249][ T7555] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 659.339499][ T6109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 660.996895][T10488] netlink: 84 bytes leftover after parsing attributes in process `syz.6.1345'. [ 662.369224][T10495] loop4: detected capacity change from 0 to 512 [ 662.559658][ T29] kauditd_printk_skb: 31 callbacks suppressed [ 662.559735][ T29] audit: type=1326 audit(1734405768.658:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz.4.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 662.637054][ T29] audit: type=1326 audit(1734405768.728:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz.4.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 662.822579][T10506] loop7: detected capacity change from 0 to 128 [ 662.828508][ T29] audit: type=1326 audit(1734405768.928:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10505 comm="syz.4.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f213f3b85c5 code=0x7ffc0000 [ 662.915890][T10507] loop0: detected capacity change from 0 to 128 [ 663.012579][ T29] audit: type=1326 audit(1734405768.958:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz.4.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 663.012812][ T29] audit: type=1326 audit(1734405768.958:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz.4.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 663.013034][ T29] audit: type=1326 audit(1734405769.028:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz.4.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 663.013247][ T29] audit: type=1326 audit(1734405769.078:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10505 comm="syz.4.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 663.099964][ T29] audit: type=1326 audit(1734405769.198:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz.4.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 663.100228][ T29] audit: type=1326 audit(1734405769.198:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz.4.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 663.100443][ T29] audit: type=1326 audit(1734405769.198:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz.4.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 663.197004][T10506] syz.7.1350: attempt to access beyond end of device [ 663.197004][T10506] loop7: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 663.307271][T10507] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 663.333558][T10507] ext4 filesystem being mounted at /279/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 663.496584][T10513] loop5: detected capacity change from 0 to 764 [ 663.596835][T10513] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1351'. [ 663.900361][T10518] loop6: detected capacity change from 0 to 512 [ 664.059036][ C1] vkms_vblank_simulate: vblank timer overrun [ 664.203382][T10518] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 664.203814][T10518] ext4 filesystem being mounted at /154/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 665.439183][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 665.641454][ T5780] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 665.825892][T10533] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1357'. [ 666.063473][T10534] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 668.704952][T10552] loop7: detected capacity change from 0 to 128 [ 669.064445][T10552] syz.7.1362: attempt to access beyond end of device [ 669.064445][T10552] loop7: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 670.494340][T10564] loop5: detected capacity change from 0 to 512 [ 670.680803][T10566] loop7: detected capacity change from 0 to 764 [ 670.773197][T10564] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 670.791492][T10564] ext4 filesystem being mounted at /253/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 670.806893][T10573] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1369'. [ 670.924709][T10566] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1365'. [ 671.123621][T10582] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 671.343293][T10575] loop6: detected capacity change from 0 to 512 [ 671.358602][T10579] loop0: detected capacity change from 0 to 128 [ 671.437634][ T29] kauditd_printk_skb: 29 callbacks suppressed [ 671.437709][ T29] audit: type=1326 audit(1734405777.528:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10574 comm="syz.6.1367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 671.467185][ T29] audit: type=1326 audit(1734405777.528:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10574 comm="syz.6.1367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 671.508989][ T29] audit: type=1326 audit(1734405777.608:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10574 comm="syz.6.1367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 671.620899][T10579] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 671.647947][T10579] ext4 filesystem being mounted at /283/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 671.774484][ T29] audit: type=1800 audit(1734405777.878:736): pid=10579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1368" name="file0" dev="loop0" ino=12 res=0 errno=0 [ 671.922653][ T29] audit: type=1804 audit(1734405777.938:737): pid=10590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1368" name="/newroot/283/file1/file0" dev="loop0" ino=12 res=1 errno=0 [ 671.944610][ C1] vkms_vblank_simulate: vblank timer overrun [ 671.951501][ T29] audit: type=1326 audit(1734405778.038:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10591 comm="syz.6.1367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f752efb85c5 code=0x7ffc0000 [ 671.974087][ C1] vkms_vblank_simulate: vblank timer overrun [ 671.980842][ T29] audit: type=1326 audit(1734405778.058:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10574 comm="syz.6.1367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 672.003947][ T29] audit: type=1326 audit(1734405778.058:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10574 comm="syz.6.1367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 672.026476][ C1] vkms_vblank_simulate: vblank timer overrun [ 672.037222][ T29] audit: type=1326 audit(1734405778.128:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10574 comm="syz.6.1367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 672.059752][ C1] vkms_vblank_simulate: vblank timer overrun [ 672.301465][ T6109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 672.318081][ T29] audit: type=1326 audit(1734405778.178:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10574 comm="syz.6.1367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 673.097962][ T5780] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 674.979422][T10614] loop0: detected capacity change from 0 to 128 [ 675.421411][T10614] syz.0.1375: attempt to access beyond end of device [ 675.421411][T10614] loop0: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 676.403151][T10624] netlink: 84 bytes leftover after parsing attributes in process `syz.6.1380'. [ 676.588514][T10625] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 676.770585][T10630] loop7: detected capacity change from 0 to 764 [ 676.898216][T10635] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1382'. [ 677.565357][T10634] loop6: detected capacity change from 0 to 512 [ 677.787092][T10641] loop4: detected capacity change from 0 to 128 [ 677.861273][T10634] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 677.874992][T10634] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 678.085290][T10641] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 678.205256][T10641] ext4 filesystem being mounted at /314/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 678.548928][ T29] kauditd_printk_skb: 23 callbacks suppressed [ 678.549118][ T29] audit: type=1800 audit(1734405784.588:766): pid=10641 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1385" name="file0" dev="loop4" ino=12 res=0 errno=0 [ 679.373630][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 679.788481][ T5777] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 679.848335][T10664] loop7: detected capacity change from 0 to 512 [ 680.073202][ T29] audit: type=1326 audit(1734405786.108:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10662 comm="syz.7.1388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 680.097015][ T29] audit: type=1326 audit(1734405786.108:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10662 comm="syz.7.1388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 680.129844][ T29] audit: type=1326 audit(1734405786.118:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10662 comm="syz.7.1388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 680.864559][ T29] audit: type=1326 audit(1734405786.498:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.7.1388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdd795b85c5 code=0x7ffc0000 [ 680.887520][ T29] audit: type=1326 audit(1734405786.568:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10662 comm="syz.7.1388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 680.910040][ C1] vkms_vblank_simulate: vblank timer overrun [ 680.917425][ T29] audit: type=1326 audit(1734405786.568:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10662 comm="syz.7.1388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 680.917645][ T29] audit: type=1326 audit(1734405786.628:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10662 comm="syz.7.1388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 680.917864][ T29] audit: type=1326 audit(1734405786.638:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10662 comm="syz.7.1388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 680.918068][ T29] audit: type=1326 audit(1734405786.638:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10662 comm="syz.7.1388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 680.990751][ C1] vkms_vblank_simulate: vblank timer overrun [ 681.917519][T10682] loop6: detected capacity change from 0 to 512 [ 681.938562][T10682] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 682.010924][T10682] EXT4-fs (loop6): 1 truncate cleaned up [ 682.013070][T10682] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 682.514156][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 682.622358][ T5853] kernel write not supported for file bpf-prog (pid: 5853 comm: kworker/0:5) [ 682.770050][T10692] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 683.230559][T10699] loop5: detected capacity change from 0 to 512 [ 683.397489][T10702] loop0: detected capacity change from 0 to 764 [ 683.440892][T10699] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 683.543511][T10699] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 683.556992][T10708] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1398'. [ 684.019642][T10706] loop4: detected capacity change from 0 to 128 [ 684.321922][T10706] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 684.424358][T10706] ext4 filesystem being mounted at /318/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 684.543513][ T29] kauditd_printk_skb: 63 callbacks suppressed [ 684.543592][ T29] audit: type=1800 audit(1734405790.638:839): pid=10706 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1401" name="file0" dev="loop4" ino=12 res=0 errno=0 [ 684.571921][ T29] audit: type=1804 audit(1734405790.638:840): pid=10706 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1401" name="/newroot/318/file1/file0" dev="loop4" ino=12 res=1 errno=0 [ 684.870691][ T6109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 685.259838][ T5777] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 685.823735][T10732] loop0: detected capacity change from 0 to 512 [ 685.943476][ T29] audit: type=1326 audit(1734405792.038:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10731 comm="syz.0.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 686.036508][ T29] audit: type=1326 audit(1734405792.098:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10731 comm="syz.0.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 686.059135][ C0] vkms_vblank_simulate: vblank timer overrun [ 686.162490][ T29] audit: type=1326 audit(1734405792.248:843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.0.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fcbecdb85c5 code=0x7ffc0000 [ 686.186472][ T29] audit: type=1326 audit(1734405792.258:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10731 comm="syz.0.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 686.209623][ T29] audit: type=1326 audit(1734405792.258:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10731 comm="syz.0.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 686.585242][ T29] audit: type=1326 audit(1734405792.338:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10731 comm="syz.0.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 686.608226][ T29] audit: type=1326 audit(1734405792.418:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.0.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 686.631241][ T29] audit: type=1326 audit(1734405792.488:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10731 comm="syz.0.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 687.249810][T10757] loop6: detected capacity change from 0 to 512 [ 687.616965][T10764] loop5: detected capacity change from 0 to 764 [ 687.704857][T10756] loop4: detected capacity change from 0 to 128 [ 687.865030][T10771] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1415'. [ 687.930298][T10757] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 687.944671][T10757] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 688.310004][T10756] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 688.383578][T10756] ext4 filesystem being mounted at /322/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 688.664623][ T7555] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 689.290449][ T5777] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 689.677780][ T29] kauditd_printk_skb: 35 callbacks suppressed [ 689.677855][ T29] audit: type=1326 audit(1734405795.778:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10785 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 689.707698][ T29] audit: type=1326 audit(1734405795.788:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10785 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 689.734744][ T29] audit: type=1326 audit(1734405795.788:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10785 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 689.759169][ T29] audit: type=1326 audit(1734405795.788:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10785 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 689.782386][ T29] audit: type=1326 audit(1734405795.788:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10785 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 689.805399][ T29] audit: type=1326 audit(1734405795.818:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10785 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f213f385d19 code=0x7ffc0000 [ 689.827921][ C0] vkms_vblank_simulate: vblank timer overrun [ 690.354439][T10793] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1427'. [ 690.363795][T10793] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1427'. [ 690.373240][T10793] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1427'. [ 690.383021][T10793] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1427'. [ 690.642299][T10796] loop7: detected capacity change from 0 to 512 [ 690.762776][ T29] audit: type=1326 audit(1734405796.848:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10794 comm="syz.7.1429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 690.786036][ T29] audit: type=1326 audit(1734405796.858:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10794 comm="syz.7.1429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 690.866686][T10801] loop0: detected capacity change from 0 to 512 [ 691.043134][ T29] audit: type=1326 audit(1734405797.138:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.7.1429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdd795b85c5 code=0x7ffc0000 [ 691.115421][T10801] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 691.128824][T10801] ext4 filesystem being mounted at /295/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 691.172434][ T29] audit: type=1326 audit(1734405797.178:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10794 comm="syz.7.1429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd79585d19 code=0x7ffc0000 [ 691.629171][T10813] loop5: detected capacity change from 0 to 128 [ 691.834797][T10813] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 691.902765][T10813] ext4 filesystem being mounted at /265/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 691.997882][ T5780] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 692.893520][ T6109] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 694.013690][T10848] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1444'. [ 694.023230][T10848] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1444'. [ 694.036041][T10848] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1444'. [ 694.046454][T10848] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1444'. [ 694.354498][T10853] loop5: detected capacity change from 0 to 764 [ 694.436460][T10851] loop4: detected capacity change from 0 to 2048 [ 694.490581][T10857] loop0: detected capacity change from 0 to 512 [ 694.528555][T10859] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1448'. [ 694.722934][T10851] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 694.739732][ T29] kauditd_printk_skb: 38 callbacks suppressed [ 694.739806][ T29] audit: type=1326 audit(1734405800.838:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10855 comm="syz.0.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 694.775193][ T29] audit: type=1326 audit(1734405800.838:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10855 comm="syz.0.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 694.798312][ T29] audit: type=1326 audit(1734405800.878:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10855 comm="syz.0.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 694.821766][ T29] audit: type=1326 audit(1734405800.878:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10855 comm="syz.0.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 694.844369][ C0] vkms_vblank_simulate: vblank timer overrun [ 694.856866][ T29] audit: type=1326 audit(1734405800.878:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10855 comm="syz.0.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 694.879405][ C0] vkms_vblank_simulate: vblank timer overrun [ 694.887569][ T29] audit: type=1326 audit(1734405800.958:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10855 comm="syz.0.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 694.910093][ C0] vkms_vblank_simulate: vblank timer overrun [ 694.916916][ T29] audit: type=1326 audit(1734405800.958:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10855 comm="syz.0.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 694.939859][ T29] audit: type=1326 audit(1734405800.958:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10855 comm="syz.0.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 694.962287][ C0] vkms_vblank_simulate: vblank timer overrun [ 694.974945][ T29] audit: type=1326 audit(1734405800.958:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10855 comm="syz.0.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 694.997864][ T29] audit: type=1326 audit(1734405800.958:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10855 comm="syz.0.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbecd85d19 code=0x7ffc0000 [ 695.819279][T10871] loop7: detected capacity change from 0 to 128 [ 695.845487][ T5777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 696.167094][T10871] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 696.244208][T10871] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 697.224379][ T7864] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 697.684790][T10903] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1464'. [ 697.694223][T10903] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1464'. [ 697.703598][T10903] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1464'. [ 697.712928][T10903] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1464'. [ 698.108455][T10901] loop5: detected capacity change from 0 to 764 [ 698.223076][T10908] loop0: detected capacity change from 0 to 512 [ 698.576216][T10913] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1463'. [ 699.359071][T10919] netlink: 'syz.0.1468': attribute type 21 has an invalid length. [ 699.368053][T10919] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1468'. [ 700.099072][T10929] loop0: detected capacity change from 0 to 128 [ 700.385339][T10929] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 700.493871][T10929] ext4 filesystem being mounted at /303/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 700.643672][ T29] kauditd_printk_skb: 73 callbacks suppressed [ 700.643752][ T29] audit: type=1800 audit(1734405806.668:1015): pid=10929 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1472" name="file0" dev="loop0" ino=12 res=0 errno=0 [ 700.671524][ T29] audit: type=1804 audit(1734405806.688:1016): pid=10929 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1472" name="/newroot/303/file1/file0" dev="loop0" ino=12 res=1 errno=0 [ 700.711841][T10941] loop5: detected capacity change from 0 to 512 [ 700.852651][ T29] audit: type=1326 audit(1734405806.828:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10940 comm="syz.5.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 700.875311][ C0] vkms_vblank_simulate: vblank timer overrun [ 700.883852][ T29] audit: type=1326 audit(1734405806.828:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10940 comm="syz.5.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 700.911772][ T29] audit: type=1326 audit(1734405806.858:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10940 comm="syz.5.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 700.937174][ T29] audit: type=1326 audit(1734405806.908:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.5.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f38869b85c5 code=0x7ffc0000 [ 700.937395][ T29] audit: type=1326 audit(1734405806.918:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10940 comm="syz.5.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 700.959842][ C0] vkms_vblank_simulate: vblank timer overrun [ 700.991852][ T29] audit: type=1326 audit(1734405806.928:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10940 comm="syz.5.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3886921f29 code=0x7ffc0000 [ 701.023216][ T29] audit: type=1326 audit(1734405806.928:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10940 comm="syz.5.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 701.045830][ C0] vkms_vblank_simulate: vblank timer overrun [ 701.082720][ T29] audit: type=1326 audit(1734405807.168:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10940 comm="syz.5.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 701.663547][ T5780] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 703.358854][T10978] loop7: detected capacity change from 0 to 512 [ 704.157067][T10987] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1495'. [ 704.169985][T10987] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1495'. [ 704.180348][T10987] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1495'. [ 704.190278][T10987] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1495'. [ 704.644824][T10991] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1496'. [ 705.989325][T11013] loop0: detected capacity change from 0 to 1764 [ 706.797806][T11021] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1510'. [ 706.807453][T11021] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1510'. [ 706.816891][T11021] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1510'. [ 706.826281][T11021] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1510'. [ 706.997879][T11027] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1511'. [ 707.159915][T11024] loop6: detected capacity change from 0 to 512 [ 707.354165][ T29] kauditd_printk_skb: 73 callbacks suppressed [ 707.354253][ T29] audit: type=1326 audit(1734405813.298:1098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11023 comm="syz.6.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 707.383511][ T29] audit: type=1326 audit(1734405813.308:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11023 comm="syz.6.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 707.406381][ T29] audit: type=1326 audit(1734405813.378:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11023 comm="syz.6.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 707.532520][ T29] audit: type=1326 audit(1734405813.628:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11030 comm="syz.6.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f752efb85c5 code=0x7ffc0000 [ 707.560405][ T29] audit: type=1326 audit(1734405813.628:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11023 comm="syz.6.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 707.683822][ T29] audit: type=1326 audit(1734405813.728:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11023 comm="syz.6.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 707.692796][ T29] audit: type=1326 audit(1734405813.788:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11030 comm="syz.6.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 707.696710][ T29] audit: type=1326 audit(1734405813.798:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11023 comm="syz.6.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 707.696930][ T29] audit: type=1326 audit(1734405813.798:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11023 comm="syz.6.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 707.722923][ T29] audit: type=1326 audit(1734405813.798:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11023 comm="syz.6.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f752ef85d19 code=0x7ffc0000 [ 709.398319][T11061] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1523'. [ 709.407858][T11061] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1523'. [ 709.418227][T11061] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1523'. [ 709.428188][T11061] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1523'. [ 710.048375][T11063] loop5: detected capacity change from 0 to 512 [ 710.057622][T11063] EXT4-fs: Ignoring removed nobh option [ 710.261865][T11063] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 710.289744][T11063] EXT4-fs (loop5): orphan cleanup on readonly fs [ 710.354150][T11063] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1524: Failed to acquire dquot type 1 [ 710.480665][T11063] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1524: bg 0: block 40: padding at end of block bitmap is not set [ 710.535373][T11063] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 710.548137][T11063] EXT4-fs (loop5): 1 truncate cleaned up [ 710.556276][T11063] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 710.641839][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 710.649946][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 710.980324][ T6109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 711.275806][T11085] loop5: detected capacity change from 0 to 512 [ 712.390508][T11096] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1537'. [ 712.399954][T11096] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1537'. [ 712.409349][T11096] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1537'. [ 712.418700][T11096] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1537'. [ 712.525590][T11098] bond1: entered promiscuous mode [ 712.531031][T11098] bond1: entered allmulticast mode [ 712.534907][ T29] kauditd_printk_skb: 26 callbacks suppressed [ 712.534981][ T29] audit: type=1326 audit(1734405818.628:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11084 comm="syz.5.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 712.537922][T11098] 8021q: adding VLAN 0 to HW filter on device bond1 [ 712.542582][ T29] audit: type=1326 audit(1734405818.628:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11084 comm="syz.5.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 712.627323][T11098] bond1 (unregistering): Released all slaves [ 712.742754][ T29] audit: type=1326 audit(1734405818.818:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11084 comm="syz.5.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 712.765806][ T29] audit: type=1326 audit(1734405818.818:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11084 comm="syz.5.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 712.791877][ T29] audit: type=1326 audit(1734405818.818:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11084 comm="syz.5.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 713.005325][ T29] audit: type=1326 audit(1734405819.048:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11084 comm="syz.5.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 713.028274][ T29] audit: type=1326 audit(1734405819.048:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11084 comm="syz.5.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 713.051488][ T29] audit: type=1326 audit(1734405819.048:1139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11084 comm="syz.5.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 713.076721][ T29] audit: type=1326 audit(1734405819.068:1140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11084 comm="syz.5.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 713.084029][ T29] audit: type=1326 audit(1734405819.088:1141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11084 comm="syz.5.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 713.697149][T11109] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1541'. [ 714.436488][T11117] netlink: 'syz.5.1543': attribute type 32 has an invalid length. [ 714.445178][T11117] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1543'. [ 714.775317][T11124] loop5: detected capacity change from 0 to 512 [ 714.927758][T11126] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1546'. [ 714.937425][T11126] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1546'. [ 714.947035][T11126] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1546'. [ 714.956385][T11126] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1546'. [ 715.340204][T11124] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #2: comm syz.5.1547: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 19201, max 150(4), depth 0(0) [ 715.371752][T11124] EXT4-fs (loop5): get root inode failed [ 715.377823][T11124] EXT4-fs (loop5): mount failed [ 715.531420][T11135] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1549'. [ 715.546214][T11135] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1549'. [ 715.557533][T11135] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1549'. [ 715.566873][T11135] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1549'. [ 716.808951][T11146] loop5: detected capacity change from 0 to 512 [ 717.572299][ T29] kauditd_printk_skb: 10 callbacks suppressed [ 717.572378][ T29] audit: type=1326 audit(1734405823.668:1152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11160 comm="syz.5.1553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f38869b85c5 code=0x7ffc0000 [ 717.606641][ T29] audit: type=1326 audit(1734405823.678:1153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11143 comm="syz.5.1553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 717.631950][ T29] audit: type=1326 audit(1734405823.678:1154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11143 comm="syz.5.1553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3886985d19 code=0x7ffc0000 [ 717.674215][T11164] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1559'. [ 717.716745][ C1] ===================================================== [ 717.724179][ C1] BUG: KMSAN: uninit-value in tcp_parse_options+0x1006/0x1de0 [ 717.731847][ C1] tcp_parse_options+0x1006/0x1de0 [ 717.737259][ C1] tcp_validate_incoming+0x3ea/0x3070 [ 717.742935][ C1] tcp_rcv_established+0xa32/0x2510 [ 717.748350][ C1] tcp_v4_do_rcv+0x7f3/0x11a0 [ 717.753299][ C1] tcp_v4_rcv+0x51df/0x5750 [ 717.758064][ C1] ip_protocol_deliver_rcu+0x2a3/0x13d0 [ 717.763858][ C1] ip_local_deliver_finish+0x336/0x500 [ 717.769506][ C1] ip_local_deliver+0x21f/0x490 [ 717.774592][ C1] ip_rcv_finish+0x4a2/0x520 [ 717.779347][ C1] ip_rcv+0xcd/0x380 [ 717.783470][ C1] __netif_receive_skb+0x319/0xa00 [ 717.788788][ C1] process_backlog+0x4ad/0xa50 [ 717.793811][ C1] __napi_poll+0xe7/0x980 [ 717.798318][ C1] net_rx_action+0xa5a/0x19b0 [ 717.803273][ C1] handle_softirqs+0x1a0/0x7c0 [ 717.808254][ C1] __do_softirq+0x14/0x1a [ 717.812853][ C1] do_softirq+0x9a/0x100 [ 717.817295][ C1] __local_bh_enable_ip+0x9f/0xb0 [ 717.822625][ C1] __dev_queue_xmit+0x2758/0x57d0 [ 717.827859][ C1] ip_finish_output2+0x187c/0x1b70 [ 717.833261][ C1] __ip_finish_output+0x287/0x810 [ 717.838483][ C1] ip_finish_output+0x4b/0x600 [ 717.843508][ C1] ip_output+0x15f/0x3f0 [ 717.847929][ C1] __ip_queue_xmit+0x1f2a/0x20d0 [ 717.853101][ C1] ip_queue_xmit+0x60/0x80 [ 717.857707][ C1] __tcp_transmit_skb+0x3cea/0x4900 [ 717.863169][ C1] tcp_write_xmit+0x3b90/0x9070 [ 717.868182][ C1] __tcp_push_pending_frames+0xc4/0x380 [ 717.874006][ C1] tcp_send_fin+0x9f6/0xf50 [ 717.878697][ C1] __tcp_close+0x140c/0x1550 [ 717.883572][ C1] __mptcp_close_ssk+0x74e/0x16f0 [ 717.888791][ C1] mptcp_close_ssk+0x26b/0x2c0 [ 717.893806][ C1] mptcp_pm_nl_rm_addr_or_subflow+0x635/0xd10 [ 717.900085][ C1] mptcp_pm_nl_flush_addrs_doit+0xe10/0x1630 [ 717.906330][ C1] genl_rcv_msg+0x1214/0x12c0 [ 717.911168][ C1] netlink_rcv_skb+0x375/0x650 [ 717.916192][ C1] genl_rcv+0x40/0x60 [ 717.920338][ C1] netlink_unicast+0xf52/0x1260 [ 717.925447][ C1] netlink_sendmsg+0x10da/0x11e0 [ 717.930593][ C1] __sock_sendmsg+0x30f/0x380 [ 717.935548][ C1] ____sys_sendmsg+0x877/0xb60 [ 717.940508][ C1] ___sys_sendmsg+0x28d/0x3c0 [ 717.945442][ C1] __x64_sys_sendmsg+0x212/0x3c0 [ 717.950647][ C1] x64_sys_call+0x2ed6/0x3c30 [ 717.955630][ C1] do_syscall_64+0xcd/0x1e0 [ 717.960305][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 717.966499][ C1] [ 717.968915][ C1] Uninit was created at: [ 717.973490][ C1] kmem_cache_alloc_node_noprof+0x907/0xe00 [ 717.979596][ C1] kmalloc_reserve+0x13d/0x4a0 [ 717.984598][ C1] __alloc_skb+0x363/0x7b0 [ 717.989173][ C1] tcp_send_fin+0x3b9/0xf50 [ 717.993913][ C1] __tcp_close+0x140c/0x1550 [ 717.998709][ C1] __mptcp_close_ssk+0x74e/0x16f0 [ 718.004002][ C1] mptcp_close_ssk+0x26b/0x2c0 [ 718.008962][ C1] mptcp_pm_nl_rm_addr_or_subflow+0x635/0xd10 [ 718.015325][ C1] mptcp_pm_nl_flush_addrs_doit+0xe10/0x1630 [ 718.021531][ C1] genl_rcv_msg+0x1214/0x12c0 [ 718.026455][ C1] netlink_rcv_skb+0x375/0x650 [ 718.031421][ C1] genl_rcv+0x40/0x60 [ 718.035619][ C1] netlink_unicast+0xf52/0x1260 [ 718.040646][ C1] netlink_sendmsg+0x10da/0x11e0 [ 718.045833][ C1] __sock_sendmsg+0x30f/0x380 [ 718.050707][ C1] ____sys_sendmsg+0x877/0xb60 [ 718.055753][ C1] ___sys_sendmsg+0x28d/0x3c0 [ 718.060634][ C1] __x64_sys_sendmsg+0x212/0x3c0 [ 718.065814][ C1] x64_sys_call+0x2ed6/0x3c30 [ 718.070699][ C1] do_syscall_64+0xcd/0x1e0 [ 718.075423][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 718.081527][ C1] [ 718.084042][ C1] CPU: 1 UID: 0 PID: 11164 Comm: syz.6.1559 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0 [ 718.095056][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 718.105323][ C1] ===================================================== [ 718.112445][ C1] Disabling lock debugging due to kernel taint [ 718.118721][ C1] Kernel panic - not syncing: kmsan.panic set ... [ 718.125277][ C1] CPU: 1 UID: 0 PID: 11164 Comm: syz.6.1559 Tainted: G B 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0 [ 718.137752][ C1] Tainted: [B]=BAD_PAGE [ 718.142021][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 718.152226][ C1] Call Trace: [ 718.155638][ C1] [ 718.158597][ C1] dump_stack_lvl+0x216/0x2d0 [ 718.163496][ C1] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 718.169509][ C1] dump_stack+0x1e/0x24 [ 718.173866][ C1] panic+0x4e2/0xcf0 [ 718.177955][ C1] ? kmsan_get_metadata+0xf1/0x1c0 [ 718.183262][ C1] kmsan_report+0x2c7/0x2d0 [ 718.187943][ C1] ? kmsan_internal_poison_memory+0x7d/0x90 [ 718.194052][ C1] ? netlink_rcv_skb+0x375/0x650 [ 718.199190][ C1] ? kmsan_internal_poison_memory+0x49/0x90 [ 718.205311][ C1] ? kmsan_slab_free+0xd0/0x140 [ 718.210384][ C1] ? __msan_warning+0x95/0x120 [ 718.215371][ C1] ? tcp_parse_options+0x1006/0x1de0 [ 718.220854][ C1] ? tcp_validate_incoming+0x3ea/0x3070 [ 718.226612][ C1] ? tcp_rcv_established+0xa32/0x2510 [ 718.232196][ C1] ? tcp_v4_do_rcv+0x7f3/0x11a0 [ 718.237269][ C1] ? tcp_v4_rcv+0x51df/0x5750 [ 718.242149][ C1] ? ip_protocol_deliver_rcu+0x2a3/0x13d0 [ 718.248051][ C1] ? ip_local_deliver_finish+0x336/0x500 [ 718.253862][ C1] ? ip_local_deliver+0x21f/0x490 [ 718.259054][ C1] ? ip_rcv_finish+0x4a2/0x520 [ 718.263987][ C1] ? ip_rcv+0xcd/0x380 [ 718.268217][ C1] ? __netif_receive_skb+0x319/0xa00 [ 718.273702][ C1] ? process_backlog+0x4ad/0xa50 [ 718.278835][ C1] ? __napi_poll+0xe7/0x980 [ 718.283531][ C1] ? net_rx_action+0xa5a/0x19b0 [ 718.288569][ C1] ? handle_softirqs+0x1a0/0x7c0 [ 718.293724][ C1] ? __do_softirq+0x14/0x1a [ 718.298425][ C1] ? do_softirq+0x9a/0x100 [ 718.303047][ C1] ? __local_bh_enable_ip+0x9f/0xb0 [ 718.308479][ C1] ? __dev_queue_xmit+0x2758/0x57d0 [ 718.313855][ C1] ? ip_finish_output2+0x187c/0x1b70 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 718.319347][ C1] ? __ip_finish_output+0x287/0x810 [ 718.324749][ C1] ? ip_finish_output+0x4b/0x600 [ 718.329881][ C1] ? ip_output+0x15f/0x3f0 [ 718.334489][ C1] ? __ip_queue_xmit+0x1f2a/0x20d0 [ 718.339800][ C1] ? ip_queue_xmit+0x60/0x80 [ 718.344580][ C1] ? __tcp_transmit_skb+0x3cea/0x4900 [ 718.350143][ C1] ? tcp_write_xmit+0x3b90/0x9070 [ 718.355356][ C1] ? __tcp_push_pending_frames+0xc4/0x380 [ 718.361273][ C1] ? tcp_send_fin+0x9f6/0xf50 [ 718.366134][ C1] ? __tcp_close+0x140c/0x1550 [ 718.371111][ C1] ? __mptcp_close_ssk+0x74e/0x16f0 [ 718.376517][ C1] ? mptcp_close_ssk+0x26b/0x2c0 [ 718.381653][ C1] ? mptcp_pm_nl_rm_addr_or_subflow+0x635/0xd10 [ 718.388108][ C1] ? mptcp_pm_nl_flush_addrs_doit+0xe10/0x1630 [ 718.394469][ C1] ? genl_rcv_msg+0x1214/0x12c0 [ 718.399487][ C1] ? netlink_rcv_skb+0x375/0x650 [ 718.404617][ C1] ? genl_rcv+0x40/0x60 [ 718.408931][ C1] ? netlink_unicast+0xf52/0x1260 [ 718.414148][ C1] ? netlink_sendmsg+0x10da/0x11e0 [ 718.419467][ C1] ? __sock_sendmsg+0x30f/0x380 [ 718.424528][ C1] ? ____sys_sendmsg+0x877/0xb60 [ 718.429645][ C1] ? ___sys_sendmsg+0x28d/0x3c0 [ 718.434679][ C1] ? __x64_sys_sendmsg+0x212/0x3c0 [ 718.439976][ C1] ? x64_sys_call+0x2ed6/0x3c30 [ 718.445039][ C1] ? do_syscall_64+0xcd/0x1e0 [ 718.449880][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 718.456170][ C1] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 718.462739][ C1] ? kmsan_get_metadata+0x13e/0x1c0 [ 718.468116][ C1] ? kmsan_get_metadata+0x13e/0x1c0 [ 718.473498][ C1] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 718.479494][ C1] __msan_warning+0x95/0x120 [ 718.484303][ C1] tcp_parse_options+0x1006/0x1de0 [ 718.489654][ C1] tcp_validate_incoming+0x3ea/0x3070 [ 718.495249][ C1] ? kmsan_get_metadata+0x13e/0x1c0 [ 718.500645][ C1] tcp_rcv_established+0xa32/0x2510 [ 718.506051][ C1] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 718.512059][ C1] ? __pfx_ipv4_dst_check+0x10/0x10 [ 718.517453][ C1] tcp_v4_do_rcv+0x7f3/0x11a0 [ 718.522362][ C1] tcp_v4_rcv+0x51df/0x5750 [ 718.527125][ C1] ? tcp_v4_rcv+0x1811/0x5750 [ 718.532022][ C1] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 718.537074][ C1] ip_protocol_deliver_rcu+0x2a3/0x13d0 [ 718.542831][ C1] ip_local_deliver_finish+0x336/0x500 [ 718.548495][ C1] ip_local_deliver+0x21f/0x490 [ 718.553522][ C1] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 718.559696][ C1] ? __pfx_ip_local_deliver+0x10/0x10 [ 718.565244][ C1] ip_rcv_finish+0x4a2/0x520 [ 718.570020][ C1] ip_rcv+0xcd/0x380 [ 718.574074][ C1] ? __pfx_ip_rcv_finish+0x10/0x10 [ 718.579379][ C1] ? ip6_rcv_finish+0x8d0/0x970 [ 718.584415][ C1] ? __pfx_ip_rcv+0x10/0x10 [ 718.589080][ C1] __netif_receive_skb+0x319/0xa00 [ 718.594388][ C1] ? kmsan_get_metadata+0x13e/0x1c0 [ 718.599781][ C1] process_backlog+0x4ad/0xa50 [ 718.604760][ C1] ? __pfx_process_backlog+0x10/0x10 [ 718.610255][ C1] __napi_poll+0xe7/0x980 [ 718.614771][ C1] ? kmsan_get_metadata+0x13e/0x1c0 [ 718.620159][ C1] net_rx_action+0xa5a/0x19b0 [ 718.625046][ C1] ? kmsan_get_metadata+0x13e/0x1c0 [ 718.630437][ C1] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 718.636476][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 718.641796][ C1] handle_softirqs+0x1a0/0x7c0 [ 718.646802][ C1] __do_softirq+0x14/0x1a [ 718.651338][ C1] do_softirq+0x9a/0x100 [ 718.655798][ C1] [ 718.658831][ C1] [ 718.661868][ C1] __local_bh_enable_ip+0x9f/0xb0 [ 718.667112][ C1] __dev_queue_xmit+0x2758/0x57d0 [ 718.672339][ C1] ? stack_depot_save_flags+0x2c/0x750 [ 718.678001][ C1] ? kmsan_get_metadata+0x13e/0x1c0 [ 718.683384][ C1] ? __dev_queue_xmit+0x3d6/0x57d0 [ 718.688678][ C1] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 718.695245][ C1] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 718.701730][ C1] ip_finish_output2+0x187c/0x1b70 [ 718.707073][ C1] __ip_finish_output+0x287/0x810 [ 718.712305][ C1] ? nf_nat_ipv4_out+0x587/0x7d0 [ 718.717454][ C1] ip_finish_output+0x4b/0x600 [ 718.722420][ C1] ? __rcu_read_unlock+0x48/0xe0 [ 718.727576][ C1] ip_output+0x15f/0x3f0 [ 718.732013][ C1] ? __pfx_ip_finish_output+0x10/0x10 [ 718.737582][ C1] ? __pfx_ip_output+0x10/0x10 [ 718.742550][ C1] __ip_queue_xmit+0x1f2a/0x20d0 [ 718.747703][ C1] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 718.753710][ C1] ip_queue_xmit+0x60/0x80 [ 718.758318][ C1] ? __pfx_ip_queue_xmit+0x10/0x10 [ 718.763630][ C1] __tcp_transmit_skb+0x3cea/0x4900 [ 718.769039][ C1] ? mptcp_established_options+0x2440/0x39c0 [ 718.775247][ C1] ? filter_irq_stacks+0x60/0x1a0 [ 718.780519][ C1] tcp_write_xmit+0x3b90/0x9070 [ 718.785573][ C1] ? kmsan_get_metadata+0x13e/0x1c0 [ 718.790963][ C1] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 718.797055][ C1] __tcp_push_pending_frames+0xc4/0x380 [ 718.802798][ C1] tcp_send_fin+0x9f6/0xf50 [ 718.807495][ C1] __tcp_close+0x140c/0x1550 [ 718.812302][ C1] ? __local_bh_enable_ip+0x74/0xb0 [ 718.817731][ C1] ? _raw_spin_unlock_bh+0x2d/0x40 [ 718.823063][ C1] ? kmsan_get_metadata+0x13e/0x1c0 [ 718.828458][ C1] __mptcp_close_ssk+0x74e/0x16f0 [ 718.833716][ C1] mptcp_close_ssk+0x26b/0x2c0 [ 718.838697][ C1] mptcp_pm_nl_rm_addr_or_subflow+0x635/0xd10 [ 718.845006][ C1] mptcp_pm_nl_flush_addrs_doit+0xe10/0x1630 [ 718.851226][ C1] ? __pfx_mptcp_pm_nl_flush_addrs_doit+0x10/0x10 [ 718.857865][ C1] genl_rcv_msg+0x1214/0x12c0 [ 718.862728][ C1] ? __pfx_mptcp_pm_nl_flush_addrs_doit+0x10/0x10 [ 718.869390][ C1] netlink_rcv_skb+0x375/0x650 [ 718.874374][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 718.879584][ C1] ? __pfx_genl_rcv+0x10/0x10 [ 718.884426][ C1] genl_rcv+0x40/0x60 [ 718.888569][ C1] netlink_unicast+0xf52/0x1260 [ 718.893627][ C1] netlink_sendmsg+0x10da/0x11e0 [ 718.898787][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 718.904282][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 718.909774][ C1] __sock_sendmsg+0x30f/0x380 [ 718.914671][ C1] ____sys_sendmsg+0x877/0xb60 [ 718.919653][ C1] ___sys_sendmsg+0x28d/0x3c0 [ 718.924535][ C1] ? __rcu_read_unlock+0x7b/0xe0 [ 718.929694][ C1] ? __fget_files+0x42b/0x500 [ 718.934558][ C1] ? kmsan_get_metadata+0x13e/0x1c0 [ 718.939941][ C1] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 718.945964][ C1] __x64_sys_sendmsg+0x212/0x3c0 [ 718.951120][ C1] ? kmsan_get_metadata+0x13e/0x1c0 [ 718.956507][ C1] x64_sys_call+0x2ed6/0x3c30 [ 718.961405][ C1] do_syscall_64+0xcd/0x1e0 [ 718.966082][ C1] ? clear_bhb_loop+0x25/0x80 [ 718.970972][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 718.977104][ C1] RIP: 0033:0x7f752ef85d19 [ 718.981672][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 719.001499][ C1] RSP: 002b:00007f752fe00038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 719.010117][ C1] RAX: ffffffffffffffda RBX: 00007f752f175fa0 RCX: 00007f752ef85d19 [ 719.018258][ C1] RDX: 0000000000000800 RSI: 0000000020000200 RDI: 0000000000000008 [ 719.026393][ C1] RBP: 00007f752f001a20 R08: 0000000000000000 R09: 0000000000000000 [ 719.034524][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 719.042649][ C1] R13: 0000000000000000 R14: 00007f752f175fa0 R15: 00007ffd9e45bb08 [ 719.050801][ C1] [ 719.054236][ C1] Kernel Offset: disabled [ 719.058631][ C1] Rebooting in 86400 seconds..